---
# =================================================================
# Production Configuration for arch-vps (jnss.me)
# =================================================================

# =================================================================
# TLS Configuration - Production Setup
# =================================================================
caddy_tls_enabled: true
caddy_domain: "jnss.me"
caddy_tls_email: "{{ vault_caddy_tls_email }}"

# DNS Challenge Configuration (Cloudflare)
caddy_dns_provider: "cloudflare"
cloudflare_api_token: "{{ vault_cloudflare_api_token }}"

# Production Let's Encrypt CA
caddy_acme_ca: "https://acme-v02.api.letsencrypt.org/directory"

# =================================================================
# API Service Registration Configuration
# =================================================================
# Services now self-register using Caddy's admin API
caddy_api_enabled: true
caddy_server_name: "main"

# Static site configuration is deprecated - use API registration instead
# Services should use the registration handlers:
#
# Example service registration pattern:
# - name: Register my service
#   set_fact:
#     service_name: "myapi"
#     service_domain: "api.jnss.me"
#     service_backend: "localhost:8080"
#   notify: register service with caddy

# =================================================================
# Security & Logging
# =================================================================
caddy_log_level: "INFO"
caddy_log_format: "json"
caddy_systemd_security: true