Skip to main content

Work with Caddy

Caddy is more simple than Nginx, as it can automatically apply for certificates. It is recommended to use it.
You need to start the voicechat-server first, and then install and configure Caddy, otherwise the certificate application may fail.

1. Start vocechat-server

docker run -d --restart=always \
  -p 3000:3000 \
  --name vocechat-server \
  privoce/vocechat-server:latest

2. View status of vocechat-server

docker ps -a
docker logs -f vocechat-server

# Into docker to view config
docker exec -it vocechat-server /bin/sh
cat config/config.toml

3. Preparation

A little inspection work:

# Check if the port is occupied, and if so, stop it.
netstat -nlpt|grep 80
netstat -nlpt|grep 443

# Check if the domain name has been resolved properly
ping domain.com

4. Install Caddy

curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/gpg.key' | sudo tee /etc/apt/trusted.gpg.d/caddy-stable.asc
curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/debian.deb.txt' | sudo tee /etc/apt/sources.list.d/caddy-stable.list
curl -fsSL 'https://dl.cloudsmith.io/public/caddy/stable/gpg.key' | sudo gpg --dearmor -o /usr/share/keyrings/caddy-stable-archive-keyring.gpg
apt update
apt install caddy

5. Config Caddy

cat > /etc/caddy/Caddyfile << EOF
domain.com:443 {
    tls {
        protocols tls1.2 tls1.3
    }
    reverse_proxy /* localhost:3000
}
EOF

Restart caddy

systemctl stop caddy
systemctl start caddy

View logs

journalctl -u caddy -f

Browser access: https://domain.com/ follow the webpage guide to complete the installation.

6. View status of Caddy

In server:

# Check if port 80 443 is already open
netstat -nlpt

In local:

# Confirm that the domain name points to the correct location
ping domain.com

nc -vv domain.com 80
nc -vv domain.com 443

# Test whether the port is providing services normally
curl http://domain.com/ 80
curl https://domain.com/ 443