Comment by Marsymars
1 day ago
> Shall we have some way of freely encrypting the web that is relying on one authority?
Caddy uses ZeroSSL as a fallback if Let’s Encrypt fails!
1 day ago
> Shall we have some way of freely encrypting the web that is relying on one authority?
Caddy uses ZeroSSL as a fallback if Let’s Encrypt fails!
But it's not on by default, right..? (i.e. is there a particular config needed for that?)
I'm using Caddy here and it's not falling back on ZeroSSL. Thanks for your help
EDIT: hmm, it should be automatic...! https://caddyserver.com/docs/automatic-https#issuer-fallback interesting, I'll double check my config
woah... it's probably related to this! https://github.com/caddyserver/caddy/issues/7084 TLDR: "Caddy doesn't fall back to ZeroSSL for domains added using API" (which is my case)
Wonder if caddy-docker-proxy uses the API..?
From what I see, yes:
https://github.com/lucaslorentz/caddy-docker-proxy/blob/mast...
caddy-docker-proxy generates a Caddyfile in memory, and then it calls the internal Caddy API `/load`. So - yes, it would presumably have been affected, at least from what I saw yesterday (with our own Caddy) and if the github issue I mentioned is correct.