Comment by gregsadetsky

1 day ago

But it's not on by default, right..? (i.e. is there a particular config needed for that?)

I'm using Caddy here and it's not falling back on ZeroSSL. Thanks for your help

EDIT: hmm, it should be automatic...! https://caddyserver.com/docs/automatic-https#issuer-fallback interesting, I'll double check my config

woah... it's probably related to this! https://github.com/caddyserver/caddy/issues/7084 TLDR: "Caddy doesn't fall back to ZeroSSL for domains added using API" (which is my case)

2 comments

gregsadetsky

Wonder if caddy-docker-proxy uses the API..?

gregsadetsky 10 hours ago

From what I see, yes:
https://github.com/lucaslorentz/caddy-docker-proxy/blob/mast...
caddy-docker-proxy generates a Caddyfile in memory, and then it calls the internal Caddy API `/load`. So - yes, it would presumably have been affected, at least from what I saw yesterday (with our own Caddy) and if the github issue I mentioned is correct.