From 8ea106cf1a4480777f52c5d9eb56fe31c0d0005c Mon Sep 17 00:00:00 2001
From: Christian Heller <c.heller@plomlompom.de>
Date: Mon, 14 Apr 2025 04:45:49 +0200
Subject: [PATCH] Add basic caddy setup.

---
 bookworm/etc/server/caddy/Caddyfile | 4 ++++
 bookworm/etc/server/nftables.conf   | 6 ++++++
 bookworm/scripts/setup_catgirl.sh   | 9 ++++++++-
 3 files changed, 18 insertions(+), 1 deletion(-)
 create mode 100644 bookworm/etc/server/caddy/Caddyfile

diff --git a/bookworm/etc/server/caddy/Caddyfile b/bookworm/etc/server/caddy/Caddyfile
new file mode 100644
index 0000000..471c5a5
--- /dev/null
+++ b/bookworm/etc/server/caddy/Caddyfile
@@ -0,0 +1,4 @@
+:80 {
+    root * /usr/share/caddy
+    file_server
+}
diff --git a/bookworm/etc/server/nftables.conf b/bookworm/etc/server/nftables.conf
index 73193eb..96dad3e 100755
--- a/bookworm/etc/server/nftables.conf
+++ b/bookworm/etc/server/nftables.conf
@@ -20,6 +20,12 @@ table inet filter {
         tcp dport 22 \
             accept \
             comment "accept SSH on default port";
+        tcp dport 80 \
+            accept \
+            comment "accept HTTP on default port";
+        tcp dport 443 \
+            accept \
+            comment "accept HTTPS on default port";
         ip protocol icmp \
             icmp type echo-request \
             accept \
diff --git a/bookworm/scripts/setup_catgirl.sh b/bookworm/scripts/setup_catgirl.sh
index 177a755..b211788 100755
--- a/bookworm/scripts/setup_catgirl.sh
+++ b/bookworm/scripts/setup_catgirl.sh
@@ -54,7 +54,14 @@ echo '\nEnabling the firewall.'
 systemctl enable nftables.service
 systemctl start nftables.service
 
-echo '\nSet up catgirl.'
+echo '\nSetting up catgirl.'
 sed -i "s/REPLACE_WITH_SASL_PASSWORD/${SASL_PASSWORD}/g" "${PATH_USER_HOME}/.config/catgirl/libera"
 systemctl enable catgirl.service
 systemctl start catgirl.service
+
+echo '\nSetting up caddy.'
+apt install -y debian-keyring debian-archive-keyring apt-transport-https curl
+curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/gpg.key' | gpg --dearmor -o /usr/share/keyrings/caddy-stable-archive-keyring.gpg
+curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/debian.deb.txt' | tee /etc/apt/sources.list.d/caddy-stable.list
+apt update
+apt install caddy
-- 
2.30.2