###################################################################
#  Middleware                                                   ###
###################################################################
(cors) {
    header Access-Control-Allow-Origin *
    header Access-Control-Allow-Methods "GET, POST, PUT, PATCH, DELETE"
    header Access-Control-Allow-Headers "Content-Type"
    header Access-Control-Allow-Credentials "true"
    header Access-Control-Max-Age "3600"
}

#http:// {
#    import cors
#    reverse_proxy /api localhost:8080
#}



(authenticate) {
    reverse_proxy /outpost.goauthentik.io/* 0.0.0.0:9000
    forward_auth 0.0.0.0:9000 {
        uri /outpost.goauthentik.io/auth/caddy
        copy_headers X-Authentik-Username X-Authentik-Groups X-Authentik-Email X-Authentik-Name X-Authentik-Uid X-Authentik-Jwt X-Authentik-Meta-Jwks X-Authentik-Meta-Outpost X-Authentik-Meta-Provider X-Authentik-Meta-App X-Authentik-Meta-Version
        trusted_proxies private_ranges
    }
}

# Heimdall
start.1.tubano.io {
  reverse_proxy 0.0.0.0:21200
}

# portainer
portainer.1.tubano.io {
    reverse_proxy 0.0.0.0:21201
}

# Uptime
monitor.1.tubano.io {
#  import authenticate
  reverse_proxy 0.0.0.0:21202
}

# SSO
sso.1.tubano.io {
  reverse_proxy 0.0.0.0:9000
}

# shell
shell.1.tubano.io {
  import authenticate
  reverse_proxy 0.0.0.0:21203
}

# web apps
app1.1.tubano.io {
  reverse_proxy 0.0.0.0:21301
}
app2.1.tubano.io {
  reverse_proxy 0.0.0.0:21302
}
app3.1.tubano.io {
  reverse_proxy 0.0.0.0:21303
}
app4.1.tubano.io {
  reverse_proxy 0.0.0.0:21304
}
app5.1.tubano.io {
  reverse_proxy 0.0.0.0:21304
}