Replace Reverse Proxy
- currently Traefik
- have to use Traefik until I've moved all legacy Docker services, because they rely on Traefik's Docker label stuff
- afterwards I'm free to replace it
- Traefik can't proxy Unix sockets
- sucks
- annoying, I have to proxy the GitLab socket through nginx to a port so that Traefik can proxy it
- also having to juggle ports is less nice than properly named socket files etc.
- want something that also can be configured with well-structured Nix code, no long strings pls
- Caddy is supposed to be very good
- is it well-nixable?
- or just nginx?
- NixOS "default", many services assume nginx
- well supported
- very flexible
- no native fancy stuff, headers, middleware, certs are less comfortable
- however NixOS has ACME stuff for nginx, so it might be just as comfortable as a all-in-one reverse proxy
- if I switch to nginx as main reverse proxy, don't forget to enable
recommended
settings options