From 7e5f07b237bb984d9e986fe16b427fce336f26fd Mon Sep 17 00:00:00 2001
From: Alexandre Couedelo <nokwebspace@gmail.com>
Date: Sun, 7 Jul 2024 21:09:50 +0000
Subject: [PATCH] feat: caddy digital ocean dns provider

---
 .github/workflows/ansible.yml                          | 1 +
 ansible/roles/docker-swarm-app-caddy/assets/Caddyfile  | 3 +++
 ansible/roles/docker-swarm-app-caddy/assets/Dockerfile | 3 ++-
 3 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/ansible.yml b/.github/workflows/ansible.yml
index 6441437..ae724c0 100644
--- a/.github/workflows/ansible.yml
+++ b/.github/workflows/ansible.yml
@@ -82,3 +82,4 @@ jobs:
           CADDY_GITHUB_CLIENT_ID: ${{ secrets.CADDY_GITHUB_CLIENT_ID }}
           CADDY_GITHUB_CLIENT_SECRET: ${{ secrets.CADDY_GITHUB_CLIENT_SECRET }}
           CADDY_JWT_SHARED_KEY: ${{ secrets.CADDY_JWT_SHARED_KEY }}
+          DIGITALOCEAN_API_TOKEN: ${{ secrets.CADDY_DIGITALOCEAN_API_TOKEN }}
diff --git a/ansible/roles/docker-swarm-app-caddy/assets/Caddyfile b/ansible/roles/docker-swarm-app-caddy/assets/Caddyfile
index 037ce0b..f0badaa 100644
--- a/ansible/roles/docker-swarm-app-caddy/assets/Caddyfile
+++ b/ansible/roles/docker-swarm-app-caddy/assets/Caddyfile
@@ -51,4 +51,7 @@
 
 auth.{{domain}} {
 	authenticate with myportal
+	tls {
+		dns digitalocean {env.CADDY_DIGITALOCEAN_API_TOKEN}
+	}
 }
diff --git a/ansible/roles/docker-swarm-app-caddy/assets/Dockerfile b/ansible/roles/docker-swarm-app-caddy/assets/Dockerfile
index fed31a8..eb9bf9d 100644
--- a/ansible/roles/docker-swarm-app-caddy/assets/Dockerfile
+++ b/ansible/roles/docker-swarm-app-caddy/assets/Dockerfile
@@ -4,7 +4,8 @@ FROM caddy:${CADDY_VERSION}-builder-alpine AS builder
 RUN xcaddy build \
     --with github.com/lucaslorentz/caddy-docker-proxy/v2 \
     --with github.com/greenpau/caddy-security \
-    --with github.com/greenpau/caddy-trace
+    --with github.com/greenpau/caddy-trace \
+    --with github.com/caddy-dns/digitalocean
 
 FROM caddy:${CADDY_VERSION}-alpine