From cb25a3bc260af7f07f78ec45d0028f9db75e26d9 Mon Sep 17 00:00:00 2001
From: binary <me@rgoncalves.se>
Date: Sun, 24 Jan 2021 14:43:34 +0100
Subject: Acme challenges are handled by the domain controller!

---
 roles/relayd/templates/relayd.conf.j2 | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/roles/relayd/templates/relayd.conf.j2 b/roles/relayd/templates/relayd.conf.j2
index dbd95ad..8ef03bc 100644
--- a/roles/relayd/templates/relayd.conf.j2
+++ b/roles/relayd/templates/relayd.conf.j2
@@ -41,9 +41,14 @@ http protocol "https" {
 {% endif %}
 {##}
 {% endfor %}
+	return error
 }
 
 http protocol "http" {
+	
+	# acme
+	pass request quick path "/.well-known/acme-challenge/*" forward to <local>
+
 	pass request header "Host" value "{{ global.domain_name }}" forward to <local>
 {% for h in groups["servers"] %}
 {% set h = dict(hostvars[h]) %}
@@ -55,6 +60,7 @@ http protocol "http" {
 {% endif %}
 {##}
 {% endfor %}
+	return error
 }
 
 # relays
-- 
cgit v1.2.3