From 9c32a783c9bfeb1a04fa3298957f092ddee61fcf Mon Sep 17 00:00:00 2001
From: Kumi <git@kumi.email>
Date: Sun, 31 Dec 2023 14:00:51 +0100
Subject: [PATCH] Switch Caddy reverse_proxy to Unix socket for HTML

Changed the HTML reverse proxy in the Caddy server configuration to use a Unix socket connection. This enhances security and performance by avoiding TCP stack overhead and protects against network-based attacks targeting the application server interface. This should only affect internal communication with the uWSGI server.
---
 Caddyfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Caddyfile b/Caddyfile
index 608e070..6d4ee20 100644
--- a/Caddyfile
+++ b/Caddyfile
@@ -15,7 +15,7 @@ private.coffee www.private.coffee {
 		path_regexp html /(.*).html
 	}
 
-	reverse_proxy @html localhost:9810
+	reverse_proxy @html unix//var/run/uwsgi/privatecoffee.sock
 
 	@assets {
 		path assets /assets/*