From 722e28af892b7d6e89cdbf77af7aa65b817f72a4 Mon Sep 17 00:00:00 2001
From: Phil <phil@thesatelliteoflove.com>
Date: Thu, 10 Oct 2024 16:00:57 -0600
Subject: [PATCH] Swapped tasks endpoint to internal only via tailscale

---
 roles/docker/files/Caddyfile | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/roles/docker/files/Caddyfile b/roles/docker/files/Caddyfile
index 5622d02..17af41e 100644
--- a/roles/docker/files/Caddyfile
+++ b/roles/docker/files/Caddyfile
@@ -3,7 +3,17 @@ auth.thesatelliteoflove.com {
 }
 
 tasks.thesatelliteoflove.com {
-    reverse_proxy authentik-server-1:9000
+    @allowed {
+        remote_ip 100.64.0.0/10
+    }
+
+    handle @allowed {
+        reverse_proxy tasksmd:8080
+    }
+
+    handle {
+        respond "Access denied" 403
+    }
 }
 
 files.thesatelliteoflove.com {