From a1d292a20c5ec85893b2686f752acfe4477d09dc Mon Sep 17 00:00:00 2001
From: Tord-Vincent Heggland <tordvh@hotmail.no>
Date: Sun, 26 Apr 2026 12:31:36 +0200
Subject: [PATCH] sertifiseringfungerer

---
 Caddyfile  | 19 ++++++++++++++++++-
 Dockerfile |  4 +++-
 2 files changed, 21 insertions(+), 2 deletions(-)

diff --git a/Caddyfile b/Caddyfile
index 0a2f41f..4bd278b 100644
--- a/Caddyfile
+++ b/Caddyfile
@@ -26,6 +26,23 @@
 	}
 	respond @readonly 403
 }
+(dns-tls) {
+	tls {
+		dns domainnameshop {$DOMENESHOP_API_TOKEN} {$DOMENESHOP_API_SECRET}
+		propagation_delay 90s
+	}
+}
+test.home.{$DOMENESHOP_DNS} {
+	import dns-tls
+	@wg remote_ip 10.10.10.0/24 127.0.0.1/8
+#	handle @wg {
+#		respond "TLS fungerer"
+#	}
+#	handle {
+#		respond "Forbidden" 403
+#	}
+	respond "ok"
+}
 ### TJENESTER ###
 git.{$DOMENESHOP_DNS} {
 	import remote-ip
@@ -44,7 +61,7 @@ lms.home.{$DOMENESHOP_DNS}  {
 }
 
 pihole.home.{$DOMENESHOP_DNS} {
-	tls internal
+	import dns-tls
 	import remote-ip
 	handle @internal {
 		redir / /admin
diff --git a/Dockerfile b/Dockerfile
index 468e0e8..3a889d1 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -3,7 +3,9 @@ FROM caddy:2-builder AS builder
 RUN --mount=type=cache,target=/go/pkg/mod \
     --mount=type=cache,target=/root/.cache/go-build \
     xcaddy build \
-    --with github.com/mholt/caddy-ratelimit
+    --with github.com/mholt/caddy-ratelimit \
+    --with github.com/caddy-dns/domainnameshop
+
 
 FROM caddy:2