feat: caddy test

nixos/modules/services/upRootNutrition.nix

@@ -1,9 +1,7 @@
 {flake, ...}: let
-  inherit (flake.config.machines.devices) server;
-  inherit (flake.config.people.users) user0;
   inherit (flake.config.services.instances) upRootNutrition web;
   service = upRootNutrition;
-  localhost = web.localhost.address0;
+  # localhost = web.localhost.address0;
   host = web.domains.url3;
 in {
   services = {
@@ -11,23 +9,14 @@ in {
       virtualHosts = {
         "${host}" = {
           extraConfig = ''
-            root * /var/lib/website/dist
+            # Root directory where your compiled Elm files are located
-            try_files {path} /index.html
+            root * ${service.path.path0}
+
             file_server
 
-            # Optional: Add security headers
+            encode gzip
-            header {
-              Strict-Transport-Security "max-age=31536000;"
-              X-Content-Type-Options "nosniff"
-              X-Frame-Options "DENY"
-              Referrer-Policy "strict-origin-when-cross-origin"
-            }
 
-            # Your existing redirects
+            try_files {path} /index.html
-            redir /.well-known/carddav /remote.php/dav/ 301
-            redir /.well-known/caldav /remote.php/dav/ 301
-
-            reverse_proxy ${localhost}:${toString service.ports.port0}
 
             tls ${service.ssl.cert} ${service.ssl.key}
           '';
@@ -35,4 +24,7 @@ in {
       };
     };
   };
+  systemd.tmpfiles.rules = [
+    "Z ${service.paths.path0} 755 caddy caddy -"
+  ];
 }