feat(reverse_proxy): fix caddy letsencrypt

Signed-off-by: Tuan-Dat Tran <tuan-dat.tran@tudattr.dev>

roles/reverse_proxy/tasks/00_go_install.yml

@@ -6,6 +6,7 @@
       - debian-archive-keyring
       - apt-transport-https
       - curl
+      - qemu-guest-agent
     state: present
     update_cache: true
   become: true

roles/reverse_proxy/templates/Caddyfile.j2

@@ -1,16 +1,8 @@
 {
-	acme_dns netcup {
-		customer_number {{ netcup_customer_id }}
-		api_key {{ netcup_api_key }}
-		api_password {{ netcup_api_password }}
-	}
     email {{ caddy.admin_email | default('admin@example.com') }}
     acme_ca {{ caddy.acme_ca | default('https://acme-v02.api.letsencrypt.org/directory') }}
 }
 
-*.{{ domain }} {
-}
-
 {% for service in services %}
 {% if service.ports is defined %}
 {% if service.ports is iterable %}
@@ -24,6 +16,17 @@
       output file /var/log/caddy/{{ service.name }}.log
       format json
   }
+
+	tls {
+		dns netcup {
+			customer_number {{ netcup_customer_id }}
+			api_key {{ netcup_api_key }}
+			api_password {{ netcup_api_password }}
+		}
+    propagation_timeout 900s
+		propagation_delay 600s
+		resolvers 1.1.1.1
+	}
 }
 
 {% endif %}