[Unit]
Description=Caddy web server
After=network-online.target
Wants=network-online.target

[Container]
Image=docker.io/library/caddy:2
Volume=/etc/caddy:/etc/caddy:ro
Volume=/var/lib/caddy/config:/config/caddy:rw,z
Volume=/var/lib/caddy/data:/data/caddy:rw,z
ReadOnly=yes
ReadOnlyTmpfs=yes
Network=host
AddCapability=CAP_NET_BIND_SERVICE
DropCapability=all

[Service]
StateDirectory=%N/data %N/config
ExecReload=/usr/bin/podman exec systemd-%N caddy reload -c /etc/caddy/Caddyfile

[Install]
WantedBy=multi-user.target