nerdhalla.nerdcade.cc {
    root * /var/www/nerdhalla
    file_server

    # API reverse proxy
    handle_path /api/* {
        reverse_proxy 127.0.0.1:8081
    }

    # Security headers
    header {
        X-Content-Type-Options "nosniff"
        X-Frame-Options "DENY"
        Referrer-Policy "strict-origin-when-cross-origin"
    }

    # Logs
    log {
        output file /var/log/caddy/nerdhalla.log
    }
}