My Caddyfile for nextcloud

Caddyfile

cloud.mickir.me:443 {

    tls /etc/letsencrypt/live/cloud.mickir.me/fullchain.pem /etc/letsencrypt/live/cloud.mickir.me/privkey.pem

    timeouts none
    root /usr/share/webapps/nextcloud
    log /home/mickir/caddy/access.log
    errors /home/mickir/caddy/access.log

    fastcgi / /run/php-fpm/php-fpm.sock php {
        env PATH /bin
    }

    rewrite {
        r ^/index.php/.*$
        to /index.php?{query}
    }

    # client support (e.g. os x calendar / contacts)
    redir /.well-known/carddav /remote.php/carddav 301
    redir /.well-known/caldav /remote.php/caldav 301

    # remove trailing / as it causes errors with php-fpm
    rewrite {
        r ^/remote.php/(webdav|caldav|carddav|dav)(\/?)$
        to /remote.php/{1}
    }

    rewrite {
        r ^/remote.php/(webdav|caldav|carddav|dav)/(.+?)(\/?)$
        to /remote.php/{1}/{2}
    }

    rewrite {
        r ^/public.php/(.+?)(\/?)$
        to /public.php/(.+?)(\/?)$
    }

    # .htaccess / data / config / ... shouldn't be accessible from outside
    status 403 {
        /.htacces
        /data
        /config
        /db_structure
        /.xml
        /README
    }

    header / Strict-Transport-Security "max-age=31536000;"


}