providers/proxy: add caddy endpoint (#3330)

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

website/docs/providers/proxy/_caddy_standalone.md

@@ -0,0 +1,22 @@
+Use the following configuration:
+
+```
+app.company {
+    # always forward outpost path to actual outpost
+    reverse_proxy /outpost.goauthentik.io/* http://outpost.company:9000
+
+    # forward authentication to outpost
+    forward_auth http://outpost.company:9000 {
+        uri /outpost.goauthentik.io/auth/caddy
+
+        # capitalization of the headers is important, otherwise they will be empty
+        copy_headers X-Authentik-Username X-Authentik-Groups X-Authentik-Email X-Authentik-Name X-Authentik-Uid X-Authentik-Jwt X-Authentik-Meta-Jwks X-Authentik-Meta-Outpost X-Authentik-Meta-Provider X-Authentik-Meta-App X-Authentik-Meta-Version
+
+        # optional, in this config trust all private ranges, should probably be set to the outposts IP
+        trusted_proxies private_ranges
+    }
+
+    # actual site configuration below, for example
+    reverse_proxy localhost:1234
+}
+```

website/docs/providers/proxy/forward_auth.mdx

@@ -130,3 +130,23 @@ import EnvoyIstio from "./_envoy_istio.md";
 
   </TabItem>
 </Tabs>
+
+## Caddy
+
+:::info
+Requires authentik 2022.8
+:::
+
+<Tabs
+  defaultValue="caddy-standalone"
+  values={[
+    {label: 'Caddy (standalone)', value: 'caddy-standalone'},
+  ]}>
+  <TabItem value="caddy-standalone">
+
+import CaddyStandalone from "./_caddy_standalone.md";
+
+<CaddyStandalone />
+
+  </TabItem>
+</Tabs>