In my case I manually changed nextcloud apache2 port to 444 to free 443 for caddy and I can regularly access the instance in my LAN as nextcloudhostip:444.
I’ve also added the websocket and transparent options becuase I’ve read somewhere else that they are needed (but honestly I’m blindly adding these options as I didn’t fully grasp their purpose).
In my case however if I specify the port I get a connection timeout as expected since on my router I’ve opened only ports 80 and 443 and reverse proxying everything “inside” my network using Caddy proxy functionality.
No certificate warning is shown for me, actually the certificate is valid and the connection secure as shown: https://i.imgur.com/V9pqwF2.png
Edit
Adding to the proxy directive the option insecure_skip_verify, solves the issue but I’m not really sure I should permanently use this solution, doesn’t it lower the security?
Furthermore even with this option enabled I still have a HTTPS connection, am I misunderstanding something?
From the documentation:
insecure_skip_verify overrides verification of the backend TLS certificate, essentially disabling security features over HTTPS.