Merge branch 'main' into readme-sort-env-variables

modified:   .woodpecker/build.yml
	modified:   .woodpecker/lint.yml
	modified:   Dockerfile
	modified:   README.md
	modified:   cli/flags.go
	modified:   config/assets/test_config.toml
	modified:   config/config.go
	modified:   config/setup.go
	modified:   config/setup_test.go
	modified:   example_config.toml
	modified:   flake.lock
	modified:   flake.nix
	modified:   go.mod
	modified:   go.sum
	modified:   server/certificates/certificates.go
	modified:   server/dns/dns.go
	modified:   server/gitea/client.go
	modified:   server/handler/handler.go
	modified:   server/handler/handler_custom_domain.go
	modified:   server/handler/handler_test.go
	modified:   server/startup.go

README.md

@@ -64,19 +64,17 @@ but forward the requests on the IP level to the Pages Server.
 You can check out a proof of concept in the `examples/haproxy-sni` folder,
 and especially have a look at [this section of the haproxy.cfg](https://codeberg.org/Codeberg/pages-server/src/branch/main/examples/haproxy-sni/haproxy.cfg#L38).
 
+If you want to test a change, you can open a PR and ask for the label `build_pr_image` to be added.
+This will trigger a build of the PR which will build a docker image to be used for testing.
+
 ### Environment Variables
 
 - `ACME_ACCEPT_TERMS` (default: use self-signed certificate): Set this to "true" to accept the Terms of Service of your ACME provider.
-- `ACME_API` (default: <https://acme-v02.api.letsencrypt.org/directory>): set
-  this to <https://acme.mock.director> to use invalid certificates without any
-  verification (great for debugging). 
-ZeroSSL might be better in the future as it doesn't have rate limits and doesn't clash with the official Codeberg certificates (which are using Let's Encrypt), but I couldn't get it to work yet.
+- `ACME_API` (default: <https://acme-v02.api.letsencrypt.org/directory>): set this to <https://acme.mock.director> to use invalid certificates without any verification (great for debugging). ZeroSSL might be better in the future as it doesn't have rate limits and doesn't clash with the official Codeberg certificates (which are using Let's Encrypt), but I couldn't get it to work yet.
 - `ACME_EAB_KID` & `ACME_EAB_HMAC` (default: don't use EAB): EAB credentials, for example for ZeroSSL.
 - `ACME_EMAIL` (default: `noreply@example.email`): Set the email sent to the ACME API server to receive, for example, renewal reminders.
 - `ACME_USE_RATE_LIMITS` (default: true): Set this to false to disable rate limits, e.g. with ZeroSSL.
-- `DNS_PROVIDER` (default: use self-signed certificate): Code of the ACME DNS
-  provider for the main domain wildcard. 
-See <https://go-acme.github.io/lego/dns/> for available values & additional environment variables.
+- `DNS_PROVIDER` (default: use self-signed certificate): Code of the ACME DNS provider for the main domain wildcard. See <https://go-acme.github.io/lego/dns/> for available values & additional environment variables.
 - `ENABLE_HTTP_SERVER` (default: false): Set this to true to enable the HTTP-01 challenge and redirect all other HTTP requests to HTTPS. Currently only works with port 80.
 - `GITEA_API_TOKEN` (default: empty): API token for the Gitea instance to access non-public (e.g. limited) repos.
 - `GITEA_ROOT` (default: `https://codeberg.org`): root of the upstream Gitea instance.
@@ -107,7 +105,7 @@ Previous maintainers:
 
 ### First steps
 
-The code of this repository is split in several modules.  
+The code of this repository is split in several modules.
 The [Architecture is explained](https://codeberg.org/Codeberg/pages-server/wiki/Architecture) in the wiki.
 
 The `cmd` folder holds the data necessary for interacting with the service via the cli.
@@ -120,7 +118,7 @@ Thank you very much.
 
 Make sure you have [golang](https://go.dev) v1.21 or newer and [just](https://just.systems/man/en/) installed.
 
-run `just dev`  
+run `just dev`
 now these pages should work:
 
 - <https://cb_pages_tests.localhost.mock.directory:4430/images/827679288a.jpg>