Nginx Proxy Manager
authelia
Our great sponsors
- SurveyJS - A Non-Cloud Alternative to Google Forms that has it all.
- Amplication - open-source Node.js backend code generator
- Appwrite - The open-source backend cloud platform
- Mergify - Tired of breaking your main and manually rebasing outdated pull requests?
- Sonar - Write Clean JavaScript Code. Always.
- InfluxDB - Collect and Analyze Billions of Data Points in Real Time
Nginx Proxy Manager | authelia | |
---|---|---|
643 | 168 | |
15,391 | 17,375 | |
5.5% | 2.2% | |
1.8 | 9.8 | |
7 days ago | 6 days ago | |
JavaScript | Go | |
MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Nginx Proxy Manager
-
My Home Lab setup
Load Balancer: NPM Static IP VPN: PureVPN Proxy Server: CCProxy
-
Domains and Email hosting
As far as website hosting, just set up a few Docker containers: one for a web-server of your choice, and one for a reverse proxy. I recommend Nginx Proxy Manager. It handles SSL certificates for you in a super simple way (both the initial acquisition process as well as auto renewal) and makes it easy to expand to using multiple web servers in the future, or setting up redirects without filling up your DNS records.
-
Risk of self-hosting smaller projects
Feel like Christian Lempa is being a bit too lenient with the developer of Nginx Proxy Manager. jc21's handling of reported vulnerability was poor. 10 months to fix and then simply including it in the list of changes for v2.9.20 without publishing a security advisory. Not great. And to make matters worse, the project still doesn't have a security policy.
- Trouble setting up reverse proxy with Nginx.
-
Raspberry Pi 3b+ enough for proxy server
Docker runs on the 3B+ so you could use this [Github] or the one I have deployed here [NGINX Proxy Manager site] amongst others.
-
Add https to docker app
UPDATE: Hello everyone, finally after doing some research about reverse proxies I have found a way of adding https to my webapps. I found this service called https://nginxproxymanager.com/ and followed the tutorial on their website its pretty easy. Thanks for your help guys!!
-
Safely opening up FreshRSS Server
Is Reverse Proxy enough to be safe? I was thinking about trying Nginx Proxy Manager. Also... Do I also have to separately setup Nginx before installing the Proxy Manager?
-
New to Keep large amount of Data and Need Advice!
For a few TB of data you have many options. I use a Beelink Mini S12 with a 4TB SSD and a 2TB NVMe in it. It is powerful enough to run several services and stream photos and video to my phone, desktop, and TV (using an Amazon Fire Stick on the TV). I use Photoprism and Jellyfin for that. I access it remotely using Tailscale. It helps if you own a domain so you can setup SSL certs. I have devpl.us and home.devpl.us points to my server.
-
Internal Server Error when proxy host directs to router
The SSL certificate for my wildcard domain is currently managed by the acme.sh script running as a Docker container until the issue with NPM and Azure DNS certificate management is resolved.
-
Ask community: are you OK with headless setups?
I recently had trouble getting an SSL cert, but I found this PR and it already has an image and it works for me. I use Tailscale and my network isn't visible from the internet so I use the DNS Challenge option with GoDaddy and an API key.
authelia
-
Why would anyone need AD/AAD when you can manage devices through Saltstack?
https://github.com/saltstack/salt https://github.com/chocolatey/choco https://github.com/nextcloud https://github.com/authelia/authelia https://github.com/grafana/grafana
-
HAProxy with Forward Auth to Authentik
If you are using HAProxy on PfSense/OPNSense, see my issue https://github.com/authelia/authelia/issues/2696
-
Keycloak – Open-Source Identity and Access Management Interview
We used keycloak for openid identity provider as well. It is fine to setup keycloak once. But it is painful share the setup with other engineers.
For local development, we end up using dex (https://dexidp.io). When we need support group/role, we use dex and glauth(https://glauth.github.io). Both dex and glauth can be configured with yaml files. We just created a few yaml files and a docker compose file, every engineer can be brought up the whole environment in a few seconds.
Also https://www.authelia.com and https://github.com/goauthentik/authentik look pretty promising, if you need more advanced features from them.
-
LDAP or AD for selfhosted
https://github.com/lldap/lldap is a very simple and lightweight LDAP solution. Works flawless with https://www.authelia.com/
-
Authelia/SSO With Caddy In Docker Compose?
Ah yeah, so I guess it's been a while since I tried and I forgot where I got stuck last time. Authelia's config.yml is absolutely massive and I'm not sure which section of their guide I should be following. In The Docker Compose section, there's "Unbundled", "Lite", and "Local". I think I want to be running the "lite" bundle, but their example compose file has a ton of Traefik stuff in it. I know I wouldn't keep the Traefik services, but do I need either secure or public?
-
How do you secure your webpages that have no protection?
Authelia supports SSO. If you are behind a reverse proxy it’s quite straightforward to integrate.
-
Which SSO supports passkey? (webauthn)
Passwordless auth has been on the backburner for Authelia for a while, the backend stuff should be ready but nobody has had the time to mock up and implement a good UI for it just yet - https://github.com/authelia/authelia/issues/2827
-
Selfmade PVE-Rack
Authelia, as 2FA for my internal applications
- Keycloak with PostgreSQL on Kubernetes
What are some alternatives?
Keycloak - Open Source Identity and Access Management For Modern Applications and Services
authentik - The authentication glue you need.
traefik - The Cloud Native Application Proxy
docker-swag - Nginx webserver and reverse proxy with php support and a built-in Certbot (Let's Encrypt) client. It also contains fail2ban for intrusion prevention.
socks5-proxy-server - SOCKS5 proxy server
acme-dns - Limited DNS server with RESTful HTTP API to handle ACME DNS challenges easily and securely.
BunkerWeb - 🛡️ Make your web services secure by default !
docker-pi-hole - Pi-hole in a docker container
oauth2 - Go OAuth2
caddy-docker - Source for the official Caddy v2 Docker Image
homer - A very simple static homepage for your server.
frp - A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.