Somewhere between Linux woes, gaming, open source, 3D printing, recreational coding, and occasional ranting.
🇬🇧 / 🇩🇪
but I’d like to give Nginx Proxy Manager a try, it seems easier to manage stuff not in docker.
NPM is pretty agnostic. If it receives a request for a specific address and port combination it just forwards the traffic to another specific address and port combination. This can be a docker container, but also can be a physical machine or any random URL.
It also has Let’s Encrypt included (but that should be a no-brainer).
For some people it’s not always about the money.
I run my website as static site from within a Docker container, I wonder how I would get the information about the other containers into that site.
Do you directly serve that site from the host or do you run the script and write something in a volume the site has read access to or bind a file?
Do you guys have any suggestions?
Because I don’t like software getting in my way I just cobbled together some HTML and CSS and call it a day.
Usually you just see LibreOffice and nothing else, so it’s fine, I guess. Not a web-based editor, but usable.
Ah, I see. Not as native web application, though.
They’re using Alpine Linux, install X and Openbox and Xvnc and serve KasmVNC via Nginx and connect via KasmVNC to that X instance. LibreOffice is started in fullscreen and looks like a slightly blurry web application.
But in reality it is just a regular desktop installation with some extra things.
@fikran@lemm.ee, maybe this is a solution? I wouldn’t recommend it because it’s not really a web-based document editor.
So, LibreOffice can be used over the Internet in a web browser?
Exactly. With directly using certbot handling all and everything fully automatically I ran my old setup with a free dyndns subdomain for quite some time without any issues.
Since Let’s encrypt nowadays is basically implemented in every reverse proxy: certificates are an absolute no-brainer.
If someone manages to buy and configure a domain to serve selfhosted content, this person will also be able to either set up certbot or use the built-in functionality of their reverse proxy.
It’s 2025. Not having “real certificates” is something admins intentionally do. Since there is Let’s Encrypt available, all other solutions for non-paid certificates are obsolete.
There – of course – won’t be a singular official source stating “Hey guys, we’re open core now”. You need to put this together bit-by-bit.
Here are some links for research
It falls under self hosted, at least. If it is still truly open source is highly debatable.
Never heard of 99% in that list.
Also, Gitea should not be there. It is a corporate -owned open core project that was hostilely taken away from the community.
I don’t trust them with that. They have an extremely limited free tier that indirectly “forces” users to upgrade to one of the paid tiers. The one that is least limited and reasonably priced is “Proton Unlimited” for ten bucks a month to be paid annually. Plus: you cannot even use a mail client of your choice without installing an extra application for that.
You could easily selfhosting the cloud stuff. If you don’t want to selfhost a mail server you could use one from a mail provider. Don’t know how it’s done internationally, but here in Germany are quite a few companies that provide you with either a domain forwarding service for your selfhosted stuff, or a good and cheap mail server solution for a fraction of what Proton wants to have, and I highly doubt they need ca. $120 a year per user to offer a handful of mail aliasev and allowing you to create folders in your mailbox.
And you’re not even arbitrarily limited - and your data never leaves your private environment.
There are 2 kinds of companies:
- Evil companies
Companies that are not evil YET.Comanies that were not caught yet.
FTFY.
Wow, such a generic nonpology.
Oh, I’m so, so sorry I was caught red-handed. I apologize for anything you guys blame me for, please keep using your product.
I always forget there is a hyped for-profit mail service using the same name as the game compatibility layer.
Smith & Wesson
Authentication with NPM is pretty straightforward. You basically just configure an ACL, add your users, and configure the proxy host to use that ACL.
I found this video explaining it: https://youtu.be/0CSvMUJEXIw?t=62
NPM unfortunately has a long-term bug since 2020, that needs you to add a specific configuration when setting up the ACL as shown in the video.
At the point where he is on the “Access” tab with all the allow and deny entries, you need to add an allow entry with 0.0.0.0/0 as IP address.
Other than that, the setup shown in the video works in the most recent version.
How do you handle SSL certs and internet access in your setup?
I have NPM running as “gateway” between my LAN and the Internet and let handle it all of my vertificates using the built-in Let’s Encrypt features. None of my hosted applications know anything about certificates in their Docker containers.
As for your questions:
They do it since quite some time now, right?