Idea: a different installation path for security #2067
Replies: 2 comments 3 replies
-
Why not just use a subdomain like coolify.yourserver.com and protect this one with Cloud Flare Zero Trust? That's what I do and it does not require any changes on the Coolify side of things other than adding that domain as Instance's Domain in the settings. The problem that I did not solve yet is, that the Coolify Admin panel is still reachable via http://Server-IP-Adress:8000 which is of course not good. I suppose this direct access can be somehow blocked within Traefik? Maybe @andrasbacsai can point to a solution here. Greets |
Beta Was this translation helpful? Give feedback.
-
One more Caveat i just noticed when using zero-trust. Auto Deploy does not work anymore as Github will not be able to access the hook on the coolify platform. Surely this can be configured somewhere, but I have not looked into that. If anyone did did this in the past, please let me no which approach is the correct one. Greets |
Beta Was this translation helpful? Give feedback.
-
Although it's probably not the best idea to host this on the same server you plan on deploying on, for those who want the convenience of that, it might be worth considering installing the dashboard to a different directory to allow users to secure it with Cloudflare Zero Trust etc.
For example, the admin panel might install at:
youurl.com/adminzone
And this way users could create a CF rule adding good authentication here.
Beta Was this translation helpful? Give feedback.
All reactions