Stump behind https greverse proxy

[dsavicIre]

HI,

Did anyone manage to do this.

I have Caddy file with the following 👍

xxx.ddns.net:8444 {
    tls {
        issuer acme {
            email xxx@xxx.com
        }
    }

    reverse_proxy http://localhost:8084
}

Does not work at all, any suggestions ?
Thanks

[aaronleopold]

I haven't personally tried caddy, but the demo for Stump uses nginx and maybe the config can help you:

server {
    listen 80;
    server_name demo.stumpapp.dev;

    location / {
        return 301 https://$host$request_uri;
    }
}

server {
    listen 443 ssl;
    server_name demo.stumpapp.dev;

    ssl_certificate /path/to/fullchain.pem;
    ssl_certificate_key /path/to/privkey.pem;

    include /path/to/options-ssl-nginx.conf;
    ssl_dhparam /path/to/ssl-dhparams.pem;

    location / {
        proxy_pass http://stump:10801;
        proxy_set_header    Host                $http_host;
        proxy_set_header    X-Real-IP           $remote_addr;
        proxy_set_header    X-Forwarded-For     $proxy_add_x_forwarded_for;
    }
}

[simplefr4nk]

I tried stump just to test it and have caddy as my reverse proxy. I use a wildcard handle so maybe it is different from your deployment, but I still think this could help:

*.URL {
    @stump host stump.URL
    handle @stump {
        reverse_proxy stump:10801
    }
}

The certificate is issued from the global config that's why it isn't there.

[kulak]

The simplest only port 80 setup for nginx:

server {
    server_name  target_dns_name_recognized_on_your_network_or_ip;

    # restrict access to local network only, if you want, need both lines:
    #allow 10.0.1.0/24;
    #deny all;

    location / {
        proxy_pass http://your_ip:10801;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    }
}