Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum

Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. Discuss
  3. Limiting web based access to Cloudron Apps

Limiting web based access to Cloudron Apps

Scheduled Pinned Locked Moved Discuss
9 Posts 4 Posters 1.3k Views 4 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • KubernetesK Offline
      KubernetesK Offline
      Kubernetes
      App Dev
      wrote on last edited by girish
      #1

      Hi there,

      What options are available to limit web based access to Cloudron Apps?

      I know that most Apps does have a Login mask to restrict access to the App. But what if I would like to stop strangers to even reach the login mask? Is there a way to use basic authentication in the reverse proxy?

      Best,
      Michael

      nichu42N girishG 2 Replies Last reply
      1
      • KubernetesK Kubernetes

        Hi there,

        What options are available to limit web based access to Cloudron Apps?

        I know that most Apps does have a Login mask to restrict access to the App. But what if I would like to stop strangers to even reach the login mask? Is there a way to use basic authentication in the reverse proxy?

        Best,
        Michael

        nichu42N Offline
        nichu42N Offline
        nichu42
        wrote on last edited by
        #2

        @Kubernetes said in Limiting web based access to Cloudron Apps:

        I know that most Apps does have a Login mask to restrict access to the App. But what if I would like to stop strangers to even reach the login mask? Is there a way to use basic authentication in the reverse proxy?

        Do you mean something like setting up .htaccess/.htpasswd from within Cloudron?

        Matrix: @nichu42:blueplanet.social

        KubernetesK 1 Reply Last reply
        0
        • nichu42N nichu42

          @Kubernetes said in Limiting web based access to Cloudron Apps:

          I know that most Apps does have a Login mask to restrict access to the App. But what if I would like to stop strangers to even reach the login mask? Is there a way to use basic authentication in the reverse proxy?

          Do you mean something like setting up .htaccess/.htpasswd from within Cloudron?

          KubernetesK Offline
          KubernetesK Offline
          Kubernetes
          App Dev
          wrote on last edited by
          #3

          @nichu42 Yes, exactly. But just for specific Apps.

          1 Reply Last reply
          1
          • KubernetesK Kubernetes

            Hi there,

            What options are available to limit web based access to Cloudron Apps?

            I know that most Apps does have a Login mask to restrict access to the App. But what if I would like to stop strangers to even reach the login mask? Is there a way to use basic authentication in the reverse proxy?

            Best,
            Michael

            girishG Offline
            girishG Offline
            girish
            Staff
            wrote on last edited by
            #4

            @Kubernetes We are looking into a wireguard/openvpn based solution for this - https://forum.cloudron.io/topic/8269/what-s-coming-in-7-4 (though, unfortunately, it won't be in 7.4 . probably 7.5. 7.4 is mostly getting out all the database upgrades)

            robiR 1 Reply Last reply
            1
            • girishG girish

              @Kubernetes We are looking into a wireguard/openvpn based solution for this - https://forum.cloudron.io/topic/8269/what-s-coming-in-7-4 (though, unfortunately, it won't be in 7.4 . probably 7.5. 7.4 is mostly getting out all the database upgrades)

              robiR Offline
              robiR Offline
              robi
              wrote on last edited by
              #5

              @girish why is a VPN setup a solution for basic http(s)/proxy auth?

              That's like saying we're looking into SFTP access so we can run an SSH proxy to port forward HTTP(s) connections to the app gated by the SSH login.

              Conscious tech

              girishG 1 Reply Last reply
              0
              • KubernetesK Offline
                KubernetesK Offline
                Kubernetes
                App Dev
                wrote on last edited by
                #6

                The main reason for my question is to get strangers away from my apps. For smaller home use an VPN would be an acceptable solution. However, I wonder how the SSL Certificates will be created when Let's encrypt is not able to reach the Cloudron Apps?

                girishG 1 Reply Last reply
                0
                • KubernetesK Kubernetes

                  The main reason for my question is to get strangers away from my apps. For smaller home use an VPN would be an acceptable solution. However, I wonder how the SSL Certificates will be created when Let's encrypt is not able to reach the Cloudron Apps?

                  girishG Offline
                  girishG Offline
                  girish
                  Staff
                  wrote on last edited by
                  #7

                  @Kubernetes let's encrypt does not require network reachability when DNS automation is used.

                  1 Reply Last reply
                  1
                  • robiR robi

                    @girish why is a VPN setup a solution for basic http(s)/proxy auth?

                    That's like saying we're looking into SFTP access so we can run an SSH proxy to port forward HTTP(s) connections to the app gated by the SSH login.

                    girishG Offline
                    girishG Offline
                    girish
                    Staff
                    wrote on last edited by
                    #8

                    @robi most mobile apps will break with htaccess kind of setup

                    robiR 1 Reply Last reply
                    1
                    • girishG girish

                      @robi most mobile apps will break with htaccess kind of setup

                      robiR Offline
                      robiR Offline
                      robi
                      wrote on last edited by
                      #9

                      @girish okay, I thought this was selective for web based apps that it makes sense to limit in that way, not for the entire cloudron all at once.

                      For any affected mobile apps, one can use a pw enabled proxy-redirect to a secondary domain of the App.

                      Conscious tech

                      1 Reply Last reply
                      0
                      Reply
                      • Reply as topic
                      Log in to reply
                      • Oldest to Newest
                      • Newest to Oldest
                      • Most Votes


                        • Login

                        • Don't have an account? Register

                        • Login or register to search.
                        • First post
                          Last post
                        0
                        • Categories
                        • Recent
                        • Tags
                        • Popular
                        • Bookmarks
                        • Search