Skip to content

how do I run this behind nginx proxy setup? #39

Description

@ralyodio

I have the following nginx proxy setup:

####################################################
#               umbrel.profullstack.com        #
####################################################

server {
    listen [::]:80;
    listen 80;
    server_name	umbrel.profullstack.com;
    return 301 https://umbrel.profullstack.com$request_uri;
}

server {
    server_name umbrel.profullstack.com;

    add_header 'Cache-Control' 'no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0';
    add_header 'Last-Modified' '';
    if_modified_since off;
    expires -1;
    etag off;

    listen [::]:443 ssl http2;
    listen 443 ssl http2;
    ssl_certificate /etc/letsencrypt/live/umbrel.profullstack.com/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/live/umbrel.profullstack.com/privkey.pem;
		include /etc/letsencrypt/options-ssl-nginx.conf;
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem;
    ssl_protocols TLSv1.2;

    client_max_body_size 1000M;

    client_body_timeout 1800s;
    client_header_timeout 1800s;
    keepalive_timeout 1800s;
    send_timeout 1800s;

		location / {
        proxy_pass http://localhost:8032;
        proxy_http_version 1.1;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection 'upgrade';
        proxy_cache_bypass $http_upgrade;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-Proto https;
        proxy_set_header X-Forwarded-For $remote_addr;

				# Remove existing CSP headers from upstream
				proxy_hide_header Content-Security-Policy;
				# Optionally, explicitly disable CSP
				add_header Content-Security-Policy "";

        # Increase proxy timeouts to 30 minutes
        proxy_connect_timeout 1800s;
        proxy_send_timeout 1800s;
        proxy_read_timeout 1800s;
        send_timeout 1800s;

        # Optional: Increase buffer sizes
        proxy_buffer_size 128k;
        proxy_buffers 4 256k;
        proxy_busy_buffers_size 256k;

        # Optional: Disable buffering
        proxy_buffering off;
    }

		location /api/ {
        proxy_pass http://localhost:2100;  # Bitcoin API
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
				# Remove existing CSP headers from upstream
				proxy_hide_header Content-Security-Policy;
				# Optionally, explicitly disable CSP
				add_header Content-Security-Policy "";
    }

    location /lightning/ {
        proxy_pass http://localhost:2101;  # Lightning API
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
				# Remove existing CSP headers from upstream
				proxy_hide_header Content-Security-Policy;
				# Optionally, explicitly disable CSP
				add_header Content-Security-Policy "";
    }
}

I can install bitcoin and lightning node but when I click on them it tries to redirect me to port 2000.

Can this be configured somehow to use my root domain or whatever needs to happen?

https://umbrel.profullstack.com:2000/?origin=host&app=lightning&path=%2Flightning%2F

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions