Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature Request: Tailscale HTTPS #758

Open
tornupnegatives opened this issue Aug 29, 2023 · 11 comments
Open

Feature Request: Tailscale HTTPS #758

tornupnegatives opened this issue Aug 29, 2023 · 11 comments

Comments

@tornupnegatives
Copy link

Tailscale allows users to request an HTTPS certificate: https://tailscale.com/kb/1153/enabling-https/

It would be great if this functionality became supported for Umbrel, such that certain services like Vaultwarden work properly without Tor.
@aphex3k
Copy link
Contributor

aphex3k commented Sep 12, 2023

@tornupnegatives
Copy link
Author

Yes, I have. However, I do not see a way to run the tailscale cert command from Umbrel. Even if I SSH in, I would need to do it from the Docker container in which Tailscale is running, which I do not believe is possible. Ideally, the Tailscale Umbrel app would have a checkbox which triggers this command.

@aphex3k
Copy link
Contributor

aphex3k commented Sep 13, 2023
edited
Loading

Did you check tailscale/tailscale#5072?

I want to make clear that this is a tailscale and you problem, not an umbrel problem. While the UX might be suboptimal it is on Tailscale to fix the issue really.

@tornupnegatives
Copy link
Author

No, but I will give it a try. Thanks.

Either way, there should be a user-friendly toggle within the Umbrel app itself.

@tornupnegatives
Copy link
Author

HTTPS support is a major request over on the Umbrel community forums

@aphex3k
Copy link
Contributor

aphex3k commented Sep 13, 2023

HTTPS support is a major request over on the Umbrel community forums

That might be the case, but you are "barking up the wrong tree". You can enable https on umbrel no problem after you SSH into your sever and use the appropriate docker command as described in the documentation. It works exactly as intended by the Tailscale developers.

@tornupnegatives
Copy link
Author

Have you tried this? I actually cannot get it to work :/

@Knufle
Copy link

Knufle commented Oct 30, 2023

HTTPS support is a major request over on the Umbrel community forums

That might be the case, but you are "barking up the wrong tree". You can enable https on umbrel no problem after you SSH into your sever and use the appropriate docker command as described in the documentation. It works exactly as intended by the Tailscale developers.

What command would that be?

@FlyinPancake
Copy link
Contributor

As of umbrelos 1.1 you can get a shell for your container and request the https cert from there

@tornupnegatives
Copy link
Author

Per your recommendation, I have generated certificates using the tailscale cert command within the Tailscale container's shell. My Tailscale admin dashboard sees the certificate, but none of the Umbrel apps seem to be using it...

@sahilph
Copy link
Contributor

sahilph commented Oct 18, 2024

but none of the Umbrel apps seem to be using it...

They are not using it because, the internal containers are configured to be http only.

I have been working on getting https to work for all apps More info here

It uses modified version of those containers which supports https. By default it creates self signed certificate, but if you intend to use tailscale exclusively, you can just, skip the "Trusting Root CA" part and replace the generated certificate files with the ones from tailscale.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@aphex3k @sahilph @Knufle @tornupnegatives @FlyinPancake