Skip to content

Reverse proxy + TLS

The one-paste installer brings the panel up on plaintext :8080. Before you point users at it, put a reverse proxy in front of it that terminates TLS.

Pick one. Replace <domain> with your real domain throughout.

Caddy is the simplest option — it obtains Let’s Encrypt certificates automatically the first time it serves a domain. No certbot, no manual renewal.

Install Caddy via your distro’s package manager, then replace /etc/caddy/Caddyfile with:

/etc/caddy/Caddyfile
<domain> {
encode gzip zstd
request_body { max_size 100MB }
reverse_proxy 127.0.0.1:8080 {
header_up Host {host}
header_up X-Real-IP {remote}
}
}

Reload:

Terminal window
sudo systemctl reload caddy

That’s it — Caddy requests and installs the certificate on first request.

Verify

Terminal window
curl -fsSL https://<domain>/api/health
# {"status":"ok"}

If you get {"status":"ok"} over HTTPS, you are done with the panel install. Next you need a Wings node so the panel has somewhere to run game servers.

Next →
Next: Wings
Install the Wings daemon on a node host.