Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/perpetue237/docker-compose-secure-app

A Docker Compose setup for securely serving applications with Nginx, featuring HTTPS (TLS) and basic authentication. This project includes configuration for SSL/TLS certificates and user authentication to ensure your application is protected and accessible only to authorized users.
https://github.com/perpetue237/docker-compose-secure-app

authentication docker docker-compose fastapi nginx nginx-docker python tls-certificate

Last synced: 2 months ago
JSON representation

A Docker Compose setup for securely serving applications with Nginx, featuring HTTPS (TLS) and basic authentication. This project includes configuration for SSL/TLS certificates and user authentication to ensure your application is protected and accessible only to authorized users.

Awesome Lists containing this project

README 

          
# docker compose secure application with TLS and authentication



A Docker Compose setup for securely serving applications using Nginx with HTTPS (TLS) and basic authentication. This project configures SSL/TLS certificates and user authentication to protect and restrict access to your application.

- [docker compose secure application with TLS and authentication](#docker-compose-secure-application-with-tls-and-authentication)

  - [Project Structure](#project-structure)

  - [Setup Instructions](#setup-instructions)

    - [Generate SSL Certificates](#generate-ssl-certificates)

    - [Install `htpasswd` Utility](#install-htpasswd-utility)

    - [Create the `.htpasswd` File and user1](#create-the-htpasswd-file-and-user1)

  - [Build and Run the Docker Compose Setup](#build-and-run-the-docker-compose-setup)

  - [Verify the Setup](#verify-the-setup)

  - [Stop the Application and Clean the System](#stop-the-application-and-clean-the-system)

  - [License](#license)

  - [Contact](#contact)



## Project Structure



```plaintext

├── app

│   ├── Dockerfile

│   ├── main.py

│   └── requirements.txt

├── auth            # .htpasswd for user authentication (not in Git)

├── certs           #  SSL/TLS certificates (not in Git)

│   ├── server.crt

│   ├── server.csr

│   └── server.key

├── docker-compose.yml

├── LICENSE

├── nginx

│   ├── Dockerfile

│   └── nginx.conf

└── README.md

```



## Setup Instructions

### Generate SSL Certificates



```sh



openssl genrsa -out certs/server.key 2048

openssl req -new -key certs/server.key -out certs/server.csr

openssl x509 -req -days 365 -in certs/server.csr -signkey certs/server.key -out certs/server.crt

```



### Install `htpasswd` Utility



```sh

sudo apt-get install apache2-utils

```



### Create the `.htpasswd` File and user1



>**Note:** Remember the password you set for `user1` in the `.htpasswd` file. You will need this password to access the secured area of the application.



```sh

mkdir -p ./auth

htpasswd -c ./auth/.htpasswd user1

```



## Build and Run the Docker Compose Setup



```sh

docker-compose up --build -d

```



## Verify the Setup



Visit [https://localhost:8443](https://localhost:8443) and login with the username(`user1`) and password you created before.



>**Note:** 

>- The auth and certs directories are included in .gitignore for security reasons.

>- Ensure that ports 8080 and 8443 are available on your host machine.

>- The browser may show a warning that the connection is not secure. This is because a self-signed certificate is used for HTTPS. For production, you should obtain a certificate from a trusted Certificate Authority (CA) and configure it for your specific domain to avoid such warnings and ensure a secure connection.



## Stop the Application and Clean the System



```sh

docker-compose down

docker system prune

docker volume prune

```

## License



Distributed under the Apache License. See [LICENSE](LICENSE) for more information.



## Contact



[Perpetue Kuete Tiayo](https://www.linkedin.com/in/perpetue-k-375306185)