Passbolt setup with caddy

Community Feedback
1

I would like to install passbolt very simple.

At the moment, I have to extra configure traefik with https://www.passbolt.com/docs/hosting/configure/https/ce/docker-auto/.

For me, this looks very complicated with a lot of lines to configure.

Could you provide a official setup documentation with caddy?

What I expect is something like this

CaddyFile

passbolt.my-domain.com {
reverse_proxy passbolt
}

and a full complete docker-compose.yml with caddy and passbolt.
ready for copy&paste.

2

Hi :waving_hand:

version: "3.8"

services:
  passbolt:
    image: passbolt/passbolt:latest-ce
    container_name: passbolt
    environment:
      APP_FULL_BASE_URL: https://passbolt.my-domain.com
      DATASOURCES_DEFAULT_HOST: mariadb
      DATASOURCES_DEFAULT_USERNAME: passbolt
      DATASOURCES_DEFAULT_PASSWORD: secret
      DATASOURCES_DEFAULT_DATABASE: passboltdb

      EMAIL_DEFAULT_FROM: your-email@gmail.com
      EMAIL_TRANSPORT_DEFAULT_HOST: smtp.gmail.com
      EMAIL_TRANSPORT_DEFAULT_PORT: 587
      EMAIL_TRANSPORT_DEFAULT_USERNAME: your-email@gmail.com
      EMAIL_TRANSPORT_DEFAULT_PASSWORD: your-app-password
      EMAIL_TRANSPORT_DEFAULT_TLS: true

      # Optional (for logging/timezone)
      TZ: Europe/Paris
    volumes:
      - gpg:/etc/passbolt/gpg
      - jwt:/etc/passbolt/jwt
    depends_on:
      - mariadb

  mariadb:
    image: mariadb:10.6
    container_name: mariadb
    environment:
      MYSQL_ROOT_PASSWORD: supersecret
      MYSQL_DATABASE: passboltdb
      MYSQL_USER: passbolt
      MYSQL_PASSWORD: secret
    volumes:
      - db_data:/var/lib/mysql

  caddy:
    image: caddy:2
    container_name: caddy
    ports:
      - "80:80"
      - "443:443"
    volumes:
      - ./Caddyfile:/etc/caddy/Caddyfile
      - caddy_data:/data
      - caddy_config:/config

volumes:
  db_data:
  gpg:
  jwt:
  caddy_data:
  caddy_config:

Aside your docker-compose.yml, create a Caddyfile with this content:

passbolt.my-domain.com {
  reverse_proxy passbolt:80
}

Can you try and let us know ?

Cheers,

3

Thank you, this works

So the tutorial is:

  • download docker-compose.yml
  • configure Caddyfile
  • docker-compose up -d

create user

docker compose -f docker-compose-ce.yaml \exec passbolt su -m -c "/usr/share/php/passbolt/bin/cake \  passbolt register_user \    -u YOUR_EMAIL \    -f YOUR_NAME \    -l YOUR_LASTNAME \    -r admin" -s /bin/sh www-data

Maybe you can update this simpel tutorial in your get started guide

4

Thank you for the feedback. You are right, this setup is so much easier than the traefik one and error-proof.

Maybe passbolt team can double-check and replace traefik setup with caddy.