Custom SSL Certificates
If you want to use custom SSL certificates with Traefik, you can easily do so by following the steps below.
On each server, /data/coolify/proxy is mounted into the Coolify Proxy (Traefik) container.
You can add your custom SSL certificates in the /data/coolify/proxy/certs directory.
-
Generate or request an SSL certificate for your domain. It can be a self-signed certificate, a certificate from a public CA, or a certificate from Let's Encrypt.
Read more here about certbot and Let's Encrypt.
-
Copy the key and cert files to the server where your resource that will use the certificate is running. Use
scpor any other method to copy the files.It should be placed under
/data/coolify/proxydirectory, for example:scp /path/to/your/domain.cert root@your-server-ip:/data/coolify/proxy/certs/domain.cert scp /path/to/your/domain.key root@your-server-ip:/data/coolify/proxy/certs/domain.key
Tip
Make sure the directory /data/coolify/proxy/certs exists on the server.
-
You can configure Traefik to use the custom SSL certificates by adding a dynamic configuration file through Coolify's UI or directly adding it to
/data/coolify/proxy/dynamic:tls: certificates: - certFile: /traefik/certs/domain.cert keyFile: /traefik/certs/domain.key - certFile: /traefik/certs/domain2.cert keyFile: /traefik/certs/domain2.key
Tip
/traefik is the directory inside coolify-proxy container where
/data/coolify/proxy is mounted.
Traefik will automatically use this certificate if it matches the domain of the incoming request and the certificate in any of the provided files.
For more information check Traefik's official documentation.
Basic Auth Middleware
Protect Coolify applications and services with Traefik basic authentication middleware using htpasswd credentials for standard and Docker Compose deployments.
Enable Dashboard
Enable and secure Traefik dashboard in Coolify with basic authentication, dynamic configuration, Let's Encrypt SSL, and custom domain access.