I want to deploy a webserver via docker in a private way.
Is there a way to create a tunnel via ssh or something? Unfortunately the image does not allow to set authentication.
Hey!
I don’t really understand what you want to accomplish.
- Do you want to deploy an app from a Docker image hosted on a private registry?
- Do you want the server webserver HTTP endpoints to be secured in some way?
Hi,
sorry for the confusion.
The image right now is hosted in a public registry.
I need a way to access the http web server (hosted on koyeb) that is not publicly accessible.
So I was thinking about a connection via ssh tunnel.
No worries 
. It’s clearer to me.
Why do you want the http web server not to be publicly accessible?
- Does it need to be accessed by another one of your service running on Koyeb, privately?
- Does it need to be accessed through the Internet, privately?
For use case 1, you can disable “Public” on the service form and it will only be accessible to your Koyeb services at the URL http://<SERVICE_NAME>.<APP_NAME>.koyeb:<port>. See doc.
For use case 2, you have multiple choices:
- For a production grade setup, you can setup a OAuth2 proxy. Follow this tutorial: Add Authentication to your Apps using OAuth2 Proxy
- For a simpler setup, you can create a koyeb service that would act as a reverse proxy to the service you want to secure, with basic authentication. You could do something similar to this: a small repository with a Dockerfile for a nginx pwith a nginx proxy
Let me know if it helps!
You can also spawn a Tailscale VPN to access your private service.
We have an example app here: GitHub - koyeb/example-tailscale: Example to use Tailscale with Koyeb