Self-Hosted Main

504 readers

1 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

For Example

Service: Dropbox - Alternative: Nextcloud
Service: Google Reader - Alternative: Tiny Tiny RSS
Service: Blogger - Alternative: WordPress

We welcome posts that include suggestions for good self-hosted alternatives to popular online services, how they are better, or how they give back control of your data. Also include hints and tips for less technical readers.

Useful Lists

Awesome-Selfhosted List of Software
Awesome-Sysadmin List of Software

founded 1 year ago

MODERATORS

communick@selfhosted.forum

Photo gallery frontend with encryption and search (alien.top)

submitted 11 months ago by NiaHoshi@alien.top to c/main@selfhosted.forum

2 comments fedilink hide all child comments

Hi. I want to implement an image server similar to Photoprism using ImageAI to tag images based on objects and context. However I don't want to spend to much time working on the frontend, at first I were thinking about using Danbooru and use Flexbooru or the web interface on my phone. But it doesn't have any encryption or password protection (since the purpose of it is to be used as a public image board).

So is there any good alternative for a photo gallery frontend with encryption and search/tag feature? Thanks in advance.

top 2 comments

sorted by: hot top controversial new old

[–] Turun@feddit.de 1 points 11 months ago

You could use a VPN like wireguard and make all your private installations only accessible if the request originates from the VPN. That way you are not relying on the security of all individual programs, but only on the security of your VPN, which is specifically designed for it.

I.e. on a server host a wireguard docker container. Make it forward and masquerade all incoming request to port 80/443 to a caddy container running on the same machine. In the caddyfile you can match by subdomain and filter by origin IP. Then either deny the request or allow the reverse proxy to serve the content.

If you don't want to use caddy or subdomains you can also just forward all requests that hit the VPN on [special port] to forward to your server. People without VPN access won't be able to send requests to that interface in the first place.

[–] geo38@alien.top 1 points 11 months ago

You can use a reverse proxy like nginx to add the authentication and encryption for a plain http server.