Meli by default uses Caddy's automatic HTTPS support to deploy with Let's Encrypt certificates for your configured domain. However, deployment behind a reverse proxy is supported, but you will need to handle SSL certificate issuance and renewal on your own - you will want to get a wildcard SSL certificate instead. We assume you have followed the installation guide.
The following needs to be done in your
- Make sure
MELI_URLis set to have
httpsas it's scheme
- Change the ports
- Add the environment variable
MELI_HTTPS_AUTO: 0to stop automatic provisioning of SSL certificates
Depending on your setup, you may choose to setup wildcard certificates from Let's Encrypt on your own. This can be done by using certbot:
You will also have to generate wildcard certificates for site branches. We plan to simplify this process.
Please change the domain names to reflect your setup.
Domains are enclosed within quotes to avoid shell errors.
Certbot will let you know that you need to setup
TXT records with your DNS provider, and upon doing so your certificates will be generated. This process can also be automated using plugins. Check out this page from Certbot docs to see if there is a compatible plugin for your DNS provider.
If you are deploying Meli to a server that is running Nginx, you may use the following configuration file as a starting point.