Portr

GitHubamalshaji/portr

3.1K

Server

Server Deployment

Learn how to deploy portr admin and tunnel server using docker

For quick setup, use the docker-compose.yml from the Portr repository:

https://github.com/amalshaji/portr/blob/main/docker-compose.yaml

Services Overview

The compose file includes 4 services:

  • caddy: The reverse proxy for routing and SSL termination
  • admin: The admin server for the web dashboard
  • tunnel: The tunnel server for handling connections
  • postgres: The PostgreSQL database

Deployment Steps

Download the compose file

Download the docker-compose.yaml file from the repository and place it in your server directory.

Set up environment variables

Create a .env file in the same directory with the following values:

.env
PORTR_ADMIN_GITHUB_CLIENT_ID= #optional
PORTR_ADMIN_GITHUB_CLIENT_SECRET= #optional

PORTR_DOMAIN=example.com
PORTR_DB_URL=postgres://postgres:postgres@postgres:5432/postgres

PORTR_SERVER_URL=example.com
PORTR_SSH_URL=example.com:2222

PORTR_SSH_HOST_KEY= # PEM-encoded Ed25519 private key

CLOUDFLARE_API_TOKEN=

POSTGRES_USER=postgres
POSTGRES_PASSWORD=postgres
POSTGRES_DB=postgres

PORTR_ADMIN_ENCRYPTION_KEY=

Environment Variable Reference

VariableDescriptionDefault
PORTR_DOMAINYour server domainlocalhost:8001
PORTR_DB_URLPostgreSQL connection URLRequired
PORTR_SERVER_URLPublic server URL for clientshttp://localhost:8001
PORTR_SSH_URLPublic SSH URL for clientslocalhost:2222
PORTR_SSH_PORTSSH server port2222
PORTR_SSH_HOST_KEYPEM-encoded Ed25519 private keyRequired
PORTR_ADMIN_PORTAdmin server port8000
PORTR_ADMIN_GITHUB_CLIENT_IDGitHub OAuth client IDOptional
PORTR_ADMIN_GITHUB_CLIENT_SECRETGitHub OAuth client secretOptional
PORTR_ADMIN_ENCRYPTION_KEYEncryption key for sensitive dataRequired
PORTR_AUTO_MIGRATEAuto-run database migrationsfalse
CLOUDFLARE_API_TOKENCloudflare API token for SSLRequired

Generate SSH Host Key

Generate an Ed25519 private key and set it as an environment variable:

ssh-keygen -t ed25519 -f /tmp/portr_host_key -N ""
export PORTR_SSH_HOST_KEY="$(cat /tmp/portr_host_key)"
rm /tmp/portr_host_key /tmp/portr_host_key.pub

Or use portrd to generate and print a key:

portrd generate-host-key

For Docker deployments, you can pass the key as a multi-line environment variable in your .env file or use Docker secrets.

Generate encryption key

Generate an encryption key using the following command:

python -c "import base64, os; print(base64.urlsafe_b64encode(os.urandom(32)).decode())"

Add this key to the PORTR_ADMIN_ENCRYPTION_KEY variable in your .env file.

Start the services

Run the following command to start all services:

docker compose up -d

Access the admin dashboard

Once the servers are running, navigate to your domain (e.g., https://example.com) and log in to the admin dashboard. The first login will be treated as a superuser account.

Alternative Database Setup

If you want to run PostgreSQL separately and not as a Docker service, you can exclude the following environment variables from your .env file:

  • POSTGRES_USER
  • POSTGRES_PASSWORD
  • POSTGRES_DB

Troubleshooting

Service Health Checks

Check if all services are running properly:

docker compose ps

View Service Logs

Check logs for any specific service:

# View all logs
docker compose logs

# View logs for a specific service
docker compose logs admin
docker compose logs tunnel
docker compose logs caddy

SSL Certificate Issues

If you're having SSL certificate issues, ensure:

  1. Your DNS records are properly configured
  2. Your Cloudflare API token has the correct permissions
  3. Your domain is added to Cloudflare

Port Accessibility

Verify that the required ports are accessible:

# Check if port 2222 is accessible
telnet your-domain.com 2222

# Check if HTTP/HTTPS ports are working
curl https://your-domain.com

Server Setup

Guide to setting up portr server

Cloudflare API Token

Getting a Cloudflare API token for wildcard certificates