2021-03-18 14:29:20 +00:00
---
title: "Self-Hosting"
weight: 4
summary: How can I Self-Host Piped?
---
2023-08-04 21:04:45 +00:00
# Self-Hosting
There are two simple ways to self-host Piped.
- [Bring your own reverse proxy ](#docker-compose-nginx-aio-script ) (**recommended**) - This is the recommended way to self-host Piped. You can use any reverse proxy you want, and must configure TLS certificates yourself.
- [Using Caddy ](#docker-compose-caddy-aio-script ) - This would use Caddy on port 80 and 443, and automatically configure TLS certificates for you. However, it would be difficult to host multiple services on the same server.
2023-08-04 21:44:10 +00:00
## Docker Compose Caddy AIO script
2021-08-25 08:59:43 +00:00
2023-08-04 21:44:10 +00:00
First, install `git` , `docker` , and the compose plugin for docker.
2021-08-25 08:59:43 +00:00
Run `git clone https://github.com/TeamPiped/Piped-Docker` .
Then, run `cd Piped-Docker` .
2021-10-03 22:41:53 +00:00
Then, run `./configure-instance.sh` and fill in the hostnames when asked. Choose `caddy` as the reverse proxy when asked.
2021-08-25 08:59:43 +00:00
2023-08-04 21:04:45 +00:00
Now, create `A` (and `AAAA` ) records to your server's public IP with the hostnames you had filled in above.
2021-08-25 08:59:43 +00:00
2023-08-04 21:44:10 +00:00
Finally, run `docker compose up -d` and you're done!
2021-08-25 08:59:43 +00:00
2022-11-14 01:36:05 +00:00
Consider joining the federation protocol at https://github.com/TeamPiped/piped-federation#how-to-join
2023-08-04 21:44:10 +00:00
## Docker Compose Nginx AIO script
2021-10-03 22:41:53 +00:00
Note: This setup requires you to have your own reverse proxy in addition to the one provide, and requires you to configure TLS manually.
2023-08-04 21:44:10 +00:00
First, install `git` , `docker` , and the compose plugin for docker.
2021-10-03 22:41:53 +00:00
Run `git clone https://github.com/TeamPiped/Piped-Docker` .
Then, run `cd Piped-Docker` .
Then, run `./configure-instance.sh` and fill in the hostnames when asked. Choose `nginx` as the reverse proxy when asked.
2023-08-04 21:04:45 +00:00
Now, create `A` (and `AAAA` ) records to your server's public IP with the hostnames you had filled in above.
2021-10-03 22:41:53 +00:00
2023-08-04 21:44:10 +00:00
Run `docker compose up -d` .
2021-10-03 22:41:53 +00:00
Forward traffic to 127.0.0.1:8080 with your reverse proxy, **along with the `Host` header** .
For example, in nginx, you would do the following:
```
server {
listen 80;
server_name hostname; # For all 3 hostnames
location / {
proxy_pass http://127.0.0.1:8080;
proxy_set_header Host $host;
}
}
```
2023-08-04 21:04:45 +00:00
Here's an example with Apache:
```
< VirtualHost * :443 >
ServerName hostname # For all 3 hostnames
ProxyPass / http://127.0.0.1:8080/ nocanon
ProxyPassReverse / http://127.0.0.1:8080/
ProxyPreserveHost On
AllowEncodedSlashes On
# TLS configuration here
< / VirtualHost >
```
Here's an example with Traefik using Docker compose labels:
This must be applied on the nginx container.
```
labels:
- "traefik.enable=true"
- "traefik.http.routers.piped.rule=Host(`hostname`,`hostname2`,`hostname3`)"
- "traefik.http.routers.piped.entrypoints=web"
```
Here's an example using Caddy:
```
hostname, hostname2, hostname3 {
reverse_proxy http://127.0.0.1:8080
}
```
Finally, configure your TLS certificates if necessary. For nginx, you could use certbot with the nginx plugin.
2021-10-03 22:41:53 +00:00
2022-11-14 01:36:05 +00:00
Consider joining the federation protocol at https://github.com/TeamPiped/piped-federation#how-to-join
2021-10-31 17:32:02 +00:00
# Manually updating
2023-01-10 08:19:58 +00:00
Run `docker run --rm -v /var/run/docker.sock:/var/run/docker.sock containrrr/watchtower --run-once piped-frontend piped-backend piped-proxy varnish nginx caddy postgres watchtower`
2021-10-31 17:32:02 +00:00
2023-08-04 21:44:10 +00:00
## Docker Compose with Nginx
2021-03-18 14:29:20 +00:00
2023-08-04 21:12:08 +00:00
**WARNING**: This setup is not recommended, as it is difficult to setup and maintain.
2021-03-18 14:29:20 +00:00
First download the files required to run Piped.
```
mkdir piped & & cd piped
wget https://raw.githubusercontent.com/TeamPiped/Piped-Backend/master/config.properties
wget https://raw.githubusercontent.com/TeamPiped/Piped-Backend/master/docker-compose.yml
```
Create two A records - one for the proxy and one for the api.
Note: Each running instance of the proxy should have it's own record to maximize performance.
For example:
A pipedapi.kavin.rocks
A pipedproxy-bom.kavin.rocks
Now, edit your `config.properties` file to reflect the changes.
Now, run piped with the following command:
2021-08-25 08:59:43 +00:00
2021-03-18 14:29:20 +00:00
```
2023-08-04 21:44:10 +00:00
docker compose up -d
2021-03-18 14:29:20 +00:00
```
Now, find your nginx user's and group's id.
You can do this by running the following command:
2021-08-25 08:59:43 +00:00
2021-03-18 14:29:20 +00:00
```
cat /etc/passwd
```
Then look for a line which starts with `www-data` or `nginx` , here is an example of that:
2021-08-25 08:59:43 +00:00
2021-03-18 14:29:20 +00:00
```
www-data:x:33:33:www-data:/var/www:/usr/sbin/nologin
```
Now, you have the user and group id - `33:33` .
Now, run the proxy with the following command, while replacing the user parameter with what you just found:
2021-08-25 08:59:43 +00:00
2021-03-18 14:29:20 +00:00
```
docker run -d --network=host -v "/var/run/ytproxy/:/app/socket" --user 33:33 --restart unless-stopped 1337kavin/ytproxy:latest
```
You can now use watchtower to enable automatic container updates (optional):
2021-08-25 08:59:43 +00:00
2021-03-18 14:29:20 +00:00
```
docker run -d \
--name watchtower \
-v /var/run/docker.sock:/var/run/docker.sock \
containrrr/watchtower
```
2023-09-02 16:20:38 +00:00
Now, create an nginx snippet like so:
2021-03-18 14:29:20 +00:00
`/etc/nginx/snippets/ytproxy.conf`
2021-08-25 08:59:43 +00:00
2021-03-18 14:29:20 +00:00
```
add_header Access-Control-Allow-Origin *;
add_header Access-Control-Allow-Headers *;
if ($request_method = OPTIONS ) {
return 200;
}
proxy_buffering on;
proxy_set_header Host $arg_host;
proxy_ssl_server_name on;
proxy_set_header X-Forwarded-For "";
proxy_set_header CF-Connecting-IP "";
proxy_hide_header "alt-svc";
sendfile on;
sendfile_max_chunk 512k;
tcp_nopush on;
aio threads=default;
aio_write on;
directio 2m;
proxy_hide_header Cache-Control;
proxy_hide_header etag;
proxy_http_version 1.1;
proxy_set_header Connection keep-alive;
proxy_max_temp_file_size 0;
access_log off;
proxy_pass http://unix:/var/run/ytproxy/http-proxy.sock;
```
Now, create a site configuration file:
`/etc/nginx/sites-available/piped.conf`
2021-08-25 08:59:43 +00:00
2021-03-18 14:29:20 +00:00
```
server {
listen 80;
listen 443 ssl http2;
ssl_certificate /etc/ssl/certs/kavin.rocks.pem;
ssl_certificate_key /etc/ssl/private/kavin.rocks.key;
ssl_early_data on;
server_name pipedapi.kavin.rocks; # Change this depending on what domain you are using
location / {
proxy_pass http://127.0.0.1:8080;
}
}
server {
listen 80;
listen 443 ssl http2;
ssl_certificate /etc/ssl/certs/kavin.rocks.pem;
ssl_certificate_key /etc/ssl/private/kavin.rocks.key;
ssl_early_data on;
server_name pipedproxy-bom.kavin.rocks; # Change this depending on what domain you are using
2021-08-25 08:59:43 +00:00
location ~ (/videoplayback|/api/v4/|/api/manifest/) {
2021-03-18 14:29:20 +00:00
include snippets/ytproxy.conf;
add_header Cache-Control private always;
proxy_hide_header Access-Control-Allow-Origin;
}
location / {
include snippets/ytproxy.conf;
add_header Cache-Control "public, max-age=604800";
proxy_hide_header Access-Control-Allow-Origin;
}
}
```
Finally, reload the nginx service and you are done!
