[GH-ISSUE #459] Allow to put web-ui on separate port/host #350

New issue

Closed

opened 2026-05-07 00:23:20 +02:00 by BreizhHardware · 4 comments

BreizhHardware commented 2026-05-07 00:23:20 +02:00

Owner

Copy link

Originally created by @pinpox on GitHub (Oct 31, 2022).
Original GitHub issue: https://github.com/binwiederhier/ntfy/issues/459

I'd like to put the web-ui on a different port or a different subdomain, but couldn't find an option to do so.
This might also be workarount for #238, as it allows to set a password in the reverse proxy you might run in front of ntfy

Originally created by @pinpox on GitHub (Oct 31, 2022). Original GitHub issue: https://github.com/binwiederhier/ntfy/issues/459 I'd like to put the web-ui on a different port or a different subdomain, but couldn't find an option to do so. This might also be workarount for #238, as it allows to set a password in the reverse proxy you might run in front of ntfy

BreizhHardware 2026-05-07 00:23:20 +02:00

• closed this issue
• added the
  server
  enhancement
  labels

BreizhHardware commented 2026-05-07 00:23:21 +02:00

Author

Owner

Copy link

@binwiederhier commented on GitHub (Nov 3, 2022):

Could you elaborate on the use case? Why it be useful to split the web app and the API?

<!-- gh-comment-id:1302256826 --> @binwiederhier commented on GitHub (Nov 3, 2022): Could you elaborate on the use case? Why it be useful to split the web app and the API?

BreizhHardware commented 2026-05-07 00:23:21 +02:00

Author

Owner

Copy link

@pinpox commented on GitHub (Nov 3, 2022):

Could you elaborate on the use case? Why it be useful to split the web app and the API?

E.g. to make the webUI only accessible via an internal URL or VPN. I know that the client itself does not provide acess to any confidential information without having the credentials, but I don't want it to be visible/accessible for anyone.

Also I have seen in #238 that people are requesting the possiblity to restrict access to it, which would be easily solved without further changes to the code if you can just set a basic auth for the reverse proxy in front of the webUI

<!-- gh-comment-id:1302267916 --> @pinpox commented on GitHub (Nov 3, 2022): > Could you elaborate on the use case? Why it be useful to split the web app and the API? E.g. to make the webUI only accessible via an internal URL or VPN. I know that the client itself does not provide acess to any confidential information without having the credentials, but I don't want it to be visible/accessible for anyone. Also I have seen in #238 that people are requesting the possiblity to restrict access to it, which would be easily solved without further changes to the code if you can just set a basic auth for the reverse proxy in front of the webUI

BreizhHardware commented 2026-05-07 00:23:21 +02:00

Author

Owner

Copy link

@binwiederhier commented on GitHub (Nov 3, 2022):

It feels a bit arbitrary and doesn't really need to happen in ntfy (you could do this in nginx or apache), so I think I'm going to take the liberty to say "no" to this request. ntfy already has a lot of config options and is more confusing than I'd want it to be. This seems unnecessary, since it is a cosmetic change with no real security/other benefit.

In nginx, you can restrict routes for certain IP ranges easily, so you don't need ntfy to help you via a different port.

Keep the tickets coming, and don't be discouraged by me not implementing everything.

<!-- gh-comment-id:1302277853 --> @binwiederhier commented on GitHub (Nov 3, 2022): It feels a bit arbitrary and doesn't really need to happen in ntfy (you could do this in nginx or apache), so I think I'm going to take the liberty to say "no" to this request. ntfy already has a lot of config options and is more confusing than I'd want it to be. This seems unnecessary, since it is a cosmetic change with no real security/other benefit. In nginx, you can restrict routes for certain IP ranges easily, so you don't need ntfy to help you via a different port. Keep the tickets coming, and don't be discouraged by me not implementing everything.

BreizhHardware commented 2026-05-07 00:23:21 +02:00

Author

Owner

Copy link

@pinpox commented on GitHub (Nov 3, 2022):

Makes sense, in that case I'd suggest adding an example of how to set this up in the docs, since there is already an example on the reverse proxy setup. I tried earlier with nginx but couldn't get it to work properly. If I'm successful I'll let you know

<!-- gh-comment-id:1302289255 --> @pinpox commented on GitHub (Nov 3, 2022): Makes sense, in that case I'd suggest adding an example of how to set this up in the docs, since there is already an example on the [reverse proxy setup](https://ntfy.sh/docs/config/#behind-a-proxy-tls-etc). I tried earlier with nginx but couldn't get it to work properly. If I'm successful I'll let you know

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

dependabot/npm_and_yarn/web/fast-uri-3.1.2

email-verification

attachment-no-http2

attachment-fixes

attachment-s3

config-generator

postgres-replica

dockers-v2

postgres-support

postgres-webpush+user+message

postgres-webpush+user

postgres-webpush

1364-copy-action

crashfix

user-header

scalar-api-docs

cancel-scheduled

update-available

windows-server

303-update-notifications

postgres

admin-ui

require-login

http-clipboard

message-cache-lock

debian-stripe

predefined-users

busy-timeout

template-dir

ipv6

client-ip-header

apns-fix

feat_optional_require_login

security-updates

pg-message-cache

templating-disallow

templating-3

templating-2

message-size-limit+delay-limit

remove-rate-topics

html-emails

cf-priority

acl-underscores

auth-user-header

markdown

img-attach

web-improvements

utf8-headers

matrix-507-reject

http-response-writer

new-homepage-design

e2e

canary

windows

electron

update-messages

webhook-templating

v2.22.0

v2.21.0

v2.20.1

v2.20.0

v2.19.2

v2.19.1

v2.19.0

v2.18.0

v2.17.0

v2.16.0

v2.15.0

v2.14.0

v2.13.0

v2.12.0

v2.11.0

v2.10.0

v2.9.0

v2.8.0

v2.7.0

v2.6.2

v2.6.1

v2.6.0

v2.5.0

v2.4.0

v2.3.1

v2.3.0

v2.2.0

v2.1.2

v2.1.1

v2.1.0

v2.0.1

v2.0.0

v1.31.0

v1.30.1

v1.29.1

v1.29.0

v1.28.0

v1.27.2

v1.27.1

v1.26.0

v1.25.2

v1.25.1

v1.25.0

v1.24.0

v1.23.0

v1.22.0

v1.21.2

v1.21.1

v1.21.0

v1.20.0

v1.19.0

v1.18.1

v1.18.0

v1.17.1

v1.17.0

v1.16.0

v1.15.0

v1.14.1

v1.14.0

v1.13.0

v1.12.1

v1.12.0

v1.11.1

v1.11.2

v1.11.0

v1.10.0

v1.9.0

v1.8.0

v1.7.0

v1.6.1

v1.6.0

v1.5.3

v1.5.2

v1.5.1

v1.5.0

v1.4.8

v1.4.7

v1.4.6

v1.4.5

v1.4.4

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.3.2

v1.3.3

v1.3.1

v1.3.0

v1.2.5

v1.2.4

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.0

v0.0.5

v0.0.4

v0.0.3

v0.0.2

v0.0.1

Labels

Clear labels   

ai-generated

  

android-app

  

android-app

  

android-app

  

🪲 bug

  

build

  

build

  

dependencies

  

docs

  

enhancement

  

enhancement

  

🔥 HOT

  

in-progress 🏃

  

ios

  

prio:low

  

prio:low

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

🔒 security

  

server

  

server

  

unified-push

  

web-app

  

website

No labels

ai-generated

android-app

android-app

android-app

🪲 bug

build

build

dependencies

docs

enhancement

enhancement

🔥 HOT

in-progress 🏃

ios

prio:low

prio:low

pull-request

question

🔒 security

server

server

unified-push

web-app

website

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/ntfy#350

No description provided.