starred/ntfy
1
0
Fork 0
mirror of https://github.com/binwiederhier/ntfy.git synced 2026-05-10 00:08:52 +02:00
Code Issues 368 Projects Packages Wiki Activity

[GH-ISSUE #1278] Relay notifications from one public server to a private one #901

New issue
Closed
opened 2026-05-07 00:28:35 +02:00 by BreizhHardware · 2 comments
BreizhHardware commented 2026-05-07 00:28:35 +02:00
Owner
Copy link

Originally created by @schklom on GitHub (Feb 18, 2025).
Original GitHub issue: https://github.com/binwiederhier/ntfy/issues/1278

💡 Idea
I have a self-hosted ntfy instance at my_ntfy_url.domain.
Problem: my URL is unique, so giving it out to the Internet somewhat identifies me.
What I tried and failed: On ntfy.sh, if I subscribe to my_ntfy_url.domain/topic1, my browser (and phone app) connects to my_ntfy_url.domain.
Solution: On my_ntfy_url.domain/topic1, subscribing to ntfy.sh/topic2 should make the notifications received by ntfy.sh/topic2 go to my_ntfy_url.domain/topic1 and then to my device. Similar to https://docs.ntfy.sh/config/#ios-instant-notifications, but also for other client devices, so topic2 would be the sha256 of my_ntfy_url.domain/topic1.

The easy alternative is to connect my devices to both servers, but on a phone this requires battery to maintain 2 Websocket connections.
This feature would let my phone maintain only 1 connection (to my_ntfy_url.domain) instead of 2 (ntfy.sh + my_ntfy_url.domain), and the notification sender would only know about ntfy.sh instead of my_ntfy_url.domain.

If usable with UnifiedPush, this would solve the privacy issue from https://github.com/simplex-chat/simplex-chat/issues/1081 where the self-hosted ntfy server can be used to uniquely identify its owner, because the other party would only post to ntfy.sh/topic2. Ideally, this feature can be used with and without UnifiedPush.

I understand this would add a connection from the server to ntfy.sh, but at the same time this would allow to avoid connections from devices because they would only need to keep a connection to my_ntfy_url.domain instead of my_ntfy_url.domain + ntfy.sh.
In my situation, i have a few phones that would stop connecting to my_ntfy_url.domain + ntfy.sh, and only connect to my_ntfy_url.domain.
So the load on ntfy.sh might decrease a little.

To relay with UnifiedPush, maybe a toggle in the mobile app settings could say "Relay new UnifiedPush subscriptions via the following server: (default ntfy.sh)".

💻 Target components

ntfy server (functionality to relay notifications)

Originally created by @schklom on GitHub (Feb 18, 2025). Original GitHub issue: https://github.com/binwiederhier/ntfy/issues/1278 <!-- Before you submit, consider asking on Discord/Matrix instead. You'll usually get an answer sooner, and there are more people there to help! - Discord: https://discord.gg/cT7ECsZj9w - Matrix: https://matrix.to/#/#ntfy:matrix.org / https://matrix.to/#/#ntfy-space:matrix.org --> :bulb: **Idea** I have a self-hosted ntfy instance at my_ntfy_url.domain. Problem: my URL is unique, so giving it out to the Internet somewhat identifies me. What I tried and failed: On ntfy.sh, if I subscribe to my_ntfy_url.domain/topic1, my browser (and phone app) connects to my_ntfy_url.domain. Solution: On my_ntfy_url.domain/topic1, subscribing to ntfy.sh/topic2 should make the notifications received by ntfy.sh/topic2 go to my_ntfy_url.domain/topic1 and then to my device. Similar to https://docs.ntfy.sh/config/#ios-instant-notifications, but also for other client devices, so topic2 would be the sha256 of my_ntfy_url.domain/topic1. The easy alternative is to connect my devices to both servers, but on a phone this requires battery to maintain 2 Websocket connections. This feature would let my phone maintain only 1 connection (to my_ntfy_url.domain) instead of 2 (ntfy.sh + my_ntfy_url.domain), and the notification sender would only know about ntfy.sh instead of my_ntfy_url.domain. If usable with UnifiedPush, this would solve the privacy issue from https://github.com/simplex-chat/simplex-chat/issues/1081 where the self-hosted ntfy server can be used to uniquely identify its owner, because the other party would only post to ntfy.sh/topic2. Ideally, this feature can be used with and without UnifiedPush. I understand this would add a connection from the server to ntfy.sh, but at the same time this would allow to avoid connections from devices because they would only need to keep a connection to my_ntfy_url.domain instead of my_ntfy_url.domain + ntfy.sh. In my situation, i have a few phones that would stop connecting to my_ntfy_url.domain + ntfy.sh, and only connect to my_ntfy_url.domain. So the load on ntfy.sh might decrease a little. To relay with UnifiedPush, maybe a toggle in the mobile app settings could say "Relay new UnifiedPush subscriptions via the following server: (default ntfy.sh)". :computer: **Target components** <!-- Where should this feature/enhancement be added? --> <!-- e.g. ntfy server, Android app, iOS app, web app --> ntfy server (functionality to relay notifications)
BreizhHardware 2026-05-07 00:28:35 +02:00
BreizhHardware commented 2026-05-07 00:28:36 +02:00
Author
Owner
Copy link

@binwiederhier commented on GitHub (Feb 2, 2026):

This is an interesting feature, though you are effectively asking ntfy.sh be your VPN-like traffic forwarder.

I currently have no interest in implementing this feature, nor would I accept PRs for this, I think. Unless there is something that I'm missing, there are no upsides for ntfy.sh itself

<!-- gh-comment-id:3834184132 --> @binwiederhier commented on GitHub (Feb 2, 2026): This is an interesting feature, though you are effectively asking ntfy.sh be your VPN-like traffic forwarder. I currently have no interest in implementing this feature, nor would I accept PRs for this, I think. Unless there is something that I'm missing, there are no upsides for ntfy.sh itself
BreizhHardware commented 2026-05-07 00:28:36 +02:00
Author
Owner
Copy link

@schklom commented on GitHub (Feb 2, 2026):

There is a small upside to ntfy.sh: the number of websocket connections to ntfy.sh should decrease in exchange for forwarding the notifications. So the network load on ntfy.sh should be a little lower.

I mean that with this, my phone would only need 1 connection to my_ntfy_url.domain, instead of 1 to my_ntfy_url.domain + 1 to ntfy.sh.
In return, ntfy.sh would forward a small (feel free to limit) amount of messages back to my selfhosted ntfy instance.

It's not a major upside, so I understand if you're still not interested.

<!-- gh-comment-id:3834534115 --> @schklom commented on GitHub (Feb 2, 2026): There is a small upside to ntfy.sh: the number of websocket connections to ntfy.sh should decrease in exchange for forwarding the notifications. So the network load on ntfy.sh should be a little lower. I mean that with this, my phone would only need 1 connection to my_ntfy_url.domain, instead of 1 to my_ntfy_url.domain + 1 to ntfy.sh. In return, ntfy.sh would forward a small (feel free to limit) amount of messages back to my selfhosted ntfy instance. It's not a major upside, so I understand if you're still not interested.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
dependabot/npm_and_yarn/web/babel/plugin-transform-modules-systemjs-7.29.4
dependabot/npm_and_yarn/web/fast-uri-3.1.2
email-verification
attachment-no-http2
attachment-fixes
attachment-s3
config-generator
postgres-replica
dockers-v2
postgres-support
postgres-webpush+user+message
postgres-webpush+user
postgres-webpush
1364-copy-action
crashfix
user-header
scalar-api-docs
cancel-scheduled
update-available
windows-server
303-update-notifications
postgres
admin-ui
require-login
http-clipboard
message-cache-lock
debian-stripe
predefined-users
busy-timeout
template-dir
ipv6
client-ip-header
apns-fix
feat_optional_require_login
security-updates
pg-message-cache
templating-disallow
templating-3
templating-2
message-size-limit+delay-limit
remove-rate-topics
html-emails
cf-priority
acl-underscores
auth-user-header
markdown
img-attach
web-improvements
utf8-headers
matrix-507-reject
http-response-writer
new-homepage-design
e2e
canary
windows
electron
update-messages
webhook-templating
v2.22.0
v2.21.0
v2.20.1
v2.20.0
v2.19.2
v2.19.1
v2.19.0
v2.18.0
v2.17.0
v2.16.0
v2.15.0
v2.14.0
v2.13.0
v2.12.0
v2.11.0
v2.10.0
v2.9.0
v2.8.0
v2.7.0
v2.6.2
v2.6.1
v2.6.0
v2.5.0
v2.4.0
v2.3.1
v2.3.0
v2.2.0
v2.1.2
v2.1.1
v2.1.0
v2.0.1
v2.0.0
v1.31.0
v1.30.1
v1.29.1
v1.29.0
v1.28.0
v1.27.2
v1.27.1
v1.26.0
v1.25.2
v1.25.1
v1.25.0
v1.24.0
v1.23.0
v1.22.0
v1.21.2
v1.21.1
v1.21.0
v1.20.0
v1.19.0
v1.18.1
v1.18.0
v1.17.1
v1.17.0
v1.16.0
v1.15.0
v1.14.1
v1.14.0
v1.13.0
v1.12.1
v1.12.0
v1.11.1
v1.11.2
v1.11.0
v1.10.0
v1.9.0
v1.8.0
v1.7.0
v1.6.1
v1.6.0
v1.5.3
v1.5.2
v1.5.1
v1.5.0
v1.4.8
v1.4.7
v1.4.6
v1.4.5
v1.4.4
v1.4.3
v1.4.2
v1.4.1
v1.4.0
v1.3.2
v1.3.3
v1.3.1
v1.3.0
v1.2.5
v1.2.4
v1.2.3
v1.2.2
v1.2.1
v1.2.0
v1.1.3
v1.1.2
v1.1.1
v1.1.0
v1.0.0
v0.0.5
v0.0.4
v0.0.3
v0.0.2
v0.0.1
Labels
Clear labels   
ai-generated

   
android-app

   
android-app

   
android-app

   
🪲 bug

   
build

   
build

   
dependencies

   
docs

   
enhancement

   
enhancement

   
🔥 HOT

   
in-progress 🏃

   
ios

   
prio:low

   
prio:low

   
pull-request
Mirrored from GitHub Pull Request

  
question

   
🔒 security

   
server

   
server

   
unified-push

   
web-app

   
website
No labels
ai-generated
android-app
android-app
android-app
🪲 bug
build
build
dependencies
docs
enhancement
enhancement
🔥 HOT
in-progress 🏃
ios
prio:low
prio:low
pull-request
question
🔒 security
server
server
unified-push
web-app
website
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/ntfy#901
No description provided.