Home Assistant (http) behind HTTPS nginx reverse proxy guide?

Tags: #<Tag:0x00007f7398e49658> #<Tag:0x00007f7398e491f8>

Hello!

I am wondering what is the current way of adding https to Home Assistant by nginx reverse proxy, and if such a config is even supposed to work…

Because recently I brought online a Home Assistant VM, that I run on a VMware ESXi host (way more powerfull machine that a RPi), and I needed to be able to go through HTTPS to talk to it from outside my home network.

Found a couple of good resources here, in the forums, but I can’t make it work, for some reason.

Anyone with a recent enough install of HA and nginx as reverse SSL proxy?

I see that nginx gets mentioned here:


but following its link goes nowhere…

Any help will be greatly appreciated!

To add a little more details here:

I am running the nginx reverse proxy on another VM, but when I try to log in I get to type my credentials, but then an error appears, saying that something went wrong, and I can hit retry.

I watched to logs of nginx and I could see the requests going through, but HA did not like something about the fact that the communication was not direct, or so it seems…

I am using Home Assistant 0.113.1:

arch x86_64
chassis vm
dev false
docker true
docker_version 19.03.8
hassio true
host_os HassOS 4.11
installation_type Home Assistant OS
os_name Linux
os_version 5.4.50
python_version 3.8.3
supervisor 229

I got the above from https://www.home-assistant.io/hassio/installation/ using the OVA virtual appliance download link.

I use my HA via an SSH tunnel to a remote server which is running a Nginx reverse proxy, my method should work without an issue in VMs.

You can read all about my setup here:

As in @pjcarly setup you would need:

            proxy_set_header    Upgrade     $http_upgrade;
            proxy_set_header    Connection  "upgrade";

as part of the proxy configuration.
Otherwise authentication will not work. Or at least this is what I needed. Not sure exactly why, though :slight_smile:

GV

This is a good guide

Thanks for your replies!

It turns out that @greengolfer showed what was incorrect/missing from my nginx config - now all is fine, and I can access my Home Assistant setup from outside using secure connection.

Much appreciated, @greengolfer!

As a bonus from the whole thing - I am about to automate my home server certificate issuance as I got introduced to LetsEncrypt. Nice!