#Sidebar iFrames and HTTPS

1 messages · Page 1 of 1 (latest)

limpid tusk
#

I’m running Home Assistant in Docker, and I’m a bit confused about the correct way to add iFrames for other containers.

Let me explain. I’m using Docker Compose, and I’ve built a Home Assistant stack that includes several services, including Node-RED. Home Assistant itself is reverse-proxied using Caddy, which I also use for other services like WordPress and some additional servers.

Here’s my issue: I recently bought a Zigbee USB dongle and plan to use it with Zigbee2MQTT. I’ve noticed that on Home Assistant Core, users can add services to the sidebar (such as Zigbee2MQTT or Node-RED), and I’d like to do the same.

However, I’m worried I’ll have to do the same thing I did with Node-RED. For it, I had to reverse-proxy it in order to avoid the Your connection is not private warning caused by the self-signed certificates.

So my question is: is there a way to have Home Assistant available at something like https://home.domain.com and still display an assigned iframe without having to reverse-proxy the iframe service as well?

For example, my iframe config currently looks like this:

type: iframe
url: https://node-red.redacted.gr

This works perfectly fine, but to have it work, I have to reverse proxy Node-Red
The reason I’d like to avoid reverse-proxying yet another service is that it feels like it increases my attack surface.

acoustic dune
#

No, there's no way for HA to act as a general proxy for other services

#

The addons that you're describing working through the HA interface are doing so through Ingress and it only works through HA cloud and for those addons that support it

#

It's not hard to add other services to a reverse proxy, but you'll have to decide if you want to expose those services to the Internet if you want to access those services outside your network

limpid tusk
#

yeah i figured I didn't realise that ha was essentially acting it self as a internal proxy. I was under the fictional impretion that i could just magically have home assistant pipe content that it found from lan in its interface but that aint a thing.
Sorry for the trouble in answering this