Setting up HTTPS

Why use HTTPS?

HTTPS encrypts the connection between your browser and MySpeed, protecting your data from being intercepted. This is especially important if you access MySpeed over a network or the internet.

Overview

MySpeed supports HTTPS natively without requiring a reverse proxy. Simply place your SSL certificates in the data/certs directory, and MySpeed will automatically start an HTTPS server.

Configuration

Environment Variables

Variable	Default	Description
`HTTPS_PORT`	`5217`	The port for the HTTPS server

Certificate Files

Place your SSL certificates in the data/certs directory:

cert.pem - Your SSL certificate
key.pem - Your private key

The folder structure should look like this:

MySpeed/
├── data/
│   ├── certs/
│   │   ├── cert.pem
│   │   └── key.pem
│   └── ...
└── ...

Using Your Own Certificates

If you already have SSL certificates (e.g., from Let's Encrypt or a certificate authority), copy them to the data/certs directory:

cp /path/to/your/certificate.pem /path/to/myspeed/data/certs/cert.pem
cp /path/to/your/private-key.pem /path/to/myspeed/data/certs/key.pem

Generating a Self-Signed Certificate

For testing or internal use, you can generate a self-signed certificate:

openssl req -x509 -newkey rsa:4096 \
  -keyout data/certs/key.pem \
  -out data/certs/cert.pem \
  -sha256 -days 365 -nodes \
  -subj "/C=US/ST=State/L=City/O=Organization/OU=Unit/CN=localhost"

Self-Signed Certificates

Self-signed certificates will show a security warning in browsers. This is normal for self-signed certificates. For production use, we recommend using certificates from a trusted certificate authority like Let's Encrypt.

Using Let's Encrypt Certificates

If you're using Let's Encrypt with certbot, your certificates are typically stored in /etc/letsencrypt/live/your-domain.com/. You can either copy or symlink them:

# Copy the certificates
sudo cp /etc/letsencrypt/live/your-domain.com/fullchain.pem /path/to/myspeed/data/certs/cert.pem
sudo cp /etc/letsencrypt/live/your-domain.com/privkey.pem /path/to/myspeed/data/certs/key.pem

# Make sure MySpeed can read them
sudo chown $USER:$USER /path/to/myspeed/data/certs/*.pem

Certificate Renewal

Remember to update your certificates in the data/certs directory when they are renewed. You can automate this with a post-renewal hook in certbot.

Verifying HTTPS is Working

After placing your certificates and starting MySpeed, you should see in the console:

Server listening on port 5216
HTTPS server listening on port 5217

You can then access MySpeed via:

HTTP: http://localhost:5216
HTTPS: https://localhost:5217

Docker Configuration

When using Docker, mount the certificates directory:

yaml

version: "3"
services:
  myspeed:
    image: germannewsmaker/myspeed
    ports:
      - "5216:5216"
      - "5217:5217"  # HTTPS port
    volumes:
      - /path/to/myspeed:/myspeed/data
      # Certificates will be in /path/to/myspeed/certs/
    environment:
      - HTTPS_PORT=5217  # Optional, 5217 is default

Setting up HTTPS ​

Overview ​

Configuration ​

Environment Variables ​

Certificate Files ​

Using Your Own Certificates ​

Generating a Self-Signed Certificate ​

Using Let's Encrypt Certificates ​

Verifying HTTPS is Working ​

Docker Configuration ​