HTTPS for appwrite on Coolify

Does anyone know how to set this up or is there a tutorial?

https://dev.to/appwrite/one-click-appwrite-setup-with-coolify-2ojk

yes but im asking specifically for https setup

1: Install Appwrite on Coolify

• Create a New Service: Go to Coolify and create a new service for Appwrite
• Select Appwrite: Choose Appwrite from the list of available services

2: Configure HTTPS

• Generate SSL Certificates
• Update Appwrite Configuration

Example of appwrite.json

{
  "projectId": "YOUR_PROJECT_ID",
  "project": {
    "name": "YOUR_PROJECT_NAME"
  },
  "functions": [
    {
      "name": "YOUR_FUNCTION_NAME",
      "runtime": "node-14.5",
      "entrypoint": "index.js",
      "events": [
        "database.documents.create",
        "database.documents.update"
      ]
    }
  ],
  "authProviders": {
    "microsoft": {
      "clientId": "YOUR_CLIENT_ID",
      "clientSecret": "YOUR_CLIENT_SECRET",
      "redirectUri": "https://your-coolify-url.ngrok.io/v1/account/sessions/oauth2/callback/microsoft/YOUR_PROJECT_ID"
    }
  },
  "https": {
    "enabled": true,
    "certificates": {
      "cert": "/path/to/your/cert.pem",
      "key": "/path/to/your/key.pem"
    }
  }
}

3: Deploy the Configuration: Apply the updated configuration to your Appwrite instance on Coolify

At last, Use the HTTPS URL to access your Appwrite instance and verify that the SSL certificate is working correctly

Thank you for your reply, in my setup i have 2 hetzner servers, first one is where coolify is hosted, that thing i got on https via wildcard domain on the second server i installed appwrite , the second server right now probably uses a generated ip address and all appwrite services thatswhy run over that ip adress over http

where exactly do you generate the certificates? on your server? and where can i update this config?

generate SSL certificates on the Appwrite server. You can use Let’s Encrypt for this.

Steps to Generating Certificates with Let’s Encrypt (Certbot):

1. Install Certbot

sudo apt-get update
sudo apt-get install certbot

2. Generate Certificates

sudo certbot certonly --standalone -d your.domain.com

Replace your.domain.com with your Appwrite server’s domain. This will create certificates in the /etc/letsencrypt/live/your.domain.com/ directory.

Once the certificates are generated, update your Appwrite configuration to use HTTPS. Modify Appwrite Environment Variables: Update the appwrite.env or your environment variable configuration file with the paths to your SSL certificate files.

_APP_ENV=production
_APP_SYSTEM_SECURITY_KEY=your-secret-key
...
_APP_SYSTEM_SECURITY_HTTPS=true
_APP_SYSTEM_SECURITY_HTTPS_CERT=/etc/letsencrypt/live/your.domain.com/fullchain.pem
_APP_SYSTEM_SECURITY_HTTPS_KEY=/etc/letsencrypt/live/your.domain.com/privkey.pem
...

After updating the configuration, restart your Appwrite services to apply the changes.

https://appwrite.io/docs/advanced/security/https

https://appwrite.io/docs/advanced/self-hosting