Caddy Frontend & Backend Reverse Proxy
Combine your separate frontend and backend services into one domain!
View the example public project here - Utilizes sleeping frontend and backend services with wake via the private network
Access the frontend from /*
and access the backend from /api/*
on the same domain
Frontend - Vue 3: https://mysite.up.railway.app/
Backend - Go Mux: https://mysite.up.railway.app/api/
The proxy configurations are done in the Caddyfile
everything is commented for your ease of use!
When deploying your Reverse Proxy service it will require you to set four service variables: FRONTEND_DOMAIN / FRONTEND_PORT and BACKEND_DOMAIN / BACKEND_PORT
Note: You will first need to have set a fixed PORT
variable in both the frontend and backend services before deploying this template.
These are the four template variables that you will be required to fill out during the first deployment of this service, it is highly recommended to use reference variables.
Example:
FRONTEND_DOMAIN = ${{Frontend.RAILWAY_PRIVATE_DOMAIN}}
FRONTEND_DOMAIN = ${{Frontend.PORT}}
BACKEND_HOST = ${{Backend.RAILWAY_PRIVATE_DOMAIN}}
BACKEND_HOST = ${{Backend.PORT}}
Relevant Caddy documentation:
Some prerequisites to help with common issues that could arise:
-
Both the frontend and backend need to listen on fixed ports, in my example project I have configured my frontend and backend to both listen on port
3000
- This can be done by configuring your frontend and backend apps to listen on the
$PORT
environment variable, then setting aPORT
service variable to3000
- This can be done by configuring your frontend and backend apps to listen on the
-
Since Railway's internal network is IPv6 only the frontend and backend apps will need to listen on
::
(all interfaces, both IPv4 and IPv6)Start commands for some popular frameworks:
-
Gunicorn:
gunicorn main:app -b [::]:${PORT:-3000}
-
Uvicorn:
uvicorn main:app --host :: --port ${PORT:-3000}
- Uvicorn does not support dual-stack binding (IPv6 and IPv4) from the CLI, so while that start command will work to enable access from within the private network, this prevents you from accessing the app from the public domain if needed, I recommend using Hypercorn instead
-
Hypercorn:
hypercorn main:app --bind [::]:${PORT:-3000}
-
Next:
next start -H :: --port ${PORT:-3000}
-
Express/Nest:
app.listen(process.env.PORT || 3000, "::");
-