Domain & SSL

Note: The hosted service DOCTAG/cloud has no domain and SSL requirements.

Only for DOCTAG/own on-premise instances:

We recommend Caddy for terminating SSL traffic and certificate generation. Please follow the setup to get a working installation with valid SSL certificates for your DOCTAG domain.

Important: DOCTAG cannot share a domain with other HTTP-based services. Use a dedicated subdomain, for example doctag.your_hostname.com.

Most importantly, ensure that a valid DNS record points to the host where DOCTAG is running.

To run DOCTAG behind a TLS-terminating reverse proxy, install Caddy first and then edit /etc/caddy/Caddyfile with content similar to this:

doctag.your-domain.com {
  reverse_proxy 127.0.0.1:16097
}

Caddy fetches and renews certificates automatically. After changes:

sudo service caddy reload

Please replace doctag.your_hostname.com with your actual hostname.

Caddy will now automatically fetch Let’s Encrypt certificates and make sure your DOCTAG instance is only accessible via TLS. Certificates are managed automatically, so no repeated manual renewal is required.

DOCTAG is now available behind a reverse proxy and secured with valid TLS certificates.