coder/coderPublic

NotificationsYou must be signed in to change notification settings
Fork928
Star10.1k

Commit3cc77d9

kylecarbs

and

bpmct

authored

feat: Add tunnel by default (#4399)

* feat: Add tunnel by defaultIf an access URL is not specified, we will always tunnel.This is from community-member feedback who exclaimed thatit's confusing having the default for `coder server` displaya warning message, and I agree.There is very little (maybe none) in running `coder server`without tunnel and without an access URL, so this seems likeoverall a much better UX.* Update install.shCo-authored-by: Ben Potter <ben@coder.com>* Update docs/install/packages.mdCo-authored-by: Ben Potter <ben@coder.com>* Fix reset pass test* Fix e2e testCo-authored-by: Ben Potter <ben@coder.com>

1 parent3049a56 commit3cc77d9Copy full SHA for 3cc77d9

File tree

22 files changed

+60

-88

lines changed

README.md
cli
coder.env
coderd
docker-compose.yaml
docs
- admin
  - configure.md
- images/quickstart
  - aws
    - aws7.png
  - azure
    - azure7.png
- install
- quickstart
- quickstart.md
install.sh
scripts
- develop.sh
site/e2e
- playwright.config.ts

22 files changed

+60

-88

lines changed

`‎README.md`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -58,7 +58,7 @@ Once installed, you can start a production deployment<sup>1</sup> with a single`
`58`	`58`
`59`	`59`	```sh
`60`	`60`	`# Automatically sets up an external access URL on *.try.coder.app`
`61`		`-coder server --tunnel`
	`61`	`+coder server`
`62`	`62`
`63`	`63`	`# Requires a PostgreSQL instance and external access URL`
`64`	`64`	`coder server --postgres-url<url> --access-url<url>`

`‎cli/resetpassword_test.go`

Lines changed: 1 addition & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -41,6 +41,7 @@ func TestResetPassword(t *testing.T) {`
`41`	`41`	`serverCmd,cfg:=clitest.New(t,`
`42`	`42`	`"server",`
`43`	`43`	`"--address",":0",`
	`44`	`+"--access-url","example.com",`
`44`	`45`	`"--postgres-url",connectionURL,`
`45`	`46`	`"--cache-dir",t.TempDir(),`
`46`	`47`	`)`

`‎cli/server.go`

Lines changed: 21 additions & 27 deletions

Original file line number	Diff line number	Diff line change
`@@ -111,7 +111,6 @@ func Server(newAPI func(context.Context, coderd.Options) (coderd.API, error))`
`111`	`111`	`tlsEnablebool`
`112`	`112`	`tlsKeyFiles []string`
`113`	`113`	`tlsMinVersionstring`
`114`		`-tunnelbool`
`115`	`114`	`traceEnablebool`
`116`	`115`	`secureAuthCookiebool`
`117`	`116`	`sshKeygenAlgorithmRawstring`
`@@ -243,26 +242,23 @@ func Server(newAPI func(context.Context, coderd.Options) (coderd.API, error))`
`243`	`242`	`iftlsEnable {`
`244`	`243`	`localURL.Scheme="https"`
`245`	`244`	`}`
`246`		`-ifaccessURL=="" {`
`247`		`-accessURL=localURL.String()`
`248`		`-}`
`249`	`245`
`250`	`246`	`var (`
`251`	`247`	`ctxTunnel,closeTunnel=context.WithCancel(ctx)`
`252`		`-devTunnel*devtunnel.Tunnel`
`253`		`-devTunnelErr<-chanerror`
	`248`	`+tunnel*devtunnel.Tunnel`
	`249`	`+tunnelErr<-chanerror`
`254`	`250`	`)`
`255`	`251`	`defercloseTunnel()`
`256`	`252`
`257`		`-// Ifwe're attempting totunnel in dev-mode, the access URL`
`258`		`-//needstobe changed to use the tunnel.`
`259`		`-iftunnel {`
`260`		`-cmd.Printf("Opening tunnel so workspaces can connect to your deployment\n")`
`261`		`-devTunnel,devTunnelErr,err=devtunnel.New(ctxTunnel,logger.Named("devtunnel"))`
	`253`	`+// Ifthe access URL is empty, we attempt torun a reverse-proxy tunnel`
	`254`	`+// tomake the initial setup really simple.`
	`255`	`+ifaccessURL=="" {`
	`256`	`+cmd.Printf("Opening tunnel so workspaces can connect to your deployment. For production scenarios, specify an external access URL\n")`
	`257`	`+tunnel,tunnelErr,err=devtunnel.New(ctxTunnel,logger.Named("devtunnel"))`
`262`	`258`	`iferr!=nil {`
`263`	`259`	`returnxerrors.Errorf("create tunnel: %w",err)`
`264`	`260`	`}`
`265`		`-accessURL=devTunnel.URL`
	`261`	`+accessURL=tunnel.URL`
`266`	`262`	`}`
`267`	`263`
`268`	`264`	`accessURLParsed,err:=parseURL(ctx,accessURL)`
`@@ -288,11 +284,11 @@ func Server(newAPI func(context.Context, coderd.Options) (coderd.API, error))`
`288`	`284`	`ifisLocal {`
`289`	`285`	`reason="isn't externally reachable"`
`290`	`286`	`}`
`291`		`-cmd.Printf("%s The access URL %s %s, this may cause unexpected problems when creating workspaces. Generate a unique *.try.coder.app URL with:\n",cliui.Styles.Warn.Render("Warning:"),cliui.Styles.Field.Render(accessURLParsed.String()),reason)`
`292`		`-cmd.Println(cliui.Styles.Code.Render(strings.Join(os.Args," ")+" --tunnel"))`
	`287`	`+cmd.Printf("%s The access URL %s %s, this may cause unexpected problems when creating workspaces. Generate a unique *.try.coder.app URL by not specifying an access URL.\n",cliui.Styles.Warn.Render("Warning:"),cliui.Styles.Field.Render(accessURLParsed.String()),reason)`
`293`	`288`	`}`
`294`	`289`
`295`		`-cmd.Printf("View the Web UI: %s\n",accessURLParsed.String())`
	`290`	`+// A newline is added before for visibility in terminal output.`
	`291`	`+cmd.Printf("\nView the Web UI: %s\n",accessURLParsed.String())`
`296`	`292`
`297`	`293`	`// Used for zero-trust instance identity with Google Cloud.`
`298`	`294`	`googleTokenValidator,err:=idtoken.NewValidator(ctx,option.WithoutAuthentication())`
`@@ -472,7 +468,7 @@ func Server(newAPI func(context.Context, coderd.Options) (coderd.API, error))`
`472`	`468`	`OIDCIssuerURL:oidcIssuerURL,`
`473`	`469`	`Prometheus:promEnabled,`
`474`	`470`	`STUN:len(derpServerSTUNAddrs)!=0,`
`475`		`-Tunnel:tunnel,`
	`471`	`+Tunnel:tunnel!=nil,`
`476`	`472`	`})`
`477`	`473`	`iferr!=nil {`
`478`	`474`	`returnxerrors.Errorf("create telemetry reporter: %w",err)`
`@@ -569,17 +565,17 @@ func Server(newAPI func(context.Context, coderd.Options) (coderd.API, error))`
`569`	`565`	`eg.Go(func()error {`
`570`	`566`	`// Make sure to close the tunnel listener if we exit so the`
`571`	`567`	`// errgroup doesn't wait forever!`
`572`		`-iftunnel {`
`573`		`-deferdevTunnel.Listener.Close()`
	`568`	`+iftunnel!=nil{`
	`569`	`+defertunnel.Listener.Close()`
`574`	`570`	`}`
`575`	`571`
`576`	`572`	`returnserver.Serve(listener)`
`577`	`573`	`})`
`578`		`-iftunnel {`
	`574`	`+iftunnel!=nil{`
`579`	`575`	`eg.Go(func()error {`
`580`	`576`	`deferlistener.Close()`
`581`	`577`
`582`		`-returnserver.Serve(devTunnel.Listener)`
	`578`	`+returnserver.Serve(tunnel.Listener)`
`583`	`579`	`})`
`584`	`580`	`}`
`585`	`581`	`gofunc() {`
`@@ -624,7 +620,7 @@ func Server(newAPI func(context.Context, coderd.Options) (coderd.API, error))`
`624`	`620`	`_,_=fmt.Fprintln(cmd.OutOrStdout(),cliui.Styles.Bold.Render(`
`625`	`621`	`"Interrupt caught, gracefully exiting. Use ctrl+\\ to force quit",`
`626`	`622`	`))`
`627`		`-caseexitErr=<-devTunnelErr:`
	`623`	`+caseexitErr=<-tunnelErr:`
`628`	`624`	`ifexitErr==nil {`
`629`	`625`	`exitErr=xerrors.New("dev tunnel closed unexpectedly")`
`630`	`626`	`}`
`@@ -650,9 +646,9 @@ func Server(newAPI func(context.Context, coderd.Options) (coderd.API, error))`
`650`	`646`	`// in-flight requests, give in-flight requests 5 seconds to`
`651`	`647`	`// complete.`
`652`	`648`	`cmd.Println("Shutting down API server...")`
`653`		`-err=shutdownWithTimeout(server.Shutdown,5*time.Second)`
	`649`	`+err=shutdownWithTimeout(server.Shutdown,3*time.Second)`
`654`	`650`	`iferr!=nil {`
`655`		`-cmd.Printf("API server shutdown took longer than5s: %s",err)`
	`651`	`+cmd.Printf("API server shutdown took longer than3s: %s\n",err)`
`656`	`652`	`}else {`
`657`	`653`	`cmd.Printf("Gracefully shut down API server\n")`
`658`	`654`	`}`
`@@ -694,10 +690,10 @@ func Server(newAPI func(context.Context, coderd.Options) (coderd.API, error))`
`694`	`690`	`cmd.Println("Done waiting for WebSocket connections")`
`695`	`691`
`696`	`692`	`// Close tunnel after we no longer have in-flight connections.`
`697`		`-iftunnel {`
	`693`	`+iftunnel!=nil{`
`698`	`694`	`cmd.Println("Waiting for tunnel to close...")`
`699`	`695`	`closeTunnel()`
`700`		`-<-devTunnelErr`
	`696`	`+<-tunnelErr`
`701`	`697`	`cmd.Println("Done waiting for tunnel")`
`702`	`698`	`}`
`703`	`699`
`@@ -855,8 +851,6 @@ func Server(newAPI func(context.Context, coderd.Options) (coderd.API, error))`
`855`	`851`	`"Paths to the private keys for each of the certificates. It requires a PEM-encoded file")`
`856`	`852`	`cliflag.StringVarP(root.Flags(),&tlsMinVersion,"tls-min-version","","CODER_TLS_MIN_VERSION","tls12",`
`857`	`853`	`Minimum supported version of TLS. Accepted values are "tls10", "tls11", "tls12" or "tls13"`)
`858`		`-cliflag.BoolVarP(root.Flags(),&tunnel,"tunnel","","CODER_TUNNEL",false,`
`859`		-"Workspaces must be able to reach the `access-url`. This overrides your access URL with a public access URL that tunnels your Coder deployment.")
`860`	`854`	`cliflag.BoolVarP(root.Flags(),&traceEnable,"trace","","CODER_TRACE",false,`
`861`	`855`	`"Whether application tracing data is collected.")`
`862`	`856`	`cliflag.BoolVarP(root.Flags(),&secureAuthCookie,"secure-auth-cookie","","CODER_SECURE_AUTH_COOKIE",false,`

`‎cli/server_test.go`

Lines changed: 14 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -56,6 +56,7 @@ func TestServer(t *testing.T) {`
`56`	`56`	`root,cfg:=clitest.New(t,`
`57`	`57`	`"server",`
`58`	`58`	`"--address",":0",`
	`59`	`+"--access-url","example.com",`
`59`	`60`	`"--postgres-url",connectionURL,`
`60`	`61`	`"--cache-dir",t.TempDir(),`
`61`	`62`	`)`
`@@ -87,6 +88,7 @@ func TestServer(t *testing.T) {`
`87`	`88`	`root,cfg:=clitest.New(t,`
`88`	`89`	`"server",`
`89`	`90`	`"--address",":0",`
	`91`	`+"--access-url","example.com",`
`90`	`92`	`"--cache-dir",t.TempDir(),`
`91`	`93`	`)`
`92`	`94`	`pty:=ptytest.New(t)`
`@@ -159,6 +161,7 @@ func TestServer(t *testing.T) {`
`159`	`161`	`"server",`
`160`	`162`	`"--in-memory",`
`161`	`163`	`"--address",":0",`
	`164`	`+"--access-url","example.com",`
`162`	`165`	`"--access-url","foobarbaz.mydomain",`
`163`	`166`	`"--cache-dir",t.TempDir(),`
`164`	`167`	`)`
`@@ -189,6 +192,7 @@ func TestServer(t *testing.T) {`
`189`	`192`	`"server",`
`190`	`193`	`"--in-memory",`
`191`	`194`	`"--address",":0",`
	`195`	`+"--access-url","example.com",`
`192`	`196`	`"--access-url","https://google.com",`
`193`	`197`	`"--cache-dir",t.TempDir(),`
`194`	`198`	`)`
`@@ -218,6 +222,7 @@ func TestServer(t *testing.T) {`
`218`	`222`	`"server",`
`219`	`223`	`"--in-memory",`
`220`	`224`	`"--address",":0",`
	`225`	`+"--access-url","example.com",`
`221`	`226`	`"--tls-enable",`
`222`	`227`	`"--tls-min-version","tls9",`
`223`	`228`	`"--cache-dir",t.TempDir(),`
`@@ -234,6 +239,7 @@ func TestServer(t *testing.T) {`
`234`	`239`	`"server",`
`235`	`240`	`"--in-memory",`
`236`	`241`	`"--address",":0",`
	`242`	`+"--access-url","example.com",`
`237`	`243`	`"--tls-enable",`
`238`	`244`	`"--tls-client-auth","something",`
`239`	`245`	`"--cache-dir",t.TempDir(),`
`@@ -290,6 +296,7 @@ func TestServer(t *testing.T) {`
`290`	`296`	`"server",`
`291`	`297`	`"--in-memory",`
`292`	`298`	`"--address",":0",`
	`299`	`+"--access-url","example.com",`
`293`	`300`	`"--cache-dir",t.TempDir(),`
`294`	`301`	`}`
`295`	`302`	`args=append(args,c.args...)`
`@@ -310,6 +317,7 @@ func TestServer(t *testing.T) {`
`310`	`317`	`"server",`
`311`	`318`	`"--in-memory",`
`312`	`319`	`"--address",":0",`
	`320`	`+"--access-url","example.com",`
`313`	`321`	`"--tls-enable",`
`314`	`322`	`"--tls-cert-file",certPath,`
`315`	`323`	`"--tls-key-file",keyPath,`
`@@ -349,6 +357,7 @@ func TestServer(t *testing.T) {`
`349`	`357`	`"server",`
`350`	`358`	`"--in-memory",`
`351`	`359`	`"--address",":0",`
	`360`	`+"--access-url","example.com",`
`352`	`361`	`"--tls-enable",`
`353`	`362`	`"--tls-cert-file",cert1Path,`
`354`	`363`	`"--tls-key-file",key1Path,`
`@@ -432,6 +441,7 @@ func TestServer(t *testing.T) {`
`432`	`441`	`"server",`
`433`	`442`	`"--in-memory",`
`434`	`443`	`"--address",":0",`
	`444`	`+"--access-url","example.com",`
`435`	`445`	`"--provisioner-daemons","1",`
`436`	`446`	`"--cache-dir",t.TempDir(),`
`437`	`447`	`)`
`@@ -458,6 +468,7 @@ func TestServer(t *testing.T) {`
`458`	`468`	`"server",`
`459`	`469`	`"--in-memory",`
`460`	`470`	`"--address",":0",`
	`471`	`+"--access-url","example.com",`
`461`	`472`	`"--trace=true",`
`462`	`473`	`"--cache-dir",t.TempDir(),`
`463`	`474`	`)`
`@@ -495,6 +506,7 @@ func TestServer(t *testing.T) {`
`495`	`506`	`"server",`
`496`	`507`	`"--in-memory",`
`497`	`508`	`"--address",":0",`
	`509`	`+"--access-url","example.com",`
`498`	`510`	`"--telemetry",`
`499`	`511`	`"--telemetry-url",server.URL,`
`500`	`512`	`"--cache-dir",t.TempDir(),`
`@@ -525,6 +537,7 @@ func TestServer(t *testing.T) {`
`525`	`537`	`"server",`
`526`	`538`	`"--in-memory",`
`527`	`539`	`"--address",":0",`
	`540`	`+"--access-url","example.com",`
`528`	`541`	`"--provisioner-daemons","1",`
`529`	`542`	`"--prometheus-enable",`
`530`	`543`	`"--prometheus-address",":"+strconv.Itoa(randomPort),`
`@@ -577,6 +590,7 @@ func TestServer(t *testing.T) {`
`577`	`590`	`"server",`
`578`	`591`	`"--in-memory",`
`579`	`592`	`"--address",":0",`
	`593`	`+"--access-url","example.com",`
`580`	`594`	`"--oauth2-github-client-id","fake",`
`581`	`595`	`"--oauth2-github-client-secret","fake",`
`582`	`596`	`"--oauth2-github-enterprise-base-url",fakeRedirect,`

`‎coder.env`

Lines changed: 1 addition & 8 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,11 +1,4 @@`
`1`		`-# Coder must be reachable from an external URL`
`2`		`-# for users and workspaces to connect.`
`3`		`-`
`4`		`-# Option 1) Enable CODER_TUNNEL to generate a`
`5`		`-# unique *. try.coder.com access URL`
`6`		`-CODER_TUNNEL=false`
`7`		`-`
`8`		`-# Option 2) Set an access URL`
	`1`	`+# Coder must be reachable from an external URL for users and workspaces to connect.`
`9`	`2`	`# e.g. https://coder.example.com`
`10`	`3`	`CODER_ACCESS_URL=`
`11`	`4`

`‎coderd/authorize.go`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -119,7 +119,7 @@ func (api API) checkAuthorization(rw http.ResponseWriter, r http.Request) {`
`119`	`119`	`return`
`120`	`120`	`}`
`121`	`121`
`122`		`-api.Logger.Warn(ctx,"check-auth",`
	`122`	`+api.Logger.Debug(ctx,"check-auth",`
`123`	`123`	`slog.F("my_id",httpmw.APIKey(r).UserID),`
`124`	`124`	`slog.F("got_id",auth.ID),`
`125`	`125`	`slog.F("name",auth.Username),`

`‎coderd/csp.go`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -34,7 +34,7 @@ func (api API) logReportCSPViolations(rw http.ResponseWriter, r http.Request)`
`34`	`34`	`fork,v:=rangev.Report {`
`35`	`35`	`fields=append(fields,slog.F(k,v))`
`36`	`36`	`}`
`37`		`-api.Logger.Warn(ctx,"csp violation",fields...)`
	`37`	`+api.Logger.Debug(ctx,"csp violation",fields...)`
`38`	`38`
`39`	`39`	`httpapi.Write(ctx,rw,http.StatusOK,"ok")`
`40`	`40`	`}`

`‎coderd/workspaceagents.go`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -311,7 +311,7 @@ func (api API) dialWorkspaceAgentTailnet(r http.Request, agentID uuid.UUID) (*`
`311`	`311`	`conn,err:=tailnet.NewConn(&tailnet.Options{`
`312`	`312`	`Addresses: []netip.Prefix{netip.PrefixFrom(tailnet.IP(),128)},`
`313`	`313`	`DERPMap:derpMap,`
`314`		`-Logger:api.Logger.Named("tailnet").Leveled(slog.LevelDebug),`
	`314`	`+Logger:api.Logger.Named("tailnet"),`
`315`	`315`	`})`
`316`	`316`	`iferr!=nil {`
`317`	`317`	`returnnil,xerrors.Errorf("create tailnet conn: %w",err)`
`@@ -453,7 +453,7 @@ func (api API) workspaceAgentCoordinate(rw http.ResponseWriter, r http.Request`
`453`	`453`	`// Ignore all trace spans after this.`
`454`	`454`	`ctx=trace.ContextWithSpan(ctx,tracing.NoopSpan)`
`455`	`455`
`456`		`-api.Logger.Info(ctx,"accepting agent",slog.F("resource",resource),slog.F("agent",workspaceAgent))`
	`456`	`+api.Logger.Info(ctx,"accepting agent",slog.F("agent",workspaceAgent))`
`457`	`457`
`458`	`458`	`deferconn.Close(websocket.StatusNormalClosure,"")`
`459`	`459`

`‎docker-compose.yaml`

Lines changed: 0 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -13,9 +13,6 @@ services:`
`13`	`13`	`# that workspaces can reach. This cannot be localhost`
`14`	`14`	`# or 127.0.0.1 for non-Docker templates!`
`15`	`15`	`CODER_ACCESS_URL:"${CODER_ACCESS_URL}"`
`16`		`-# Alternatively, you can enable CODER_TUNNEL for`
`17`		`-# proof-of-concept deployments.`
`18`		`-CODER_TUNNEL:"${CODER_TUNNEL:-false}"`
`19`	`16`	`# If the coder user does not have write permissions on`
`20`	`17`	`# the docker socket, you can uncomment the following`
`21`	`18`	`# lines and set the group ID to one that has write`

`‎docs/admin/configure.md`

Lines changed: 5 additions & 5 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,11 +1,6 @@`
`1`	`1`	`Coder server's primary configuration is done via environment variables. For a full list`
`2`	`2`	of the options, run`coder server --help` on the host.
`3`	`3`
`4`		`-##Tunnel`
`5`		`-`
`6`		-For proof-of-concept deployments, you can set`CODER_TUNNEL=true` to run Coder on a unique`*.try.coder.app` URL.
`7`		`-This is a quick way to allow users and workspaces outside your LAN to connect to Coder.`
`8`		`-`
`9`	`4`	`##Access URL`
`10`	`5`
`11`	`6`	`CODER_ACCESS_URL` is required if you are not using the tunnel. Set this to the external URL
`@@ -14,6 +9,11 @@ should not be localhost.`
`14`	`9`
`15`	`10`	`>Access URL should be a external IP address or domain with DNS records pointing to Coder.`
`16`	`11`
	`12`	`+###Tunnel`
	`13`	`+`
	`14`	`+If an access URL is not specified, Coder will create`
	`15`	`+a publicly accessible URL to reverse proxy your deployment for simple setup.`
	`16`	`+`
`17`	`17`	`##Wildcard access URL`
`18`	`18`
`19`	`19`	`CODER_WILDCARD_ACCESS_URL` is necessary for[port forwarding](../networking/port-forwarding.md#dashboard)

Original file line number	Diff line number	Diff line change
`@@ -15,7 +15,7 @@ Coder publishes self-contained .zip and .tar.gz archives in [GitHub releases](ht`
`15`	`15`
`16`	`16`	```sh
`17`	`17`	`# Automatically sets up an external access URL on *.try.coder.app`
`18`		`- coder server --tunnel`
	`18`	`+ coder server`
`19`	`19`
`20`	`20`	`# Requires a PostgreSQL instance and external access URL`
`21`	`21`	`coder server --postgres-url<url> --access-url<url>`

`‎docs/install/docker.md`

Lines changed: 2 additions & 5 deletions

Original file line number	Diff line number	Diff line change
`@@ -4,7 +4,7 @@ You can install and run Coder using the official Docker images published on [Git`
`4`	`4`
`5`	`5`	`Docker is required. See the[official installation documentation](https://docs.docker.com/install/).`
`6`	`6`
`7`		`-##Run Coder with built-in database and tunnel (quick)`
	`7`	`+##Run Coder withthebuilt-in database (quick)`
`8`	`8`
`9`	`9`	`For proof-of-concept deployments, you can run a complete Coder instance with`
`10`	`10`	`the following command:`
`@@ -14,7 +14,6 @@ export CODER_DATA=$HOME/.config/coderv2-docker`
`14`	`14`	`export DOCKER_GROUP=$(getent group docker\| cut -d: -f3)`
`15`	`15`	`mkdir -p$CODER_DATA`
`16`	`16`	`docker run --rm -it \`
`17`		`- -e CODER_TUNNEL=true \`
`18`	`17`	`-v$CODER_DATA:/home/coder/.config \`
`19`	`18`	`-v /var/run/docker.sock:/var/run/docker.sock \`
`20`	`19`	`--group-add$DOCKER_GROUP \`
`@@ -68,7 +67,7 @@ an PostgreSQL container and volume.`
`68`	`67`	```sh
`69`	`68`	`cd coder`
`70`	`69`
`71`		`-CODER_TUNNEL=truedocker-compose up`
	`70`	`+ docker-compose up`
`72`	`71`	```
`73`	`72`
`74`	`73`	`For production deployments, we recommend setting an[access URL](../admin/configure.md#access-url):`
`@@ -79,8 +78,6 @@ an PostgreSQL container and volume.`
`79`	`78`	`CODER_ACCESS_URL=https://coder.example.com docker-compose up`
`80`	`79`	```
`81`	`80`
`82`		->Without`CODER_ACCESS_URL` or`CODER_TUNNEL` set, Coder will bind to`localhost:7080`. This will only work for Docker-based templates.
`83`		`-`
`84`	`81`	4. Visit the web ui via the configured url. You can add`/login` to the base url to create the first user via the ui.
`85`	`82`
`86`	`83`	`5. Follow the on-screen instructions log in and create your first template and workspace`

`‎docs/install/packages.md`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -7,7 +7,7 @@`
`7`	`7`	`1. Run Coder as a system service.`
`8`	`8`
`9`	`9`	```sh
`10`		`-# Set up an access URL or enable CODER_TUNNEL`
	`10`	`+#Optional)Set up an access URL`
`11`	`11`	`sudo vim /etc/coder.d/coder.env`
`12`	`12`
`13`	`13`	`# To systemd to start Coder now and on reboot`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit3cc77d9

File tree

22 files changed

22 files changed

`‎README.md`

`‎cli/resetpassword_test.go`

`‎cli/server.go`

`‎cli/server_test.go`

`‎coder.env`

`‎coderd/authorize.go`

`‎coderd/csp.go`

`‎coderd/workspaceagents.go`

`‎docker-compose.yaml`

`‎docs/admin/configure.md`

`‎docs/images/quickstart/aws/aws7.png`

`‎docs/images/quickstart/azure/azure7.png`

`‎docs/install/binary.md`

`‎docs/install/docker.md`

`‎docs/install/packages.md`

0 commit comments