starred/nginx-proxy-manager-NginxProxyManager
1
0
Fork 0
mirror of https://github.com/NginxProxyManager/nginx-proxy-manager.git synced 2026-04-25 09:25:55 +03:00
Code Issues 937 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #210] .well-known not passing? #185

New issue
Open
opened 2026-02-26 06:31:14 +03:00 by kerem · 27 comments
kerem commented 2026-02-26 06:31:14 +03:00
Owner
Copy link

Originally created by @thiggin on GitHub (Oct 14, 2019).
Original GitHub issue: https://github.com/NginxProxyManager/nginx-proxy-manager/issues/210

Trying to proxy for MTA-STS config but when the server is behind nginx proxy manager it is not passing request for anything in the .well-known directory to the back end server. I am sure this probably has something to do with config for the Let's Encrypt stuff to work but is also very limiting in what we can host behind the nginx proxy manager. Trying to run this all through the proxy for a central place to manage all Let's Encrypt certs. Is this expected behavior or something that can be addresses with custom config or something?

Originally created by @thiggin on GitHub (Oct 14, 2019). Original GitHub issue: https://github.com/NginxProxyManager/nginx-proxy-manager/issues/210 Trying to proxy for MTA-STS config but when the server is behind nginx proxy manager it is not passing request for anything in the .well-known directory to the back end server. I am sure this probably has something to do with config for the Let's Encrypt stuff to work but is also very limiting in what we can host behind the nginx proxy manager. Trying to run this all through the proxy for a central place to manage all Let's Encrypt certs. Is this expected behavior or something that can be addresses with custom config or something?
kerem commented 2026-02-26 06:31:16 +03:00
Author
Owner
Copy link

@joshbenner commented on GitHub (Jun 20, 2020):

The nginx configs that it generates seem to always include the letsencrypt configurations, which will swallow any request to /.well-known/acme-challenge/*.

This is important for proxy manager's ability to handle Let's Encrypt HTTP challenges; however, a simple toggle option could be presented in the host config to disable Let's Encrypt on that host, thereby causing the include to not be written in that host's config.

The impact would be that any hostname associated with that config could not acquire or renew any Let's Encrypt certificates.

<!-- gh-comment-id:647038645 --> @joshbenner commented on GitHub (Jun 20, 2020): The nginx configs that it generates seem to always include the letsencrypt configurations, which will swallow any request to `/.well-known/acme-challenge/*`. This is important for proxy manager's ability to handle Let's Encrypt HTTP challenges; however, a simple toggle option could be presented in the host config to disable Let's Encrypt on that host, thereby causing the include to not be written in that host's config. The impact would be that any hostname associated with that config could not acquire or renew any Let's Encrypt certificates.
kerem commented 2026-02-26 06:31:16 +03:00
Author
Owner
Copy link

@thecybermind commented on GitHub (Dec 7, 2021):

Assuming you don't actually need NPM to manage any certs via HTTP (I use the DNS option to get wildcard certs for the various domains pointing at NPM, but one of the servers behind NPM needs to get its own certs for use with non-HTTP services), the simplest way to temporarily handle this is to change docker-compose.yml to include this in the volumes section:

- ./data/nginx/letsencrypt-acme-challenge.conf:/etc/nginx/conf.d/include/letsencrypt-acme-challenge.conf

And then include a blank letsencrypt-acme-challenge.conf file in ./data/nginx/ (based on where docker-compose.yml is).

This fully-reversible change will basically block any of the /.well-known/-handling code from being added to the nginx config for any host, which will have the result of passing all /.well-known/ requests through to the servers behind NPM.

If you do need NPM to get any cert via HTTP, you would probably need to add custom locations to those hosts using the code from the original /etc/nginx/conf.d/include/letsencrypt-acme-challenge.conf so that the request gets intercepted properly by NPM.

<!-- gh-comment-id:987573763 --> @thecybermind commented on GitHub (Dec 7, 2021): Assuming you don't actually need NPM to manage any certs via HTTP (I use the DNS option to get wildcard certs for the various domains pointing at NPM, but one of the servers behind NPM needs to get its own certs for use with non-HTTP services), the simplest way to temporarily handle this is to change `docker-compose.yml` to include this in the `volumes` section: `- ./data/nginx/letsencrypt-acme-challenge.conf:/etc/nginx/conf.d/include/letsencrypt-acme-challenge.conf` And then include a blank `letsencrypt-acme-challenge.conf` file in `./data/nginx/` (based on where `docker-compose.yml` is). This fully-reversible change will basically block any of the /.well-known/-handling code from being added to the nginx config for any host, which will have the result of passing all /.well-known/ requests through to the servers behind NPM. If you do need NPM to get any cert via HTTP, you would probably need to add custom locations to those hosts using the code from the original `/etc/nginx/conf.d/include/letsencrypt-acme-challenge.conf` so that the request gets intercepted properly by NPM.
kerem commented 2026-02-26 06:31:16 +03:00
Author
Owner
Copy link

@DieserMerlin commented on GitHub (Mar 16, 2022):

My solution for this problem is creating a common volume for the .well-known folder:

docker volume create well-known

Map this to the .well-known folder in NPM by adding a volume to the compose-file:

services:
  npm:
    ...
    volumes:
      - well-known:/data/letsencrypt-acme-challenge/.well-known
    ...
    
volumes:
  well-known:
    external: true

Now, map this volume onto any .well-known folder in any container.
I use this for my poste.io mailserver, where I map the volume to /opt/www/.well-known to enable poste.io to get a cert for my e-mails.

<!-- gh-comment-id:1068955629 --> @DieserMerlin commented on GitHub (Mar 16, 2022): My solution for this problem is creating a common volume for the .well-known folder: `docker volume create well-known` Map this to the .well-known folder in NPM by adding a volume to the compose-file: ``` services: npm: ... volumes: - well-known:/data/letsencrypt-acme-challenge/.well-known ... volumes: well-known: external: true ``` Now, map this volume onto any .well-known folder in any container. I use this for my poste.io mailserver, where I map the volume to `/opt/www/.well-known` to enable poste.io to get a cert for my e-mails.
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@thesantiagosp commented on GitHub (Apr 13, 2022):

Having the same problem with poste.io mailserver. There should be an option to allow passthrought for subdomain/.well-known/acme-challenge/*, and more when you are using dns challenge for npm.

<!-- gh-comment-id:1097906358 --> @thesantiagosp commented on GitHub (Apr 13, 2022): Having the same problem with poste.io mailserver. There should be an option to allow passthrought for `subdomain/.well-known/acme-challenge/*`, and more when you are using dns challenge for npm.
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@DieserMerlin commented on GitHub (Apr 13, 2022):

@EnfermeraSexy Have you tried my solution?

<!-- gh-comment-id:1097963948 --> @DieserMerlin commented on GitHub (Apr 13, 2022): @EnfermeraSexy Have you tried my solution?
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@thesantiagosp commented on GitHub (Apr 13, 2022):

@EnfermeraSexy Have you tried my solution?

No, just mounted an empty file to /etc/nginx/conf.d/include/letsencrypt-acme-challenge.conf, but that is not a proper fix/solution.

<!-- gh-comment-id:1097966030 --> @thesantiagosp commented on GitHub (Apr 13, 2022): > @EnfermeraSexy Have you tried my solution? No, just mounted an empty file to `/etc/nginx/conf.d/include/letsencrypt-acme-challenge.conf`, but that is not a proper fix/solution.
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@DieserMerlin commented on GitHub (Apr 13, 2022):

If you map the same volume to both, NPM and the poste.io folder as described, the authorization works for both containers.

<!-- gh-comment-id:1097979340 --> @DieserMerlin commented on GitHub (Apr 13, 2022): If you map the same volume to both, NPM and the poste.io folder as described, the authorization works for both containers.
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@rafpadilla commented on GitHub (May 11, 2022):

My solution for this problem is creating a common volume for the .well-known folder:

docker volume create well-known

Map this to the .well-known folder in NPM by adding a volume to the compose-file:

services:
  npm:
    ...
    volumes:
      - well-known:/data/letsencrypt-acme-challenge/.well-known
    ...
    
volumes:
  well-known:
    external: true

Now, map this volume onto any .well-known folder in any container. I use this for my poste.io mailserver, where I map the volume to /opt/www/.well-known to enable poste.io to get a cert for my e-mails.

Thanks, that works for me!

<!-- gh-comment-id:1123311840 --> @rafpadilla commented on GitHub (May 11, 2022): > My solution for this problem is creating a common volume for the .well-known folder: > > `docker volume create well-known` > > Map this to the .well-known folder in NPM by adding a volume to the compose-file: > > ``` > services: > npm: > ... > volumes: > - well-known:/data/letsencrypt-acme-challenge/.well-known > ... > > volumes: > well-known: > external: true > ``` > > Now, map this volume onto any .well-known folder in any container. I use this for my poste.io mailserver, where I map the volume to `/opt/www/.well-known` to enable poste.io to get a cert for my e-mails. Thanks, that works for me!
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@george-viaud commented on GitHub (Aug 8, 2022):

Related problem, in that my proxy manager (running on a rasp-pi) forwards traffic to my mail server running iredadmin (a different rasp pi). All traffic to .well-known/acme-challenge/ is stopped by the Proxy Manager server and never makes it to the mail server.

Is there a way to allow the traffic to pass through normally and only divert the traffic to be handled by the Proxy Manager server when it's doing its own LetsEncrypt renewal?

Alternatively, is there a way to tell LetsEncrypt (certbot) on the mail server to use a custom acme-challenge path?

<!-- gh-comment-id:1208367328 --> @george-viaud commented on GitHub (Aug 8, 2022): Related problem, in that my proxy manager (running on a rasp-pi) forwards traffic to my mail server running iredadmin (a different rasp pi). All traffic to `.well-known/acme-challenge/` is stopped by the Proxy Manager server and never makes it to the mail server. Is there a way to allow the traffic to pass through normally and only divert the traffic to be handled by the Proxy Manager server when it's doing its own LetsEncrypt renewal? Alternatively, is there a way to tell LetsEncrypt (certbot) on the mail server to use a custom acme-challenge path?
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@DieserMerlin commented on GitHub (Aug 8, 2022):

Have you tried my solution? Still works without any problems for me

<!-- gh-comment-id:1208573666 --> @DieserMerlin commented on GitHub (Aug 8, 2022): Have you tried my solution? Still works without any problems for me
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@george-viaud commented on GitHub (Aug 8, 2022):

Have you tried my solution? Still works without any problems for me

Thanks for the reply DieserMerlin - if I understand your solution correctly (I may not) it requires the Proxy Manager and mail server be on the same physical device? If not, I must not understand the solution correctly.

<!-- gh-comment-id:1208594048 --> @george-viaud commented on GitHub (Aug 8, 2022): > Have you tried my solution? Still works without any problems for me Thanks for the reply DieserMerlin - if I understand your solution correctly (I may not) it requires the Proxy Manager and mail server be on the same physical device? If not, I must not understand the solution correctly.
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@DieserMerlin commented on GitHub (Aug 9, 2022):

You must be able to use the same volume. There are ways to share a volume across multiple hosts, which is more complicated, but should make the solution work across multiple hosts with a little effort.
For example, you could use the same ntfs network mount on both containers.

<!-- gh-comment-id:1208928846 --> @DieserMerlin commented on GitHub (Aug 9, 2022): You must be able to use the same volume. There are ways to share a volume across multiple hosts, which is more complicated, but should make the solution work across multiple hosts with a little effort. For example, you could use the same ntfs network mount on both containers.
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@george-viaud commented on GitHub (Aug 9, 2022):

@DieserMerlin thanks for that. I solved my problem by deriving from your solution - I used SSH on the server I was running N.P.M. and the same on the mail server, then used scp on a cron to clone the certificate files and restart the necessary mail services every handful of days. I hope this helps someone else.

<!-- gh-comment-id:1209390517 --> @george-viaud commented on GitHub (Aug 9, 2022): @DieserMerlin thanks for that. I solved my problem by deriving from your solution - I used SSH on the server I was running N.P.M. and the same on the mail server, then used `scp` on a cron to clone the certificate files and restart the necessary mail services every handful of days. I hope this helps someone else.
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@evelynhathaway commented on GitHub (Dec 26, 2022):

It sounds like we could disable the ACME responses from the NPM template based on the dns_challenge variable to resolve this issue.

{% if certificate.provider == "letsencrypt" %}
  # Let's Encrypt SSL
+ {% if !certificate.meta.dns_challenge %}
    include conf.d/include/letsencrypt-acme-challenge.conf;
+ {% endif %}
  include conf.d/include/ssl-ciphers.conf;
  ssl_certificate /etc/letsencrypt/live/npm-{{ certificate_id }}/fullchain.pem;
  ssl_certificate_key /etc/letsencrypt/live/npm-{{ certificate_id }}/privkey.pem;

github.com/NginxProxyManager/nginx-proxy-manager@fd30cfe98b/backend/templates/_certificates.conf (L2-L4)

Does anyone more familiar with the project want to confirm?

<!-- gh-comment-id:1365404673 --> @evelynhathaway commented on GitHub (Dec 26, 2022): It sounds like we could disable the ACME responses from the NPM template based on the `dns_challenge` variable to resolve this issue. ```diff {% if certificate.provider == "letsencrypt" %} # Let's Encrypt SSL + {% if !certificate.meta.dns_challenge %} include conf.d/include/letsencrypt-acme-challenge.conf; + {% endif %} include conf.d/include/ssl-ciphers.conf; ssl_certificate /etc/letsencrypt/live/npm-{{ certificate_id }}/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/npm-{{ certificate_id }}/privkey.pem; ``` https://github.com/NginxProxyManager/nginx-proxy-manager/blob/fd30cfe98bba365e9630a791bdc86f01c08c6fa1/backend/templates/_certificates.conf#L2-L4 Does anyone more familiar with the project want to confirm?
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@evelynhathaway commented on GitHub (Dec 26, 2022):

Also, if you cannot replace the templates or .well-known directory on your NPM filesystem, you can use this workaround instead:

Custom Nginx Configuration

rewrite ^(/.well-known/acme-challenge/.*)$ /internal$1 last;

location ~ ^/internal(/.well-known/acme-challenge/.*)$ {
  proxy_pass http://$server$1;
}

It works by rewriting the internal URI before the ACME challenge location can respond (related to #2418).

<!-- gh-comment-id:1365447415 --> @evelynhathaway commented on GitHub (Dec 26, 2022): Also, if you cannot replace the templates or `.well-known` directory on your NPM filesystem, you can use this workaround instead: **Custom Nginx Configuration** ```nginx rewrite ^(/.well-known/acme-challenge/.*)$ /internal$1 last; location ~ ^/internal(/.well-known/acme-challenge/.*)$ { proxy_pass http://$server$1; } ``` It works by rewriting the internal URI before the ACME challenge location can respond (related to #2418).
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@aldington-david commented on GitHub (Jul 10, 2023):

Also, if you cannot replace the templates or directory on your NPM filesystem, you can use this workaround instead:.well-known

Custom Nginx Configuration

rewrite ^(/.well-known/acme-challenge/.*)$ /internal$1 last;

location ~ ^/internal(/.well-known/acme-challenge/.*)$ {
  proxy_pass http://$server$1;
}

It works by rewriting the internal URI before the ACME challenge location can respond (related to #2418).

Excellent answer!

<!-- gh-comment-id:1628620891 --> @aldington-david commented on GitHub (Jul 10, 2023): > Also, if you cannot replace the templates or directory on your NPM filesystem, you can use this workaround instead:`.well-known` > > **Custom Nginx Configuration** > > ```nginx > rewrite ^(/.well-known/acme-challenge/.*)$ /internal$1 last; > > location ~ ^/internal(/.well-known/acme-challenge/.*)$ { > proxy_pass http://$server$1; > } > ``` > > It works by rewriting the internal URI before the ACME challenge location can respond (related to #2418). Excellent answer!
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Apr 1, 2024):

Issue is now considered stale. If you want to keep it open, please comment 👍

<!-- gh-comment-id:2029021603 --> @github-actions[bot] commented on GitHub (Apr 1, 2024): Issue is now considered stale. If you want to keep it open, please comment :+1:
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@evelynhathaway commented on GitHub (Apr 1, 2024):

This issue is still occurring, and would make a good first issue if the effects of disabling the ACME responses when the site uses a certificate with DNS challenges is appropriate for a fix PR.

<!-- gh-comment-id:2029087759 --> @evelynhathaway commented on GitHub (Apr 1, 2024): This issue is still occurring, and would make a `good first issue` if the effects of disabling the ACME responses when the site uses a certificate with DNS challenges is appropriate for a fix PR.
kerem commented 2026-02-26 06:31:17 +03:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Dec 23, 2024):

Issue is now considered stale. If you want to keep it open, please comment 👍

<!-- gh-comment-id:2558759721 --> @github-actions[bot] commented on GitHub (Dec 23, 2024): Issue is now considered stale. If you want to keep it open, please comment :+1:
kerem commented 2026-02-26 06:31:18 +03:00
Author
Owner
Copy link

@evelynhathaway commented on GitHub (Dec 23, 2024):

A comment for you, my good bot! 👑🙏

<!-- gh-comment-id:2559065134 --> @evelynhathaway commented on GitHub (Dec 23, 2024): A comment for you, my good bot! 👑🙏
kerem commented 2026-02-26 06:31:18 +03:00
Author
Owner
Copy link

@sardine-mehico commented on GitHub (Jul 12, 2025):

the issue still persists

<!-- gh-comment-id:3064559542 --> @sardine-mehico commented on GitHub (Jul 12, 2025): the issue still persists
kerem commented 2026-02-26 06:31:18 +03:00
Author
Owner
Copy link

@Nazgile94 commented on GitHub (Jul 17, 2025):

+1

<!-- gh-comment-id:3085773720 --> @Nazgile94 commented on GitHub (Jul 17, 2025): +1
kerem commented 2026-02-26 06:31:18 +03:00
Author
Owner
Copy link

@febaac commented on GitHub (Dec 9, 2025):

+1

<!-- gh-comment-id:3634714247 --> @febaac commented on GitHub (Dec 9, 2025): +1
kerem commented 2026-02-26 06:31:18 +03:00
Author
Owner
Copy link

@njfsilva commented on GitHub (Dec 22, 2025):

Please fix,thanks!

<!-- gh-comment-id:3681531430 --> @njfsilva commented on GitHub (Dec 22, 2025): Please fix,thanks!
kerem commented 2026-02-26 06:31:18 +03:00
Author
Owner
Copy link

@quelsh commented on GitHub (Jan 31, 2026):

+1

<!-- gh-comment-id:3829278846 --> @quelsh commented on GitHub (Jan 31, 2026): +1
kerem commented 2026-02-26 06:31:18 +03:00
Author
Owner
Copy link

@LedyBacer commented on GitHub (Feb 10, 2026):

+1

<!-- gh-comment-id:3876929930 --> @LedyBacer commented on GitHub (Feb 10, 2026): +1
kerem commented 2026-02-26 06:31:18 +03:00
Author
Owner
Copy link

@Artem89233 commented on GitHub (Feb 11, 2026):

+1

<!-- gh-comment-id:3882795906 --> @Artem89233 commented on GitHub (Feb 11, 2026): +1
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
develop
dependabot/npm_and_yarn/backend/liquidjs-10.25.7
dependabot/npm_and_yarn/frontend/prod-minor-updates-2a16bf3987
dependabot/npm_and_yarn/frontend/dev-patch-updates-754666cf41
dependabot/npm_and_yarn/backend/basic-ftp-5.3.0
dependabot/npm_and_yarn/test/follow-redirects-1.16.0
dependabot/npm_and_yarn/test/axios-1.15.0
dependabot/npm_and_yarn/frontend/lodash-4.18.1
dependabot/npm_and_yarn/backend/lodash-4.18.1
dependabot/npm_and_yarn/test/lodash-4.18.1
dependabot/npm_and_yarn/frontend/vite-7.3.2
dependabot/npm_and_yarn/backend/prod-minor-updates-5ec19a7f21
dependabot/npm_and_yarn/frontend/lodash-es-4.18.1
dependabot/npm_and_yarn/frontend/happy-dom-20.8.9
dependabot/npm_and_yarn/backend/path-to-regexp-8.4.0
dependabot/npm_and_yarn/frontend/picomatch-4.0.4
dependabot/npm_and_yarn/backend/picomatch-2.3.2
dependabot/npm_and_yarn/frontend/yaml-1.10.3
dependabot/npm_and_yarn/test/flatted-3.4.2
dependabot/npm_and_yarn/test/tar-7.5.11
dependabot/npm_and_yarn/frontend/immutable-5.1.5
master
dependabot/npm_and_yarn/test/glob-10.5.0
dependabot/npm_and_yarn/frontend/mdast-util-to-hast-13.2.1
dependabot/npm_and_yarn/test/form-data-4.0.4
v3-abandoned
bump-freedns
openidc
ssl-passthrough-hosts
static-content
v2.14.0
v2.13.7
v2.13.6
v2.13.5
v2.13.4
v2.13.3
v2.13.2
v2.13.1
v2.13.0
v2.12.6
v2.12.5
v2.12.4
v2.12.3
v2.12.2
v2.12.1
v2.12.0
v2.11.3
v2.11.2
v2.11.1
v2.11.0
v2.10.4
v2.10.3
v2.10.2
v2.10.1
v2.10.0
v2.9.22
v2.9.21
v2.9.20
v2.9.19
v2.9.18
v2.9.17
v2.9.16
v2.9.15
v2.9.14
v2.9.13
v2.9.12
v2.9.11
v2.9.10
v2.9.9
v2.9.8
v2.9.7
v2.9.6
v2.9.5
v2.9.4
v2.9.3
v2.9.2
v2.9.1
v2.9.0
v2.8.1
v2.8.0
v2.7.3
v2.7.2
v2.7.1
v2.7.0
v2.6.2
v2.6.1
v2.6.0
v2.5.0
v2.4.0
v2.3.1
v2.3.0
v2.2.4
v2.2.3
v2.2.2
v2.2.1
v2.2.0
v2.1.2
v2.1.1
v2.1.0
2.0.14
2.0.13
2.0.12
2.0.11
2.0.10
2.0.9
2.0.8
2.0.7
2.0.6
2.0.5
2.0.4
2.0.3
2.0.2
2.0.0
v2.0.0
1.1.2
1.1.1
1.0.1
Labels
Clear labels   
awaiting feedback

   
bug

   
cannot reproduce

   
dns provider request

   
duplicate

   
enhancement

   
enhancement

   
enhancement

   
good first issue

   
help wanted

   
invalid

   
need more info

   
no certbot plugin available

   
product-support

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
stale

   
troll

   
upstream issue

   
v2

   
v2

   
v2

   
v3

   
wontfix
No labels
awaiting feedback
bug
cannot reproduce
dns provider request
duplicate
enhancement
enhancement
enhancement
good first issue
help wanted
invalid
need more info
no certbot plugin available
product-support
pull-request
question
stale
troll
upstream issue
v2
v2
v2
v3
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/nginx-proxy-manager-NginxProxyManager#185
No description provided.