[GH-ISSUE #818] [Feature Request] Use single domain for frontend #514

New issue

Closed

opened 2026-03-02 02:16:57 +03:00 by kerem · 2 comments

kerem commented 2026-03-02 02:16:57 +03:00

Owner

Copy link

Originally created by @NiceGuyIT on GitHub (Nov 22, 2021).
Original GitHub issue: https://github.com/amidaware/tacticalrmm/issues/818

Is your feature request related to a problem? Please describe.
A common problem on Discord stems from the the frontend using the API domain and trying to proxy the API domain. This results in CORS errors, NATS issues among other problems.

Describe the solution you'd like
Use a single domain for the frontend, rmm.example.com, and proxy all API calls to the appropriate backend in nginx.

Describe alternatives you've considered
I have done this for my install.

Additional context
This issue is to gather feedback before working on the PR. I can submit the PR if approved.

This will solve the following issues.

1. CORS errors stemming from improperly configured proxies for the rmm and API domains.
2. NATS and agent offline errors stemming from improperly configured proxies for the API domain.

This will allow the following.

1. The entire frontend can be proxied through Cloudflare or other reverse proxies easily.
2. Ease the support burden of troubleshooting reverse proxy issues.

The following changes are proposed.

1. Change the nginx config to route the API calls to the Django uWSGI service.
2. Change the nginx config to route the websocket to the Django channels daemon.
3. Change web/.env to the rmm.example.com domain for the frontend.
4. Change the deployment URL to use the API domain. I haven't figured out if the instructions are generated on the frontend or backend.
5. Update the install.sh and upgrade.sh scripts accordingly.

Breaking changes.

1. The update script is probably going to be a breaking change if the nginx changes cannot be scripted. This will need to be communicated.

Notes.

1. The API domain is not going to change and this will not affect agents connecting to the API domain.
2. Since the frontend API calls are not grouped under a single path (i.e. /api/), there will be a little extra maintenance burden going forward keeping the nginx config synced with the API calls/paths. I don't know if this can be scripted.

Thoughts? Did I miss anything?

Originally created by @NiceGuyIT on GitHub (Nov 22, 2021). Original GitHub issue: https://github.com/amidaware/tacticalrmm/issues/818 **Is your feature request related to a problem? Please describe.** A common problem on Discord stems from the the frontend using the API domain and trying to proxy the API domain. This results in CORS errors, NATS issues among other problems. **Describe the solution you'd like** Use a single domain for the frontend, `rmm.example.com`, and proxy all API calls to the appropriate backend in nginx. **Describe alternatives you've considered** I have done this for my install. **Additional context** This issue is to gather feedback before working on the PR. I can submit the PR if approved. **This will solve the following issues.** 1. CORS errors stemming from improperly configured proxies for the rmm and API domains. 2. NATS and agent offline errors stemming from improperly configured proxies for the API domain. **This will allow the following.** 1. The entire frontend can be proxied through Cloudflare or other reverse proxies easily. 2. Ease the support burden of troubleshooting reverse proxy issues. **The following changes are proposed.** 1. Change the `nginx` config to route the API calls to the Django uWSGI service. 2. Change the `nginx` config to route the websocket to the Django channels daemon. 3. Change `web/.env` to the `rmm.example.com` domain for the frontend. 4. Change the deployment URL to use the API domain. I haven't figured out if the instructions are generated on the frontend or backend. 5. Update the `install.sh` and `upgrade.sh` scripts accordingly. **Breaking changes.** 1. The update script is probably going to be a breaking change if the nginx changes cannot be scripted. This will need to be communicated. **Notes.** 1. The API domain is not going to change and this will not affect agents connecting to the API domain. 2. Since the frontend API calls are not grouped under a single path (i.e. `/api/`), there will be a little extra maintenance burden going forward keeping the nginx config synced with the API calls/paths. I don't know if this can be scripted. Thoughts? Did I miss anything?

kerem 2026-03-02 02:16:57 +03:00

• closed this issue
• added the
  dev-triage
  label

kerem commented 2026-03-02 02:16:57 +03:00

Author

Owner

Copy link

@wh1te909 commented on GitHub (Nov 23, 2021):

Very early versions of trmm actually were setup this way with a single domain and just proxying everything through nginx. I decided to separate them though to allow more flexibility for deployment, like with separate subdomains you can deploy your frontend to a different server or preferably a CDN since it's just a few static files. I'll let the community discuss this one we can see what people prefer and the pros and cons of each.

<!-- gh-comment-id:977072674 --> @wh1te909 commented on GitHub (Nov 23, 2021): Very early versions of trmm actually were setup this way with a single domain and just proxying everything through nginx. I decided to separate them though to allow more flexibility for deployment, like with separate subdomains you can deploy your frontend to a different server or preferably a CDN since it's just a few static files. I'll let the community discuss this one we can see what people prefer and the pros and cons of each.

kerem commented 2026-03-02 02:16:58 +03:00

Author

Owner

Copy link

@NiceGuyIT commented on GitHub (Dec 1, 2021):

Moving this to a discussion about configuration organization and improvements. I believe with enough configuration options available, a single domain frontend can be optionally configured.

<!-- gh-comment-id:983737397 --> @NiceGuyIT commented on GitHub (Dec 1, 2021): Moving this to a discussion about [configuration organization and improvements](../discussions/836). I believe with enough configuration options available, a single domain frontend can be optionally configured.

kerem referenced this issue 2026-03-14 03:19:27 +03:00

[GH-ISSUE #514] BUG: Tasks not passing value properly #2266

kerem referenced this issue 2026-03-14 03:30:40 +03:00

[GH-ISSUE #568] BUG: Checks not passing value properly #2305

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

develop

master

1.0.0

v1.4.0

v1.3.1

v1.3.0

v1.2.0

v1.1.0

v1.0.0

v0.20.1

v0.20.0

v0.19.4

v0.19.3

v0.19.2

v0.19.1

v0.19.0

v0.18.2

v0.18.1

v0.18.0

v0.17.5

v0.17.4

v0.17.3

v0.17.2

v0.17.1

v0.17.0

v0.16.5

v0.16.4

v0.16.3

v0.16.2

v0.16.1

v0.16.0

v0.15.12

v0.15.11

v0.15.10

v0.15.9

v0.15.8

v0.15.7

v0.15.6

v0.15.5

v0.15.4

v0.15.3

v0.15.2

v0.15.1

v0.15.0

v0.14.8

v0.14.7

v0.14.6

v0.14.5

v0.14.4

v0.14.3

v0.14.2

v0.14.1

v0.14.0

v0.13.4

v0.13.3

v0.13.2

v0.13.1

v0.13.0

v0.12.4

v0.12.3

v0.12.2

v0.12.1

v0.12.0

v0.11.3

v0.11.2

v0.11.1

v0.11.0

v0.10.5

v0.10.4

v0.10.3

v0.10.2

v0.10.1

v0.10.0

v0.9.2

v0.9.1

v0.9.0

v0.8.5

v0.8.4

v0.8.3

v0.8.2

v0.8.1

v0.8.0

v0.7.2

v0.7.1

v0.7.0

v0.6.15

v0.6.14

v0.6.13

v0.6.12

v0.6.11

v0.6.10

v0.6.9

v0.6.8

v0.6.7

v0.6.6

v0.6.5

v0.6.4

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.3

v0.5.2

v0.5.1

v0.5.0

v0.4.32

v0.4.31

v0.4.30

v0.4.29

v0.4.28

v0.4.27

v0.4.26

v0.4.25

v0.4.24

v0.4.23

v0.4.22

v0.4.21

v0.4.20

v0.4.19

v0.4.18

v0.4.17

v0.4.16

v0.4.15

v0.4.14

v0.4.13

v0.4.12

v0.4.11

v0.4.10

v0.4.9

v0.4.8

v0.4.7

v0.4.6

v0.4.5

v0.4.4

v0.4.3

v0.4.2

v0.4.1

v0.4.0

v0.3.3

v0.3.2

v0.3.1

v0.3.0

v0.2.23

v0.2.22

v0.2.21

v0.2.20

v0.2.19

v0.2.18

v0.2.17

v0.2.16

v0.2.15

v0.2.14

v0.2.13

v0.2.12

v0.2.11

v0.2.10

v0.2.9

v0.2.8

v0.2.7

v0.2.6

v0.2.5

v0.2.4

v0.2.3

v0.2.2

v0.2.1

v0.2.0

v0.1.8

v0.1.7

v0.1.6

v0.1.5

v0.1.4

v0.1.3

v0.1.2

v0.1.1

v0.1.0

Labels

Clear labels   

In Process

  

bug

  

bug

  

dev-triage

  

documentation

  

duplicate

  

enhancement

  

fixed

  

good first issue

  

help wanted

  

integration

  

invalid

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

requires agent update

  

security

  

ui tweak

  

wontfix

No labels

In Process

bug

bug

dev-triage

documentation

duplicate

enhancement

fixed

good first issue

help wanted

integration

invalid

pull-request

question

requires agent update

security

ui tweak

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/tacticalrmm#514

No description provided.