DockFlare streamlines Cloudflare Tunnel and Zero Trust Access policy management by leveraging Docker labels for automated configuration and a comprehensive web UI for manual service definition and policy overrides for any rule. It simplifies secure public exposure for both Dockerized and non-Dockerized applications, minimizing direct Cloudflare interaction. DockFlare acts as a dynamic, self-hosted ingress controller, offering persistent, UI-driven control over Access Policies, effectively centralizing your basic access management.
Key features:
- Unified Cloudflare Tunnel Management:
- Automates Tunnel creation/use & cloudflared agent lifecycle (optional internal deployment or external).
- Dynamic Ingress via Docker Labels:
- Auto-configures Tunnel ingress & DNS from Docker labels (e.g., cloudflare.tunnel.hostname, service) by monitoring container events.
- Manual Ingress Rule Management (New!):
- Add & manage public hostnames for non-Docker services (e.g., router, NAS) via Web UI; DockFlare handles Tunnel rules & DNS.
- Versatile Access Policy Control (Docker & Manual):
- Define Cloudflare Access Policies (e.g., bypass, authenticate, custom JSON) via Docker labels; auto-manages Access Applications.
- Web UI to manage/override policies for any rule; UI changes persist, override labels, with revert option & clear indicators.
- Multi-Hostname & Multi-Zone:
- Supports multiple hostnames (unique targets, zones, policies) per Docker container (indexed labels) or manual rule.
- State Persistence & Graceful Deletion:
- Configurable grace period for Docker rule cleanup; persists all managed rules, Access App IDs, & UI overrides in state.json.
- Intelligent Reconciliation:
- Continuously syncs Docker, manual entries, & saved state (respecting UI overrides) with Cloudflare (Tunnel, DNS, Access Apps); shows UI progress.
- Comprehensive Web UI (DaisyUI):
- Dashboard: Tunnel/agent status & controls.
- Unified Rule List: View/manage all rules (Docker & manual) with status, target, Access Policy (Cloudflare links, UI override badges), & delete options.
- Easy Manual Entry: Add non-Docker services via UI.
- Account Tools: View account tunnels/DNS.
- Real-time Logs & Themes: SSE activity logs & multiple UI themes.
- Secure & Robust:
- Content Security Policy (CSP), API retries, and error reporting.
Switzerland
