Skip to content
This is a NodeJS reverse proxy that has MFA authentication baked in. Basic as of now, more to come soon.
JavaScript HTML CSS Dockerfile
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Type Name Latest commit message Commit time
Failed to load latest commit information.

HOME Router

A NodeJS reverse proxy with full authentication that has support for MFA applications such as Google Authenticator.

What does HOME Router do?

HOME Router allows for easy proxying of anything and allows you to put a strong authentication system in front of any page (note: NOT for production security, this is mainly for securing development environments). The great part about this reverse proxy is that you do not need to port forward every single application, with this you just open one port (by default, 80) and we'll take care of the rest.

How do I use HOME Router?

  1. Setup your domain
    • HOME Router is based upon subdomains, so you need to configure your DNS to use it properly.
    • First, setup an A name that points to your server, e.g home
    • Next, setup a wildcard A name under the previous subdomain, e.g *.home (or, you can do it on a per-service basis, just make sure you at least have (home here is the main dashboard page) home, auth.home, and unauthed.home (unauthed is a redirect proxy, it may change in the future))

Docker Setup

  1. Pull my Docker container
    • docker pull kentonv/homerouter
  2. (semi-optional) Start a Redis docker container
    • docker run --net=host --name homerouter-redis -d redis redis-server --appendonly yes
  3. (semi-optional) Start a Mongo docker container
    • docker run -d --net=host --name homerouter-mongo -v ~/data:/data/db mongo
  4. Start 'er up!
    • docker run -d --net=host --privileged --name homerouter -e URL={YOUR BASE URL HERE} kentonv/homerouter (the environment variables listed below work here too)
    • NOTE: --privileged is REQUIRED if you are running on Port 80!
  5. Done!

Developer // Not sure how production-ready Docker Compose is Setup

  1. Clone/Download Repo
  2. docker-compose up
  3. Done!

Manual Setup

  1. Clone/Download Repo
  2. Make sure MongoDB and Redis is running
  3. Change the logo if ya want!
  4. Run sudo node .\dashboard\dashboard.js URL={YOUR BASE URL HERE}
    • NOTE: Usually you must run as sudo because it is binding to port 80!
  5. Done!

Really, it's THAT easy! The default login is username admin and password admin. You should immediately reset this and connect to your MFA of choice.

Optional Environment Variables

  1. DASHPORT (8081) - This is to access the Dashboard server
  2. AUTHPORT (8082) - This is to access the Authorization server
  3. DEAUTHEDPORT (8083) - This automatically redirects to Authorization server but is a required server.
  4. PORT (80) - This is the main port for the entire proxy server (what redirects you to everywhere)
  5. PROXYLOGS (false) - Set this to true to have a ton of BUNYAN logs from the Proxy (usually for development / debug only!)

Use Cases

Personally, I use HOME Router on my home network to allow me to access Guacamole, VSCode, and developmental servers while remaining safe and secure. I really like knowing that even if a piece of premade software doesn't already have an authentication system that I can trust HOME Router to handle it for me, while being able to use MFA! It's also pretty nice how it works across applications, so it's all Single Sign On and then cookie-based from there.

Are you using HOME Router? Leave an issue with your use case and I'll add it here!

How can I help out?

The Trello for all upcoming features is here, take a look if you would like!

Also, if you would like to monetarily support the creator, you can do so here:, I appreciate any support, from helping by fixing an issue on here to a little donation, everything helps!

You can’t perform that action at this time.