Memos
Deploy

Reverse Proxy

Run Memos behind HTTPS with correct forwarded headers and public URLs.

For production, run Memos behind a reverse proxy such as Nginx, Caddy, or Traefik and serve HTTPS.

  • set MEMOS_INSTANCE_URL to the public URL of your instance
  • forward standard proxy headers such as Host, X-Forwarded-Proto, and X-Forwarded-For
  • restrict access to the admin interface as needed
  • make sure the externally visible URL matches what Memos uses for links and cookies

Why this matters

A reverse proxy gives you:

  • TLS termination
  • stable public routing
  • easier integration with existing infrastructure
  • a place to apply access control, logging, and rate limiting

Typical concerns to verify

  • redirects point to the correct external URL
  • public links generated by Memos use the correct hostname
  • cookies and auth flows behave correctly over HTTPS
  • uploaded assets are still accessible through the public route layout

Build From Source

Produce your own Memos build and run it as a deployment.

Configuration

Configure server behavior, storage, authentication, and environment variables.

On this page

Recommended settingsWhy this mattersTypical concerns to verify