Knocker, a knock based access control system for your homelab
6 months ago
- #homelab
- #security
- #SPA
- Knocker is a self-hosted HTTP-based single-packet authorization (SPA) gateway for homelabs.
- It provides web, CLI, and Android clients for knocking (whitelisting IPs).
- Integrates with reverse proxies like Caddy and firewalls via FirewallD.
- Keeps services private, opening them on-demand for authorized IPs only.
- Supports API key authentication, configurable TTL, and remote whitelisting.
- Includes static IP/CIDR whitelisting and path-based exclusions.
- Full IPv6 and IPv4 support, with optional Firewalld integration for advanced rules.
- Deployable via Docker containers with support for AMD64, ARMv8, and ARMv7.
- Features Knocker-Web (PWA), Knocker-CLI (Go), and Knocker-EXPO (Android).
- Includes detailed configuration for Caddy and FirewallD integration.