The Hemmelig application is to be used to share encrypted secrets across organizations, or as private users. Hemmelig truly cares about your privacy, and will do everything to stay that way. In this step by step guide I will show you how to install Hemmelig on your Synology NAS using Docker.
This guide works perfectly with the latest Hemmelig v5.10.2 release.
STEP 1
Please Support My work by Making a Donation.
STEP 2
Install Redis using my step by step guide. If you already have Redis installed on your Synology NAS, skip this STEP.
STEP 3
Make sure you have a synology.me Wildcard Certificate. Follow my guide to get a Wildcard Certificate. If you already have a synology.me Wildcard certificate, skip this STEP.
STEP 4
Go to Control Panel / Login Portal / Advanced Tab / click Reverse Proxy. Follow the instructions in the image below.
STEP 5
Now click the “Create” button. Follow the instructions in the image below.
STEP 6
After you click the Create button, the window below will open. Follow the instructions in the image below.
On the General area, set the Reverse Proxy Name description: type in hemmelig. After that, add the following instructions:
Source:
Protocol:Â HTTPS
Hostname: hemmelig.yourname.synology.me
Port:Â 443
Check Enable HSTS
Destination:
Protocol:Â HTTP
Hostname:Â localhost
Port:Â 3510
STEP 7
On the Reverse Proxy Rules click the Custom Header tab. Click Create and then, from the drop-down menu, click WebSocket. After you click on WebSocket, two Header Names and two Values will be automatically added. Click Save. Follow the instructions in the image below.
STEP 8
Go to Control Panel / Network / Connectivity tab/ Check Enable HTTP/2 then click Apply. Follow the instructions in the image below.
STEP 9
Go to Control Panel / Security / Advanced tab/ Check Enable HTTP Compression then click Apply. Follow the instructions in the image below.
STEP 10
Go to File Station and open the docker folder. Inside the docker folder, create one new folder and name it hemmelig. Follow the instructions in the image below.
Note: Be careful to enter only lowercase, not uppercase letters.
STEP 11
Go to Control Panel / Task Scheduler / Create / Scheduled Task / User-defined script. Follow the instructions in the image below.
STEP 12
Once you click on User-defined script, a new window will open. Follow the instructions below:
- General: In the Task field type in Install Hemmelig. Uncheck the “Enabled” option. Select root User.
- Schedule: Select Run on the following date then select “Do not repeat“.
- Task Settings: Check “Send run details by email“, add your email then copy paste the code below in the Run command area. After that, click OK.
docker run -d --name hemmelig \ -p 3510:3000 \ -e SECRET_MASTER_KEY=MariushostingMariushostingMari13 \ -e SECRET_REDIS_HOST=192.168.1.18 \ -v /volume1/docker/hemmelig:/var/tmp/hemmelig/upload/files \ hemmeligapp/hemmelig
Note: Before you paste the code above in the Run command area below, change the value for SECRET_MASTER_KEY and add your own Secret Master Key. MariushostingMariushostingMari13 is an example for a Secret Master Key Base. You should invent your own Value. Add 32Â random characters, both letters and numbers.
Note: Before you paste the code above in the Run command area below, change the value for SECRET_REDIS_HOSTÂ and add your own Synology NAS Local LAN IP. 192.168.1.18 is my NAS local LAN IP, you should use your own NAS local LAN IP.
STEP 13
After you click OK on STEP 12 a new warning pop up window will open. Click OK.
After you click OK, type in your DSM Password then click Submit. Follow the instructions in the image below.
STEP 14
After you click Submit on STEP 13, select your “Install Hemmelig” Task then click the “Run” tab. You will be asked to run Install Hemmelig – click OK. Follow the instructions in the image below.
STEP 15
Go back to STEP 1 or you will deal with karma 🙂.
STEP 16
Now open your browser and type in your HTTPS/SSL certificate like this https://hemmelig.yourname.synology.me In my case it’s https://hemmelig.mariushosting.synology.me If everything goes right, you will see the Hemmelig page. Click Sign up. Follow the instructions in the image below.
STEP 17
Add your own email, username and password. Click Sign up. Follow the instructions in the image below.
STEP 18
Click the hemmelig icon to go to the Homepage. Follow the instructions in the image below.
STEP 19
Add your own message, title, upload files, choose max views, add a password, restrict an IP or entire CIDR. Choose the message lifetime. Click Create a secret link. Follow the instructions in the image below.
STEP 20
Copy your own link then share the link with your public. Follow the instructions in the image below.
STEP 21
Click View the secret to view the secret message you have previously created at STEP 19. Follow the instructions in the image below.
Enjoy Hemmelig!
As you can see in the screenshot below, Hemmelig needs Redis to work. Once you add your own credentials at STEP 17, a new user will be automatically created in your Redis instance. If you forget to install Redis at STEP 2, Hemmelig will not work.
Note: Find out how to update the Hemmelig container with the latest image.
Note: Can I run Docker on my Synology NAS? See the supported models.
Note: How to Free Disk Space on Your NAS if You Run Docker.
Note: How to Schedule Start & Stop For Docker Containers.
Note: How to Activate Email Notifications.
Note: How to Add Access Control Profile on Your NAS.
Note: How to Change Docker Containers Restart Policy.
Note: How to Use Docker Containers With VPN.
Note: Convert Docker Run Into Docker Compose.
Note: How to Clean Docker.
Note: How to Clean Docker Automatically.
Note: Best Practices When Using Docker and DDNS.
Note: Some Docker Containers Need WebSocket.
Note: Find out the Best NAS Models For Docker.
Note: Activate Gmail SMTP For Docker Containers.
This post was updated on Wednesday / May 10th, 2023 at 2:55 PM