The Hemmelig application is to be used to share encrypted secrets across organizations, or as private users. Hemmelig truly cares about your privacy, and will do everything to stay that way. In this step by step guide I will show you how to install Hemmelig on your Synology NAS using Docker.
Hemmelig v4.1.0 release.This guide works perfectly with the latest
Install Redis using my step by step guide. If you already have Redis installed on your Synology NAS, skip this STEP.
Make sure you have a synology.me Wildcard Certificate. Follow my guide to get a Wildcard Certificate. If you already have a synology.me Wildcard certificate, skip this STEP.
Go to Control Panel / Login Portal / Advanced Tab / click Reverse Proxy. Follow the instructions in the image below.
Now click the “Create” button. Follow the instructions in the image below.
After you click the Create button, the window below will open. Follow the instructions in the image below.
On the General area, set the Reverse Proxy Name description: type in hemmelig. After that, add the following instructions:
On the Reverse Proxy Rules click the Custom Header tab. Click Create and then, from the drop-down menu, click WebSocket. After you click on WebSocket, two Header Names and two Values will be automatically added. Click Save. Follow the instructions in the image below.
Go to Control Panel / Network / Connectivity tab/ Check Enable HTTP/2 then click Apply. Follow the instructions in the image below.
Go to Control Panel / Security / Advanced tab/ Check Enable HTTP Compression then click Apply. Follow the instructions in the image below.
Go to File Station and open the docker folder. Inside the docker folder, create one new folder and name it hemmelig. Follow the instructions in the image below.
Note: Be careful to enter only lowercase, not uppercase letters.
Go to Control Panel / Task Scheduler / Create / Scheduled Task / User-defined script. Follow the instructions in the image below.
Once you click on User-defined script, a new window will open. Follow the instructions below:
- General: In the Task field type in Install Hemmelig. Uncheck the “Enabled” option. Select root User.
- Schedule: Select Run on the following date then select “Do not repeat“.
- Task Settings: Check “Send run details by email“, add your email then copy paste the code below in the Run command area. After that, click OK.
docker run -d --name hemmelig \ -p 3510:3000 \ -e SECRET_MASTER_KEY=MariushostingMariushostingMari13 \ -e SECRET_REDIS_HOST=192.168.1.18 \ -v /volume1/docker/hemmelig:/var/tmp/hemmelig/upload/files \ hemmeligapp/hemmelig
Note: Before you paste the code above in the Run command area below, change the value for SECRET_MASTER_KEY and add your own Secret Master Key. MariushostingMariushostingMari13 is an example for a Secret Master Key Base. You should invent your own Value. Add 32 random characters, both letters and numbers.
Note: Before you paste the code above in the Run command area below, change the value for SECRET_REDIS_HOST and add your own Synology NAS Local LAN IP. 192.168.1.18 is my NAS local LAN IP, you should use your own NAS local LAN IP.
After you click OK on STEP 12 a new warning pop up window will open. Click OK.
After you click OK on STEP 13, select your “Install Hemmelig” Task then click the “Run” tab. You will be asked to run Install Hemmelig – click Yes. Follow the instructions in the image below.
Go back to STEP 1 or you will deal with karma 🙂.
Now open your browser and type in your HTTPS/SSL certificate like this https://hemmelig.yourname.synology.me In my case it’s https://hemmelig.mariushosting.synology.me If everything goes right, you will see the Hemmelig page. Click Sign up. Follow the instructions in the image below.
Add your own email, username and password. Click Sign up. Follow the instructions in the image below.
Click the hemmelig icon to go to the Homepage. Follow the instructions in the image below.
Add your own message, title, upload files, choose max views, add a password, restrict an IP or entire CIDR. Choose the message lifetime. Click Create a secret link. Follow the instructions in the image below.
Copy your own link then share the link with your public. Follow the instructions in the image below.
Click View the secret to view the secret message you have previously created at STEP 19. Follow the instructions in the image below.
As you can see in the screenshot below, Hemmelig needs Redis to work. Once you add your own credentials at STEP 17, a new user will be automatically created in your Redis instance. If you forget to install Redis at STEP 2, Hemmelig will not work.
Note: Find out how to update the Hemmelig container with the latest image.
Note: Can I run Docker on my Synology NAS? See the supported models.
Note: How to Free Disk Space on Your NAS if You Run Docker.
Note: How to Schedule Start & Stop For Docker Containers.
Note: How to Activate Email Notifications.
Note: How to Add Access Control Profile on Your NAS.
Note: How to Change Docker Containers Restart Policy.
Note: How to Use Docker Containers With VPN.
Note: Convert Docker Run Into Docker Compose.
Note: How to Clean Docker.
Note: How to Clean Docker Automatically.
Note: Best Practices When Using Docker and DDNS.
Note: Some Docker Containers Need WebSocket.
This post was updated on Sunday / September 18th, 2022 at 11:39 AM