My Docker container is running fine, and it's given me the install link in the logs. When I go to that link, the "Loading..." message fades in, and then nothing ever happens after.
My setup:
- docker-compose.yml has the following port bindings
- Nginx Proxy Manager has one proxy host (cryptpad.home, sandbox.cryptpad.home, docs.domain.tld, docs-sandbox.domain.tld; mapped to 3060; "block common exploits" and "websockets support" both enabled; custom location
/cryptpad_websocket pointed to 3063)
- Exposing it to the internet via a Cloudflare Tunnel with two different "published applications"
Regarding Nginx Proxy manager, I've tried various iterations of having one or two proxy hosts (splitting them up by main/sandbox but both pointing to the same port), adding the custom location of /cryptpad_websocket to port 3063 on one or both proxy hosts, but nothing seems to change as far as the "Loading..." fade-in. Some variations I've tried (with actual custom config as opposed to just mapping that location straight to port 3063 and that being it) took the proxy host offline immediately, and one time it actually completely disabled domain.tld, including for things I'm personally not hosting/aren't connected to my tunnel.
Additionally, and I don't know if this is related to the above reverse proxy config or not, I'm getting some errors on the "Loading..." page itself when I press F12 in my browser.
Content-Security-Policy: The page’s settings blocked an inline script (script-src-elem) from being executed because it violates the following directive: “script-src 'self' resource: https://docs.domain.tld”. Consider using a hash ('sha256-<snip>') or a nonce. utils.js:41:10
Content-Security-Policy: The page’s settings blocked an inline script (script-src-elem) from being executed because it violates the following directive: “script-src 'self' resource: https://docs.domain.tld”. Consider using a hash ('sha256-<snip>') or a nonce. install:22:9
downloadable font: Glyph bbox was incorrect (glyph ids 458) (font-family: "Open Sans" style:normal weight:300 stretch:100 src index:1) source: https://docs.domain.tld/components/open-sans-fontface/fonts/Regular/OpenSans-Regular.woff
Uncaught ReferenceError: AppConfig is not defined
<anonymous> https://docs.domain.tld/customize/application_config.js?ver=2026.2.2-1776113519586:1
application_config.js:1:1
Uncaught TypeError: can't access property "defaultDarkTheme", AppConfig is undefined
The first two are errors, the third is a warning, and the remaining two are errors.
Contents of config.js
module.exports = {
httpUnsafeOrigin: 'https://docs.domain.tld',
httpSafeOrigin: 'https://docs-sandbox.domain.tld',
httpAddress: '::'
}
Contents of application_config.js
AppConfig.loginSalt = "<salt>";
AppConfig.minimumPasswordLength = 10;
Does anyone have thoughts about what might be going wrong? I have a feeling it's something super simple that I'm overlooking, but I have no idea what at this point, as I've been going over it for days now.
