Caddy web server with Tailscale plugin, packaged for pip installation

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for jpcl from gravatar.com jpcl

Unverified details

These details have not been verified by PyPI
Meta
  • License: Apache Software License (Apache-2.0)
  • Author: Jakub Piotr Cłapa
  • Tags caddy , tailscale , web-server , reverse-proxy , vpn
  • Requires: Python >=3.8
Classifiers
Report project as malware

Project description

caddytail

Caddy web server with the Tailscale plugin, packaged for pip installation. Run any Python web app on your tailnet with one command — Flask, FastAPI, Django, or any WSGI/ASGI callable.

Installation

pip install caddytail

Quick Start

Write a normal Flask app — no CaddyTail-specific setup needed:

# app.py
from flask import Flask
from caddytail import get_user

app = Flask(__name__)

@app.get("/")
def index():
    user = get_user()
    return f"Hello, {user.name}!"

Or use any WSGI callable — no framework required:

# app.py
from caddytail import get_user

def app(environ, start_response):
    user = get_user(environ)
    body = f"Hello, {user.name}!" if user else "Not authenticated"
    start_response("200 OK", [("Content-Type", "text/plain")])
    return [body.encode()]

Run it on your tailnet:

caddytail run myapp app:app

That's it. Your app is now available at https://myapp.<tailnet>.ts.net with Tailscale authentication.

CLI

Hostname is always the first positional argument:

# Development — foreground, Ctrl-C kills everything
caddytail run <hostname> <app_ref> [--debug] [--env K=V]

# Production — install as systemd service + tail logs
caddytail install <hostname> <app_ref> [--no-start] [--env K=V]

# Service management
caddytail status <hostname>
caddytail logs <hostname> [-n LINES] [-f]
caddytail restart <hostname>
caddytail uninstall <hostname>

# List all installed services
caddytail list

# Pre-provision Tailscale authentication
caddytail login <hostname> [--auth-key <key>]

# Raw Caddy pass-through
caddytail caddy [args...]

The <app_ref> format is module:variable (like uvicorn), defaulting the variable to app:

  • app:app — import app from app.py
  • myproject.main:application — import application from myproject/main.py
  • app — shorthand for app:app

Static File Server

A built-in WSGI file server is included. No code needed — just point it at a directory:

# Foreground
STATIC_PATH=./public caddytail run myfiles caddytail.fileserver:app

# Install as a systemd service
caddytail install myfiles caddytail.fileserver:app --env STATIC_PATH=/srv/files

STATIC_PATH defaults to . (the working directory). The server provides directory listings and serves index.html when present.

Behavior

  • run — starts Caddy + your app in the foreground. Ctrl-C kills everything. The framework is auto-detected: Flask and FastAPI get framework-specific middleware; generic WSGI apps are served with wsgiref; generic ASGI apps are served with uvicorn.
  • install — writes a systemd unit file (ExecStart = caddytail run ...), enables, starts. If stdout is a tty, automatically tails logs. Ctrl-C stops tailing but leaves the service running.
  • uninstall — stops, disables, and removes the unit file.
  • login — authenticates a Tailscale node ahead of time. If already authenticated, returns immediately. Useful for headless provisioning with --auth-key.
  • caddy — passes all remaining args to the bundled Caddy binary.

Python API

get_user()

Returns a TailscaleUser with .name, .login, .profile_pic:

from caddytail import get_user

# Flask — no arguments needed (uses flask.request automatically)
user = get_user()

# FastAPI / Starlette — pass the Request object
user = get_user(request)

# WSGI — pass the environ dict
user = get_user(environ)

# Django — pass request.META
user = get_user(request.META)

if user:
    print(user.name)        # "John Doe"
    print(user.login)       # "john@example.com"
    print(user.profile_pic) # "https://..."

login_required

Works as both a Flask decorator and a FastAPI Depends() target:

from caddytail import login_required

# Flask
@app.get("/secret")
@login_required
def secret():
    user = get_user()
    return f"Hello, {user.name}!"

# FastAPI
@app.get("/secret")
async def secret(user=Depends(login_required)):
    return {"message": f"Hello, {user.name}!"}

static()

Register static file paths to be served directly by Caddy:

from caddytail import static

static(app, "/assets/*", "./static")
static(app, "/uploads/*", "/var/www/uploads")

The runner picks these up automatically when starting Caddy.

CaddyTail class

For programmatic use (most users should use the CLI runner instead):

from caddytail import CaddyTail

caddy = CaddyTail(app, "myapp", debug=True)
caddy.run()

All ports are auto-allocated. No conflicts when running multiple apps.

Framework Examples

FastAPI

from fastapi import FastAPI, Request, Depends
from caddytail import get_user, login_required

app = FastAPI()

@app.get("/")
async def index(request: Request):
    user = get_user(request)
    return {"message": f"Hello, {user.name}!"}

@app.get("/protected")
async def protected(user=Depends(login_required)):
    return {"message": f"Hello, {user.name}!"}

Django

# views.py
from django.http import HttpResponse
from caddytail import get_user

def index(request):
    user = get_user(request.META)
    return HttpResponse(f"Hello, {user.name}!")

Bare WSGI

from caddytail import get_user

def app(environ, start_response):
    user = get_user(environ)
    body = f"Hello, {user.name}!" if user else "Not authenticated"
    start_response("200 OK", [("Content-Type", "text/plain")])
    return [body.encode()]

ASGI

from caddytail import get_user

async def app(scope, receive, send):
    # For ASGI apps, extract headers from the scope manually
    ...

All examples are run the same way:

caddytail run myapp myproject:app

Supported Platforms

Pre-built wheels are available for:

Platform Architecture
Linux (glibc) x86_64, aarch64
macOS x86_64 (Intel), arm64 (Apple Silicon)
Windows x86_64

Building from Source

git clone https://github.com/jpc/caddytail
cd caddytail

# Install Go and xcaddy
go install github.com/caddyserver/xcaddy/cmd/xcaddy@latest

# Build caddy with the tailscale plugin
xcaddy build --with github.com/tailscale/caddy-tailscale=github.com/jpc/caddy-tailscale@main --output src/caddytail/bin/caddy

# Build the wheel
pip install build
python -m build --wheel

License

This project packages Caddy (Apache 2.0 License) with the Tailscale plugin (BSD 3-Clause License).

Links

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for jpcl from gravatar.com jpcl

Unverified details

These details have not been verified by PyPI
Meta
  • License: Apache Software License (Apache-2.0)
  • Author: Jakub Piotr Cłapa
  • Tags caddy , tailscale , web-server , reverse-proxy , vpn
  • Requires: Python >=3.8
Classifiers

Release history Release notifications | RSS feed

This version

0.7.1

0.7.0

0.6.1

0.6.0

0.5.1

0.5.0

0.4.0

0.3.0

0.2.0

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

caddytail-0.7.1.tar.gz (24.5 kB view details)

Uploaded Source

Built Distributions

If you're not sure about the file name format, learn more about wheel file names.

caddytail-0.7.1-py3-none-win_amd64.whl (22.3 MB view details)

Uploaded Python 3Windows x86-64

caddytail-0.7.1-py3-none-manylinux2014_x86_64.whl (22.1 MB view details)

Uploaded Python 3

caddytail-0.7.1-py3-none-manylinux2014_aarch64.whl (20.1 MB view details)

Uploaded Python 3

caddytail-0.7.1-py3-none-macosx_11_0_arm64.whl (20.7 MB view details)

Uploaded Python 3macOS 11.0+ ARM64

caddytail-0.7.1-py3-none-macosx_10_15_x86_64.whl (22.3 MB view details)

Uploaded Python 3macOS 10.15+ x86-64

File details

Details for the file caddytail-0.7.1.tar.gz.

File metadata

  • Download URL: caddytail-0.7.1.tar.gz
  • Upload date:
  • Size: 24.5 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for caddytail-0.7.1.tar.gz
Algorithm Hash digest
SHA256 b4a74efac5e29b722ab02430271c497c88da173aafe2f787fce82028413bf823
MD5 40f6cb24d5824da06110f089b1594b90
BLAKE2b-256 f9de517f4768fd7c18050042f42413a106ea60da722b93a35d8843438299eb96

See more details on using hashes here.

Provenance

The following attestation bundles were made for caddytail-0.7.1.tar.gz:

Publisher: build.yml on jpc/caddytail

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file caddytail-0.7.1-py3-none-win_amd64.whl.

File metadata

  • Download URL: caddytail-0.7.1-py3-none-win_amd64.whl
  • Upload date:
  • Size: 22.3 MB
  • Tags: Python 3, Windows x86-64
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for caddytail-0.7.1-py3-none-win_amd64.whl
Algorithm Hash digest
SHA256 8556a9b7e25dbfa20fa18c0cc97014881cc69db9b259e784dd1b51d04fa807dd
MD5 ad3ba557b811eb1a66e45757c845afd6
BLAKE2b-256 eafb085ec2a58a9acb12af738e7ea979cff4083df6c7bdba27ddc167e57b8f6a

See more details on using hashes here.

Provenance

The following attestation bundles were made for caddytail-0.7.1-py3-none-win_amd64.whl:

Publisher: build.yml on jpc/caddytail

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file caddytail-0.7.1-py3-none-manylinux2014_x86_64.whl.

File metadata

File hashes

Hashes for caddytail-0.7.1-py3-none-manylinux2014_x86_64.whl
Algorithm Hash digest
SHA256 0a95110b8dbc2856146d1e05918232014c061a2064c927ecc48d14ae3bfc3dc7
MD5 38819d9de22dd29ad5de2b4f165567dc
BLAKE2b-256 cb966b5f800c3b3a3a7b4920c49436cc20ec3aa00a200a53ca436695fa76898b

See more details on using hashes here.

Provenance

The following attestation bundles were made for caddytail-0.7.1-py3-none-manylinux2014_x86_64.whl:

Publisher: build.yml on jpc/caddytail

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file caddytail-0.7.1-py3-none-manylinux2014_aarch64.whl.

File metadata

File hashes

Hashes for caddytail-0.7.1-py3-none-manylinux2014_aarch64.whl
Algorithm Hash digest
SHA256 affd2248f782cf4da50f6461de0f46f2095acd22524c7fb00a6cc6fa9d3c254c
MD5 afb665af6b388abce2532f66166fbb0f
BLAKE2b-256 a2d3295853dcdedd809764a415d41c5d7b8553cb4e4cb864e5f2cc615bd5aedc

See more details on using hashes here.

Provenance

The following attestation bundles were made for caddytail-0.7.1-py3-none-manylinux2014_aarch64.whl:

Publisher: build.yml on jpc/caddytail

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file caddytail-0.7.1-py3-none-macosx_11_0_arm64.whl.

File metadata

File hashes

Hashes for caddytail-0.7.1-py3-none-macosx_11_0_arm64.whl
Algorithm Hash digest
SHA256 17dceba17f6e380797caf74a7e60865175765faf2eeb9cb38edd644537c4c6b3
MD5 9f100e43eed13ebdc239c7035d84273e
BLAKE2b-256 c05638184962bdb73be62cfb7b6b16d2577f6eda19e3e8acbac23a3854de6826

See more details on using hashes here.

Provenance

The following attestation bundles were made for caddytail-0.7.1-py3-none-macosx_11_0_arm64.whl:

Publisher: build.yml on jpc/caddytail

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file caddytail-0.7.1-py3-none-macosx_10_15_x86_64.whl.

File metadata

File hashes

Hashes for caddytail-0.7.1-py3-none-macosx_10_15_x86_64.whl
Algorithm Hash digest
SHA256 6993db666f5ec8afc9542ccb0b53e81c774b0eec19e319eeeb0f15c159a77f3b
MD5 e12e235f61af2c280867bc5ad29c5acb
BLAKE2b-256 992468ad19605d1f803660dc7715284fca85c4ef08e30ce5624d5d0c198a6220

See more details on using hashes here.

Provenance

The following attestation bundles were made for caddytail-0.7.1-py3-none-macosx_10_15_x86_64.whl:

Publisher: build.yml on jpc/caddytail

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page