.gif)
Learn how to set up HTTPS for n8n with easy steps to boost security, enable SSL, and protect your workflows.
Book a call with an Expert
Starting a new venture? Need to upgrade your web app? RapidDev builds application with your growth in mind.
To set up HTTPS for n8n in production, you normally do it by putting n8n behind a real reverse proxy such as Nginx, Traefik, or Caddy. n8n itself does not handle HTTPS termination directly in production. You let the reverse proxy handle SSL certificates (usually via Let’s Encrypt), and the proxy forwards traffic to n8n’s internal port (default 5678). If you use n8n Cloud you don’t need to do anything — HTTPS is built-in.
n8n runs as a Node.js service. Node can serve HTTPS, but in production it’s better to offload HTTPS to a tool designed for it. Reverse proxies like Nginx and Traefik automate certificate renewal, handle TLS securely, and support load balancing, redirects, websockets, etc. This keeps n8n simpler and more stable.
This is the most common production setup. Traefik handles HTTPS with automatic Let’s Encrypt certificates.
Your docker-compose.yml would look like this:
.png)
.png)
version: "3.8"
services:
n8n:
image: n8nio/n8n
environment:
- N8N_HOST=yourdomain.com // The public domain for n8n
- N8N_PORT=5678
- N8N_PROTOCOL=https // Tells n8n its public URL uses https
- WEBHOOK_URL=https://yourdomain.com/
ports:
- "5678:5678" // Internal only; Traefik uses Docker network
networks:
- web
labels:
- "traefik.enable=true"
// Traefik router
- "traefik.http.routers.n8n.rule=Host(`yourdomain.com`)"
- "traefik.http.routers.n8n.entrypoints=websecure"
- "traefik.http.routers.n8n.tls.certresolver=letsencrypt"
// Traefik service
- "traefik.http.services.n8n.loadbalancer.server.port=5678"
traefik:
image: traefik:v2.11
command:
- "--providers.docker=true"
- "--entrypoints.websecure.address=:443"
- "--certificatesresolvers.letsencrypt.acme.httpchallenge=true"
- "--certificatesresolvers.letsencrypt.acme.httpchallenge.entrypoint=web"
- "--certificatesresolvers.letsencrypt.acme.email=admin@yourdomain.com"
- "--certificatesresolvers.letsencrypt.acme.storage=/letsencrypt/acme.json"
ports:
- "80:80"
- "443:443"
volumes:
- "./letsencrypt:/letsencrypt"
- "/var/run/docker.sock:/var/run/docker.sock:ro"
networks:
- web
networks:
web:
external: false
This setup gives you automatic HTTPS, automatic renewals, and production-grade routing.
If you already use Nginx, you can also terminate HTTPS there. This assumes you already have certificates in /etc/letsencrypt/live/yourdomain.com/.
server {
listen 443 ssl;
server_name yourdomain.com;
ssl_certificate /etc/letsencrypt/live/yourdomain.com/fullchain.pem; // Real cert path
ssl_certificate_key /etc/letsencrypt/live/yourdomain.com/privkey.pem;
location / {
proxy_pass http://localhost:5678; // n8n internal port
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto https; // Important for webhooks
}
}
server {
listen 80;
server_name yourdomain.com;
return 301 https://$host$request_uri; // Redirect HTTP → HTTPS
}
Then in n8n’s environment variables:
N8N_HOST=yourdomain.com
N8N_PORT=5678
N8N_PROTOCOL=https
WEBHOOK_URL=https://yourdomain.com/
You don’t configure HTTPS. It’s handled for you automatically.
For local testing you can use a tool like mkcert to generate trusted local certificates, then run a small reverse proxy (Caddy is easiest). But this is not required for production.
The stable and production-proven way to run n8n with HTTPS is to keep n8n on its normal internal port (usually 5678) and put a reverse proxy like Traefik or Nginx in front of it. The proxy handles certificates and exposes the secure HTTPS endpoint, while n8n focuses purely on workflow execution. This avoids TLS complexity in n8n and matches how real production deployments work.
Connect with our team to unlock the full potential of no-code solutions with a no-commitment consultation!
.svg)
When it comes to serving you, we sweat the little things. That’s why our work makes a big impact.
Rapid Dev was an exceptional project management organization and the best development collaborators I've had the pleasure of working with. They do complex work on extremely fast timelines and effectively manage the testing and pre-launch process to deliver the best possible product. I'm extremely impressed with their execution ability.
CPO, Praction - Arkady Sokolov
May 2, 2023
Working with Matt was comparable to having another co-founder on the team, but without the commitment or cost. He has a strategic mindset and willing to change the scope of the project in real time based on the needs of the client. A true strategic thought partner!
Co-Founder, Arc - Donald Muir
Dec 27, 2022
Rapid Dev are 10/10, excellent communicators - the best I've ever encountered in the tech dev space. They always go the extra mile, they genuinely care, they respond quickly, they're flexible, adaptable and their enthusiasm is amazing.
Co-CEO, Grantify - Mat Westergreen-Thorne
Oct 15, 2022
Rapid Dev is an excellent developer for no-code and low-code solutions.
We’ve had great success since launching the platform in November 2023. In a few months, we’ve gained over 1,000 new active users. We’ve also secured several dozen bookings on the platform and seen about 70% new user month-over-month growth since the launch.
Co-Founder, Church Real Estate Marketplace - Emmanuel Brown
May 1, 2024
Matt’s dedication to executing our vision and his commitment to the project deadline were impressive.
This was such a specific project, and Matt really delivered. We worked with a really fast turnaround, and he always delivered. The site was a perfect prop for us!
Production Manager, Media Production Company - Samantha Fekete
Sep 23, 2022