Guides

Domains & SSL

How LoomDeploy handles custom domains and automatic HTTPS with Traefik and Let's Encrypt.

How it works

LoomDeploy uses Traefik as a reverse proxy. Every project is automatically assigned a subdomain and gets a free TLS certificate from Let's Encrypt — no manual configuration needed.

Auto-generated subdomains

When you create a project named api, it is instantly available at:

https://api.yourdomain.com

The certificate is provisioned automatically within seconds using the ACME HTTP-01 challenge.

Custom domains

Custom domain support is on the roadmap and not yet available in v0.1.0.

Custom domain support (e.g. pointing app.myclient.com to a project) is planned for an upcoming release. Follow the GitHub issue for updates.

Certificate renewal

Let's Encrypt certificates expire every 90 days. Traefik renews them automatically — no action required on your part.

Certificates are stored in the acme.json file mounted into the Traefik container.

Troubleshooting SSL

If your domain shows a certificate error:

Check DNS — make sure your domain's A record points to your VPS IP.
Check ports — port 80 and 443 must be open and reachable from the internet.
Check Traefik logs:

Terminal

docker logs traefik --tail 100

Rate limits — Let's Encrypt has a limit of 5 failed certificates per domain per hour. Wait before retrying.

Deployments & Rollbacks

Understand the deployment lifecycle, build logs, and how to roll back.

Team & Roles

Manage team members and understand the permission model in LoomDeploy.