web3lookat.me
// self-hosted personal tech empire
A fully sovereign digital infrastructure running on a Raspberry Pi 5 —
cloud, communication, monitoring, and more. All self-hosted. All mine.
// what's running
The Full Stack
Every service self-hosted, every domain TLS-secured, all traffic gated by SSO.
Cloud Storage
ownCloud Infinite Scale with WebDAV, file versioning and sharing — your personal Dropbox, zero surveillance.
Single Sign-On
Authelia + Keycloak OIDC — one login unlocks every app with optional 2FA. Zero-trust, all the way down.
Monitoring
Prometheus scrapes every container. Grafana turns raw metrics into beautiful dashboards. Nothing goes unnoticed.
Team Chat
Mattermost for async messaging, Rocket.Chat as backup. Slack? Never heard of it.
Private Mail
Stalwart Mail Server handles SMTP and IMAP. Full email sovereignty with custom domain.
Voice Server
TeamSpeak 3 for crystal-clear voice comms. No Discord spyware, no subscriptions.
Game Servers
V Rising dedicated server running via Wine on ARM. Private multiplayer, no lag-sharing with randoms.
Reverse Proxy
Traefik auto-discovers containers, terminates TLS via Let's Encrypt, and routes every request. Zero manual cert work.
Object Storage
MinIO S3-compatible object store. Buckets for backups, media, and app data — AWS without the AWS bill.
// how it's wired
The Architecture
Request hits Traefik
All traffic enters via Traefik on ports 80/443. HTTP is permanently redirected to HTTPS. TLS terminates here.
Authelia checks auth
ForwardAuth middleware queries Authelia. No valid session? You're redirected to auth.web3lookat.me to prove yourself.
Service responds
Authenticated users reach their container. Every service lives on an isolated Docker network, invisible to the outside.
Ready to enter?
The dashboard is gated by Authelia SSO + Keycloak. If you have credentials, the empire awaits.
Login to Dashboard// auth.web3lookat.me · Authelia + TOTP