Quick Start

This guide gets you running locally in about 5 minutes using mock services. You don’t need to configure Google OAuth - the mock OAuth server simulates authentication with test users.

Prerequisites

Make sure you have these installed:

Go 1.22+ - Install Go
Docker & Docker Compose - Install Docker
Bun 1.3+ - Install Bun
mise - Install mise

See System Requirements for detailed installation instructions.

Setup

Clone the repository

git clone https://github.com/DocSpring/rack-gateway.git
cd rack-gateway

Install dependencies

go mod download
cd web && bun install && cd ..

Configure environment

The default configuration uses mock services. Just copy the example file:
Terminal window
```
cp mise.local.toml.example mise.local.toml
```
Start everything
Terminal window
```
task dev
```
This starts:
- Gateway API server at http://localhost:8447
- Web UI at http://localhost:5223
- Mock OAuth server at http://localhost:3345
- Mock Convox API at http://localhost:5443
- PostgreSQL database in Docker

Try It Out

Web UI

Open http://localhost:5223 in your browser
Click “Sign in with Google”
The mock OAuth server shows a user selection screen
Choose a test user:
- admin@example.com - Full access
- deployer@example.com - Deployment permissions
- ops@example.com - Operations permissions
- viewer@example.com - Read-only access
You’ll be redirected to the dashboard

CLI

Login to the gateway
Terminal window
```
./bin/rack-gateway login staging http://localhost:8447
```
Your browser opens to the mock OAuth server. Select a test user.

Run Convox commands

# List apps (from mock Convox)
./bin/rack-gateway apps

# View processes
./bin/rack-gateway ps

# Check rack status
./bin/rack-gateway rack

Set up a convenient alias

alias cg="./bin/rack-gateway"
cg apps
cg ps

What You’re Running

The development environment consists of:

Component	URL	Description
Gateway API	`http://localhost:8447`	Authentication proxy
Web UI	`http://localhost:5223`	Admin interface (Vite dev server)
Mock OAuth	`http://localhost:3345`	Simulates Google OAuth
Mock Convox	`http://localhost:5443`	Simulates Convox rack API
PostgreSQL	`localhost:55432`	Database (in Docker)

Test Users

The mock OAuth server provides four test users with different roles:

Email	Role	Capabilities
admin@example.com	Admin	Full access to everything
deployer@example.com	Deployer	Deploy apps, manage builds and releases
ops@example.com	Ops	Restart apps, manage processes
viewer@example.com	Viewer	Read-only access

Explore the Features

User Management

Login as admin@example.com
Go to Users in the sidebar
View all users and their roles
Try changing a user’s role

API Tokens

Go to API Tokens
Create a new token for CI/CD
Note the token permissions match the user’s role

Audit Logs

Go to Audit Logs
See all actions you’ve taken
Note that secrets are automatically redacted

Account Security

Go to Account Security
Try enrolling a TOTP authenticator
View your active sessions

Run Tests

Verify everything is working:

# Run all tests
task test

# Run linters
task lint

Next Steps

Now that you have Rack Gateway running locally:

Explore the RBAC system
Try the MFA features
Review the audit logs

Troubleshooting

Port already in use

If you see port conflict errors:

# Stop all services
task docker:down

# Restart
task dev

Database connection failed

Ensure Docker is running:

docker ps  # Should show rack-gateway-postgres-1

If the container isn’t running:

task docker:reset
task dev

OAuth redirect issues

Make sure you’re using the mock OAuth server URLs:

Gateway: http://localhost:8447 (not https)
OAuth redirect: http://localhost:8447/api/v1/auth/callback

For more help, see Troubleshooting.