I want to share the walkthrough guide for how I secure access to Vaultwarden (and other self-hosted containerized services) with Tailscale and Caddy.
I like this solution because it strikes a good balance between convenience and security, as well as being easy to manage and it is ridiculously cost-effective, too. You should be able to add any containerized web service to this setup.
It uses the caddy-docker-proxy module, so this article may be of interest to you if you’ve been considering using Caddy as a reverse proxy to containers.
Check it out: Securing access to Vaultwarden with Tailscale and Caddy · Michael Johansson