NextExplorer

Overview

NextExplorer is a modern, self-hosted web-based file explorer with secure access control and a polished UI. Features include fast previews for images, videos, and PDFs, a built-in code/text editor with syntax highlighting, link-based file sharing (read-only or read-write), ripgrep-powered search across filenames and content, and multiple view modes (grid, list, column). Security is built in with local users and groups, optional OIDC/SSO integration, account lockout policies, and session management. Toggle "Show more settings" for advanced options including OIDC single sign-on, reverse proxy trust, and account lockout configuration.

Runtime arguments

Web UI: http://[IP]:[PORT:3000]
Network: bridge
Shell: bash
Privileged: false

Template configuration

Web UI PortPorttcp

Port for the NextExplorer web interface.

Target: 3000
Default: 3000
Value: 3000

Config PathPathrw

Persistent storage for database, settings, and session data. Do not delete.

Target: /config
Default: /mnt/user/appdata/nextexplorer/config
Value: /mnt/user/appdata/nextexplorer/config

Cache PathPathrw

Thumbnail cache and search indexes. Safe to clear if troubleshooting.

Target: /cache
Default: /mnt/user/appdata/nextexplorer/cache
Value: /mnt/user/appdata/nextexplorer/cache

Data PathPathrw

Root directory to browse. Mounted paths appear as top-level volumes in the UI. Add more by clicking 'Add another Path'.

Target: /mnt/Data
Default: /mnt/user
Value: /mnt/user

PUBLIC_URLVariable

External URL used for cookies, CORS, and callback URLs. Set this to your reverse proxy URL if using one (no trailing slash).

Default: http://[IP]:3000
Value: http://[IP]:3000

Admin EmailVariable

Email for the admin account created on first launch. Only used during initial setup.

Target: AUTH_ADMIN_EMAIL

Admin PasswordVariable

Password for the admin account created on first launch. Only used during initial setup.

Target: AUTH_ADMIN_PASSWORD

Session SecretVariable

Random string (32+ chars) used to sign session cookies. Set a stable value to keep sessions valid across container restarts. Leave blank to auto-generate (sessions reset on restart).

Target: SESSION_SECRET

NODE_ENVVariable

Runtime environment. Leave as production.

Default: production
Value: production

Container PortVariable

Internal container port. Should match the Web UI Port mapping.

Target: PORT
Default: 3000
Value: 3000

Enable OIDCVariable

Set to 'true' to enable OpenID Connect single sign-on. Requires OIDC provider configuration below.

Target: OIDC_ENABLED
Default: false
Value: false

OIDC Client IDVariable

Client ID from your OIDC identity provider (e.g. Authentik, Authelia, Keycloak).

Target: OIDC_CLIENT_ID

OIDC Client SecretVariable

Client secret from your OIDC identity provider.

Target: OIDC_CLIENT_SECRET

OIDC Issuer URLVariable

OIDC issuer/discovery URL from your identity provider (e.g. https://auth.example.com).

Target: OIDC_ISSUER

Trust ProxyVariable

Express trust proxy setting for running behind a reverse proxy. Usually auto-derived from PUBLIC_URL. Set to 'true', a number of hops, or a CIDR range if needed.

Target: TRUST_PROXY

Max Failed LoginsVariable

Number of failed login attempts before the account is temporarily locked.

Target: AUTH_MAX_FAILED
Default: 5
Value: 5

Lockout Duration (minutes)Variable

Duration in minutes that an account stays locked after exceeding failed login attempts.

Target: AUTH_LOCK_MINUTES
Default: 15
Value: 15

Links

Template Docker Hub Project

Details

Repository

nxzai/explorer:latest

Registry

https://hub.docker.com/r/nxzai/explorer

Last Updated2026-04-19

First Seen2026-03-29

Run NextExplorer on Unraid.

NextExplorer is listed in Community Apps for Unraid OS. Explore Unraid to build a flexible home server, NAS, or homelab.

Explore Unraid OS