OpenPanel is a next-generation web hosting control panel built around Docker containers, designed for hosting providers who need multi-tenancy with full user isolation. Unlike traditional panels, each user gets their own dedicated web server (Nginx, Apache, OpenLitespeed), database (MySQL, MariaDB, Percona), PHP versions, Redis, and Varnish — simulating a VPS experience without the overhead. It’s ideal for businesses seeking security, scalability, and automation without relying on cPanel or other proprietary systems.
Built with TypeScript and powered by Caddy, BIND9, and Docker, OpenPanel offers two interfaces: OpenPanel (end-user) and OpenAdmin (admin). It supports Ubuntu, Debian, AlmaLinux, RockyLinux, and CentOS, and integrates with FOSSBilling, WHMCS, and Blesta for billing. Deployment is via a single bash script, with full CLI control through OpenCLI and white-label branding options.
What You Get
- Isolated User Environments - Each user runs in a dedicated Docker container with separate PHP, MySQL, Redis, and web server instances, preventing resource conflicts and improving security.
- Multi-Server Support - Choose from Nginx, Apache, OpenLitespeed, OpenResty, and Varnish per user, with full configuration control over each stack.
- Dedicated Databases - Each user gets their own MySQL, MariaDB, or Percona instance with phpMyAdmin access, eliminating shared database risks.
- OpenCLI Terminal Interface - Over 100 terminal commands to manage users, domains, PHP versions, backups, DNS, WAF, mail queues, and server configs without GUI access.
- cPanel & CyberPanel Import - Seamlessly import existing accounts from cPanel backups and CyberPanel migrations with built-in tools.
- White Label Branding - Customize the UI, colors, domain names, nameservers, and feature access to match your hosting brand without code changes.
- Resource Limiting - Enforce hard limits on CPU, RAM, disk space, inodes, and port speed per user to prevent abuse and ensure fair usage.
- Two-Factor Authentication (2FA) - Enforce 2FA for user and admin logins, with CLI commands to disable or audit 2FA status per account.
- Remote Backups & Scheduling - Configure automated, off-server backups for websites and databases with support for SFTP, SCP, and cloud storage.
- CorazaWAF & ImunifyAV Integration - Built-in web application firewall and antivirus protection that can be managed per domain via CLI or UI.
Common Use Cases
- Running a multi-client VPS hosting business - A hosting provider uses OpenPanel to offer isolated, VPS-like environments to 500+ clients, each with custom PHP versions and databases, while reducing support tickets through user self-management.
- Migrating from cPanel to a modern stack - A web host imports 200+ cPanel accounts into OpenPanel to eliminate licensing fees and gain container-based isolation, PHP version flexibility, and CLI automation.
- Managing a high-security SaaS platform - A SaaS company uses OpenPanel to host customer websites with isolated databases and WAF rules, ensuring compliance and preventing cross-site contamination.
- Offering managed WordPress hosting - A hosting provider deploys OpenPanel to give clients dedicated Nginx + Varnish stacks with PHP 8.2/8.3/8.4 options and automated backups, while blocking access to system-level files.
Under The Hood
Architecture
- Limited abstraction layers with sparse class definitions and unclear separation of concerns
- Absence of dependency injection or service containers, leading to hardcoded component dependencies
- No discernible modularity in directory structure or domain-driven boundaries
- Core components appear monolithic, lacking interface-based contracts or plugin extensibility
- No observable MVC, CQRS, or event-driven patterns despite full-stack tooling
Tech Stack
- Python backend powered by Werkzeug and Jinja2 with Babel for internationalization
- TypeScript frontend built with React, enforcing strict typing and modern module standards
- Lightweight web servers (Caddyfile, OpenLiteSpeed) with automated HTTPS via Let’s Encrypt
- PostgreSQL and MySQL databases with integrated migration and configuration tooling
- Comprehensive security stack including Coraza, Rspamd, Fail2ban, and threat intelligence feeds
- Containerized deployment using runc with automated notifications via shoutrrr, Gotify, and Rocketchat
Code Quality
- Extensive test coverage across data providers with unit, integration, and edge-case scenarios
- Clear modular structure with consistent test patterns and reusable utilities
- Robust type safety enforced throughout hooks, components, and data provider interfaces
- Predictable error handling using framework-level propagation and assertion-based validation
- Consistent naming, linting, and test environment initialization across packages
What Makes It Unique
- Dynamic UI generation from templates eliminates boilerplate and ensures interface consistency
- Deep Refine and Mantine integration enables theme-aware, type-safe component composition
- Rootless Docker configuration provides production-grade security by default
- Unified component exports create a scalable entry point for modular feature expansion
- CLI-driven scaffolding paired with backend orchestration forms a cohesive low-code platform framework