Self-Hosting

Flapjack is a single binary with no external dependencies. Run it anywhere — bare metal, Docker, Kubernetes, or a $5/mo VPS.

Docker (recommended)

docker run -d \
  --name flapjack \
  -p 7700:7700 \
  -e FLAPJACK_ADMIN_KEY=your-secret-key \
  -v flapjack-data:/var/lib/flapjack \
  --restart unless-stopped \
  ghcr.io/flapjack-search/flapjack

This starts Flapjack on port 7700 with persistent data storage.

Binary download

Download the binary for your platform:

# Linux ARM64 (AWS Graviton, Raspberry Pi, etc.)
curl -fSL -o flapjack https://github.com/flapjack-search/flapjack/releases/latest/download/flapjack-linux-arm64

# Linux x86_64
curl -fSL -o flapjack https://github.com/flapjack-search/flapjack/releases/latest/download/flapjack-linux-amd64

# macOS ARM64 (Apple Silicon)
curl -fSL -o flapjack https://github.com/flapjack-search/flapjack/releases/latest/download/flapjack-darwin-arm64

chmod +x flapjack

Run it:

FLAPJACK_ADMIN_KEY=your-secret-key \
  ./flapjack --data-dir /var/lib/flapjack --bind-addr 0.0.0.0:7700

Configuration

Flapjack is configured via environment variables:

Variable	Default	Description
`FLAPJACK_ADMIN_KEY`	(required)	API key for write operations
`FLAPJACK_PUBLIC_IP`	—	Public IP for SSL certificate provisioning
`FLAPJACK_SSL_EMAIL`	—	Email for Let’s Encrypt SSL certificates

Command-line flags:

Flag	Default	Description
`--data-dir`	`./data`	Directory for index data
`--bind-addr`	`0.0.0.0:7700`	Address and port to listen on

Systemd service

For production Linux deployments:

[Unit]
Description=Flapjack Search Engine
After=network-online.target
Wants=network-online.target

[Service]
Type=simple
User=flapjack
Environment=FLAPJACK_ADMIN_KEY=your-secret-key
ExecStart=/usr/local/bin/flapjack --data-dir /var/lib/flapjack --bind-addr 0.0.0.0:7700
Restart=always
RestartSec=5

[Install]
WantedBy=multi-user.target

sudo useradd -r -s /bin/false flapjack
sudo mkdir -p /var/lib/flapjack
sudo chown flapjack:flapjack /var/lib/flapjack
sudo systemctl enable --now flapjack

SSL/TLS

Flapjack can automatically provision Let’s Encrypt SSL certificates for IP-based HTTPS:

FLAPJACK_ADMIN_KEY=your-secret-key \
FLAPJACK_PUBLIC_IP=203.0.113.10 \
FLAPJACK_SSL_EMAIL=you@example.com \
  ./flapjack --data-dir /var/lib/flapjack --bind-addr 0.0.0.0:7700

Alternatively, put Flapjack behind a reverse proxy (nginx, Caddy) that handles SSL.

Reverse proxy with Caddy

search.example.com {
    reverse_proxy localhost:7700
}

Health check

curl http://localhost:7700/health

Returns 200 OK when Flapjack is ready to serve requests.

Backups

Flapjack stores all data in the --data-dir directory. To back up:

# Stop Flapjack (or use filesystem snapshots)
sudo systemctl stop flapjack
tar -czf flapjack-backup-$(date +%Y%m%d).tar.gz /var/lib/flapjack
sudo systemctl start flapjack

Resource requirements

Workload	RAM	Disk	CPU
Small (< 100K documents)	512 MB	1 GB	1 vCPU
Medium (100K–1M documents)	2 GB	10 GB	2 vCPUs
Large (1M–10M documents)	8 GB	50 GB	4 vCPUs

Flapjack is built on Rust and Tantivy, so it’s efficient with resources. Start small and scale up as needed.