safer port binding of etherpad docker container

don't bind to any host port if nginx_proxy is used
only bind to localhost if it's not used
This commit is contained in:
Marc Leuser 2021-02-15 10:46:23 +01:00
parent 894679750e
commit 1434c371bd
2 changed files with 3 additions and 1 deletions

View File

@ -765,6 +765,8 @@ matrix_dimension_database_password: "{{ matrix_synapse_macaroon_secret_key | pas
matrix_etherpad_enabled: false matrix_etherpad_enabled: false
matrix_etherpad_container_http_host_bind_port: "{{ '' if matrix_nginx_proxy_enabled else '127.0.0.1:9001' }}"
matrix_etherpad_systemd_required_services_list: | matrix_etherpad_systemd_required_services_list: |
{{ {{
['docker.service'] ['docker.service']

View File

@ -19,7 +19,7 @@ matrix_etherpad_user_gid: '5001'
# Controls whether the matrix-etherpad container exposes its HTTP port (tcp/9001 in the container). # Controls whether the matrix-etherpad container exposes its HTTP port (tcp/9001 in the container).
# #
# Takes an "<ip>:<port>" or "<port>" value (e.g. "127.0.0.1:9001"), or empty string to not expose. # Takes an "<ip>:<port>" or "<port>" value (e.g. "127.0.0.1:9001"), or empty string to not expose.
matrix_etherpad_container_http_host_bind_port: '9001' matrix_etherpad_container_http_host_bind_port: ''
# A list of extra arguments to pass to the container # A list of extra arguments to pass to the container
matrix_etherpad_container_extra_arguments: [] matrix_etherpad_container_extra_arguments: []