From fe3cfeff25c19811a3fddc9eb20a9ed160385276 Mon Sep 17 00:00:00 2001 From: Gabriel Augendre Date: Tue, 15 Oct 2024 19:00:21 +0200 Subject: [PATCH] open docker ports on localhost only --- playbooks/apps/files/charasheet/docker-compose.yml | 2 +- playbooks/apps/files/checkout/docker-compose.yml | 2 +- playbooks/apps/files/code/docker-compose.yaml | 2 +- playbooks/apps/files/display/docker-compose.yaml | 2 +- playbooks/apps/files/git/docker-compose.yaml | 4 ++-- playbooks/apps/files/media/docker-compose.yaml | 10 +++++----- playbooks/apps/files/miniflux/docker-compose.yaml | 2 +- playbooks/apps/files/nextcloud-aio/docker-compose.yaml | 2 +- playbooks/apps/files/portainer/docker-compose.yaml | 2 +- playbooks/apps/files/privatebin/docker-compose.yaml | 2 +- playbooks/apps/files/shortener/docker-compose.yaml | 2 +- playbooks/apps/files/test_headers/docker-compose.yaml | 2 +- playbooks/apps/files/wallabag/docker-compose.yaml | 2 +- .../apps/templates/collabora/docker-compose.yaml.j2 | 2 +- .../apps/templates/manuels/docker-compose.yaml.j2 | 2 +- 15 files changed, 20 insertions(+), 20 deletions(-) diff --git a/playbooks/apps/files/charasheet/docker-compose.yml b/playbooks/apps/files/charasheet/docker-compose.yml index eea21e8..4b61a47 100644 --- a/playbooks/apps/files/charasheet/docker-compose.yml +++ b/playbooks/apps/files/charasheet/docker-compose.yml @@ -7,7 +7,7 @@ services: - ./db:/app/db - ./data:/app/data ports: - - "8001:8000" + - "127.0.0.1:8001:8000" user: 1000:1000 restart: always init: true diff --git a/playbooks/apps/files/checkout/docker-compose.yml b/playbooks/apps/files/checkout/docker-compose.yml index b3f7fea..53a1ffa 100644 --- a/playbooks/apps/files/checkout/docker-compose.yml +++ b/playbooks/apps/files/checkout/docker-compose.yml @@ -7,7 +7,7 @@ services: - ./db:/app/db - ./media:/app/media ports: - - "8002:8000" + - "127.0.0.1:8002:8000" restart: always init: true tty: true diff --git a/playbooks/apps/files/code/docker-compose.yaml b/playbooks/apps/files/code/docker-compose.yaml index eb6ffec..aa5be27 100644 --- a/playbooks/apps/files/code/docker-compose.yaml +++ b/playbooks/apps/files/code/docker-compose.yaml @@ -8,4 +8,4 @@ services: mem_limit: 3g cpus: 3 ports: - - "9002:8443" + - "127.0.0.1:9002:8443" diff --git a/playbooks/apps/files/display/docker-compose.yaml b/playbooks/apps/files/display/docker-compose.yaml index bb71a8b..eb6f581 100644 --- a/playbooks/apps/files/display/docker-compose.yaml +++ b/playbooks/apps/files/display/docker-compose.yaml @@ -4,4 +4,4 @@ services: context: sources restart: always ports: - - "9010:80" + - "127.0.0.1:9010:80" diff --git a/playbooks/apps/files/git/docker-compose.yaml b/playbooks/apps/files/git/docker-compose.yaml index 12af912..c3a010f 100644 --- a/playbooks/apps/files/git/docker-compose.yaml +++ b/playbooks/apps/files/git/docker-compose.yaml @@ -8,6 +8,6 @@ services: - /etc/timezone:/etc/timezone:ro - /etc/localtime:/etc/localtime:ro ports: - - "23730:22" - - "8006:3000" + - "127.0.0.1:23730:22" + - "127.0.0.1:8006:3000" mem_limit: 512m diff --git a/playbooks/apps/files/media/docker-compose.yaml b/playbooks/apps/files/media/docker-compose.yaml index e33df27..d8fb1d8 100644 --- a/playbooks/apps/files/media/docker-compose.yaml +++ b/playbooks/apps/files/media/docker-compose.yaml @@ -4,7 +4,7 @@ services: restart: always env_file: plex.env ports: - - "9003:32400" + - "127.0.0.1:9003:32400" # - "32400:32400/tcp" # - "3005:3005/tcp" # - "8324:8324/tcp" @@ -27,7 +27,7 @@ services: - ./data:/data mem_limit: 2g ports: - - "9004:9091" + - "127.0.0.1:9004:9091" sonarr: image: lscr.io/linuxserver/sonarr:latest restart: always @@ -37,7 +37,7 @@ services: - ./data:/data mem_limit: 1g ports: - - "9005:8989" + - "127.0.0.1:9005:8989" prowlarr: image: lscr.io/linuxserver/prowlarr:latest restart: always @@ -46,7 +46,7 @@ services: - ./prowlarr:/config mem_limit: 1g ports: - - "9006:9696" + - "127.0.0.1:9006:9696" radarr: image: lscr.io/linuxserver/radarr:latest restart: always @@ -56,7 +56,7 @@ services: - ./data:/data mem_limit: 1g ports: - - "9007:7878" + - "127.0.0.1:9007:7878" unpackerr: image: golift/unpackerr volumes: diff --git a/playbooks/apps/files/miniflux/docker-compose.yaml b/playbooks/apps/files/miniflux/docker-compose.yaml index 7769a1b..fb16bff 100644 --- a/playbooks/apps/files/miniflux/docker-compose.yaml +++ b/playbooks/apps/files/miniflux/docker-compose.yaml @@ -9,7 +9,7 @@ services: test: ["CMD", "/usr/bin/miniflux", "-healthcheck", "auto"] mem_limit: 512m ports: - - "8008:3298" + - "127.0.0.1:8008:3298" db: image: postgres:15 restart: always diff --git a/playbooks/apps/files/nextcloud-aio/docker-compose.yaml b/playbooks/apps/files/nextcloud-aio/docker-compose.yaml index edd9f31..353ad2e 100644 --- a/playbooks/apps/files/nextcloud-aio/docker-compose.yaml +++ b/playbooks/apps/files/nextcloud-aio/docker-compose.yaml @@ -26,7 +26,7 @@ services: # security_opt: ["label:disable"] # Is needed when using SELinux ports: - - "9011:8080" + - "127.0.0.1:9011:8080" restart: always container_name: nextcloud-aio-mastercontainer init: true diff --git a/playbooks/apps/files/portainer/docker-compose.yaml b/playbooks/apps/files/portainer/docker-compose.yaml index bc6f001..ab4d2dc 100644 --- a/playbooks/apps/files/portainer/docker-compose.yaml +++ b/playbooks/apps/files/portainer/docker-compose.yaml @@ -6,4 +6,4 @@ services: - ./portainer_data:/data - /var/run/docker.sock:/var/run/docker.sock ports: - - "9001:9443" + - "127.0.0.1:9001:9443" diff --git a/playbooks/apps/files/privatebin/docker-compose.yaml b/playbooks/apps/files/privatebin/docker-compose.yaml index 18577e1..bc16771 100644 --- a/playbooks/apps/files/privatebin/docker-compose.yaml +++ b/playbooks/apps/files/privatebin/docker-compose.yaml @@ -9,4 +9,4 @@ services: cpus: 0.5 mem_limit: 150m ports: - - "8010:8080" + - "127.0.0.1:8010:8080" diff --git a/playbooks/apps/files/shortener/docker-compose.yaml b/playbooks/apps/files/shortener/docker-compose.yaml index 818e207..7a7a9d1 100644 --- a/playbooks/apps/files/shortener/docker-compose.yaml +++ b/playbooks/apps/files/shortener/docker-compose.yaml @@ -7,4 +7,4 @@ services: - ./shortener_data:/db mem_limit: 300m ports: - - "8011:8000" + - "127.0.0.1:8011:8000" diff --git a/playbooks/apps/files/test_headers/docker-compose.yaml b/playbooks/apps/files/test_headers/docker-compose.yaml index 65c2e1b..5d52c2f 100644 --- a/playbooks/apps/files/test_headers/docker-compose.yaml +++ b/playbooks/apps/files/test_headers/docker-compose.yaml @@ -5,6 +5,6 @@ services: volumes: - ./:/app ports: - - "9008:8080" + - "127.0.0.1:9008:8080" init: true tty: true diff --git a/playbooks/apps/files/wallabag/docker-compose.yaml b/playbooks/apps/files/wallabag/docker-compose.yaml index 04009fc..73550eb 100644 --- a/playbooks/apps/files/wallabag/docker-compose.yaml +++ b/playbooks/apps/files/wallabag/docker-compose.yaml @@ -7,4 +7,4 @@ services: - ./wallabag_data/data:/var/www/wallabag/data - ./wallabag_data/images:/var/www/wallabag/web/assets/images ports: - - "8009:80" + - "127.0.0.1:8009:80" diff --git a/playbooks/apps/templates/collabora/docker-compose.yaml.j2 b/playbooks/apps/templates/collabora/docker-compose.yaml.j2 index d80d61e..306351f 100644 --- a/playbooks/apps/templates/collabora/docker-compose.yaml.j2 +++ b/playbooks/apps/templates/collabora/docker-compose.yaml.j2 @@ -11,4 +11,4 @@ services: extra_params: '--o:ssl.enable=false --o:ssl.termination=true' mem_limit: 2g ports: - - "8007:9980" + - "127.0.0.1:8007:9980" diff --git a/playbooks/apps/templates/manuels/docker-compose.yaml.j2 b/playbooks/apps/templates/manuels/docker-compose.yaml.j2 index 8faa79b..f5a5cd3 100644 --- a/playbooks/apps/templates/manuels/docker-compose.yaml.j2 +++ b/playbooks/apps/templates/manuels/docker-compose.yaml.j2 @@ -12,7 +12,7 @@ services: tty: true mem_limit: 512m ports: - - "8012:8000" + - "127.0.0.1:8012:8000" db: image: postgres:15 restart: always