46 lines
1.4 KiB
YAML
46 lines
1.4 KiB
YAML
########################### SERVICES
|
|
services:
|
|
# Docker Socket Proxy - Security Enchanced Proxy for Docker Socket
|
|
socket-proxy:
|
|
container_name: ${SOCKET_PROXY_CONTAINER_NAME}
|
|
image: ${SOCKET_PROXY_IMAGE}:${SOCKET_PROXY_VERSION}
|
|
# image: ghcr.io/tecnativa/docker-socket-proxy:latest
|
|
restart: ${SOCKET_PROXY_RESTART_POLICY}
|
|
networks:
|
|
socket_proxy:
|
|
ipv4_address: ${SOCKET_PROXY_IP}
|
|
privileged: true
|
|
ports:
|
|
# - "127.0.0.1:2375:2375" # Port 2375 should only ever get exposed to the internal network. When possible use this line.
|
|
# I use the next line instead, as I want portainer to manage multiple docker endpoints within my home network.
|
|
- "2375:2375"
|
|
volumes:
|
|
- "/var/run/docker.sock:/var/run/docker.sock"
|
|
env_file:
|
|
- path: ./socket-proxy.env
|
|
#environment:
|
|
# - LOG_LEVEL=${LOG_LEVEL}
|
|
# - EVENTS=${EVENTS}
|
|
# - PING=${PING}
|
|
# - VERSION=${VERSION}
|
|
# - AUTH=${AUTH}
|
|
# - SECRETS=${SECRETS}
|
|
# - POST=${POST}
|
|
# - BUILD=${BUILD}
|
|
# - COMMIT=${COMMIT}
|
|
# - CONFIGS=${CONFIGS}
|
|
# - CONTAINERS=${CONTAINERS}
|
|
# - DISTRIBUTION=${DISTRIBUTION}
|
|
# - EXEC=${EXEC}
|
|
# - IMAGES=${IMAGES}
|
|
# - INFO=${INFO}
|
|
# - NETWORKS=${NETWORKS}
|
|
# - NODES=${NODES}
|
|
# - PLUGINS=${PLUGINS}
|
|
# - SERVICES=${SERVICES}
|
|
# - SESSION=${SESSION}
|
|
# - SWARM=${SWARM}
|
|
# - SYSTEM=${SYSTEM}
|
|
# - TASKS=${TASKS}
|
|
# - VOLUMES=${VOLUMES}
|