samply/bridgehead
1
0
Fork 0
mirror of https://github.com/samply/bridgehead.git synced 2025-07-12 13:00:21 +02:00
Code Issues Packages Projects Releases Wiki Activity

Set SELinux labels for bind mounts, replace secrets with bind mounts

Browse Source
This commit is contained in:
tobiaskussel
2025-07-03 14:09:01 +00:00
parent 98e0512a61
commit 078c16e8dd
22 changed files with 62 additions and 86 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
minimal/docker-compose.yml
View File

@ -28,6 +28,9 @@ services:
security_opt:
# allow access to the docker socket on systems with SELinux
- "label:type:container_runtime_t"
cap_add:
# Allow binding to ports <1024 without root
- NET_BIND_SERVICE
volumes:
- /etc/bridgehead/traefik-tls:/certs:ro
- ../lib/traefik-configuration/:/configuration:ro