saibotk-de/infrastructure
saibotk-de/infrastructure
1
0
Fork 0
Code Issues Pull requests Releases 42 Activity

minecraft: add no-new-privileges and only enable rcon when web is active

Browse source
This commit is contained in:
saibotk 2021-11-30 21:01:45 +01:00
parent fd9616ddbc
commit 84aca4fd3b
Signed by: saibotk
GPG key ID: 67585F0065E261D5
1 changed files with 3 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
roles/minecraft/templates/docker-compose.yml
View file

@ -29,9 +29,11 @@ services:
{% endfor %} {% endfor %}
volumes: volumes:
- "{{ minecraft_data_location }}:/data" - "{{ minecraft_data_location }}:/data"
security_opt:
- no-new-privileges
environment: environment:
EULA: "TRUE" EULA: "TRUE"
ENABLE_RCON: "true" ENABLE_RCON: "{{ minecraft_enable_rcon_web | bool | lower }}"
RCON_PASSWORD: "{{ minecraft_rcon_password }}" RCON_PASSWORD: "{{ minecraft_rcon_password }}"
RCON_PORT: 28016 RCON_PORT: 28016
# enable env variable replacement # enable env variable replacement