Run coturn and redis in readonly

Signed-off-by: Tommy <contact@tommytran.io>
This commit is contained in:
Tommy 2022-11-25 03:06:58 -05:00
parent cf6ad42094
commit e99106e13a
No known key found for this signature in database
GPG Key ID: 060B29EB996BD9F2

View File

@ -9,12 +9,14 @@ services:
- ./ssl:/etc/ssl/certs:Z
network_mode: "host"
user: "65534:65534"
read_only: true
security_opt:
- no-new-privileges:true
cap_drop:
- ALL
cap_add:
- NET_BIND_SERVICE
redis:
image: redis:alpine
container_name: redis
@ -24,19 +26,21 @@ services:
ports:
- "127.0.0.1:6379:6379"
user: "999:1000"
read_only: true
security_opt:
- no-new-privileges:true
cap_drop:
- ALL
acme:
image: neilpang/acme.sh:latest
container_name: acme
restart: unless-stopped
command: daemon
volumes:
- ./acme:/acme.sh
- ./ssl:/ssl
network_mode: "host"
restart: unless-stopped
volumes:
redis: