Matrix-Mirrors/ArcticFoxes-Synapse-Docker-Compose
1
0
Fork 0
mirror of https://github.com/ArcticFoxes-net/Synapse-Docker-Compose.git synced 2024-06-26 14:32:07 +00:00
Code Issues Packages Projects Releases Wiki Activity

Comment out postgres security options

Browse Source 
Signed-off-by: Tommy <contact@tommytran.io>
This commit is contained in:
Tommy 2022-10-17 04:37:18 -04:00
parent f9a95fb855
commit f6e3c19df7
No known key found for this signature in database
GPG Key ID: 060B29EB996BD9F2
2 changed files with 12 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
README.md
View File

@ -17,5 +17,6 @@ Matrix Synapse Docker-Compose
5. Tighten the Content Security Policy in `swag/nginx/ssl.conf` to suit your needs
5. Copy the config from https://github.com/matrix-org/pantalaimon to `./pantalaimon/pantalaimon.conf` and edit it accordingly
6. Run `docker-compose up` and make sure nothing errors out. You can use `docker-compose up -d` to start it in the background if you want.
7. Create a user for mjolnir
8. Copy the config from https://github.com/matrix-org/mjolnir/blob/main/config/default.yaml to `./mjolnir/config/production.yaml` and edit it accordingly. If you want Mjolnir to recieve reports instead of Synapse, make it listen on `0.0.0.0:8081`. You will also need to uncomment the approprieate lines in `./swag/nginx/proxy-confs/synapse.subdomain.conf` as well.
7. Uncomment the security options for postgres. Run `docker-compose up -d` again.
8. Create a user for mjolnir
9. Copy the config from https://github.com/matrix-org/mjolnir/blob/main/config/default.yaml to `./mjolnir/config/production.yaml` and edit it accordingly. If you want Mjolnir to recieve reports instead of Synapse, make it listen on `0.0.0.0:8081`. You will also need to uncomment the approprieate lines in `./swag/nginx/proxy-confs/synapse.subdomain.conf` as well.

17
docker-compose.yml
View File

@ -42,16 +42,17 @@ services:
- POSTGRES_INITDB_ARGS=--encoding=UTF-8 --lc-collate=C --lc-ctype=C
volumes:
- ./schemas:/var/lib/postgresql/data:Z
- ./dumps:dumps:Z
networks:
- matrix
user: "70:70"
read_only: true
security_opt:
- no-new-privileges:true
cap_drop:
- ALL
tmpfs:
- /var/run/postgresql:size=50M,mode=0770,uid=70,gid=70,noexec,nosuid,nodev
#user: "70:70"
#read_only: true
#security_opt:
# - no-new-privileges:true
#cap_drop:
# - ALL
#tmpfs:
# - /var/run/postgresql:size=50M,mode=0770,uid=70,gid=70,noexec,nosuid,nodev
element:
image: vectorim/element-web:latest