|
|
@ -39,10 +39,16 @@ defaults
|
|
|
|
backend dockerbackend
|
|
|
|
backend dockerbackend
|
|
|
|
server dockersocket $SOCKET_PATH
|
|
|
|
server dockersocket $SOCKET_PATH
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
backend docker-events
|
|
|
|
|
|
|
|
server dockersocket $SOCKET_PATH
|
|
|
|
|
|
|
|
timeout server 0
|
|
|
|
|
|
|
|
|
|
|
|
frontend dockerfrontend
|
|
|
|
frontend dockerfrontend
|
|
|
|
bind :2375
|
|
|
|
bind :::2375 v4v6
|
|
|
|
http-request deny unless METH_GET || { env(POST) -m bool }
|
|
|
|
http-request deny unless METH_GET || { env(POST) -m bool }
|
|
|
|
http-request allow if { path,url_dec -m reg -i ^(/v[\d\.]+)?/containers/[a-zA-Z0-9_.-]+/((stop)|(restart)|(kill)) } { env(ALLOW_RESTARTS) -m bool }
|
|
|
|
http-request allow if { path,url_dec -m reg -i ^(/v[\d\.]+)?/containers/[a-zA-Z0-9_.-]+/((stop)|(restart)|(kill)) } { env(ALLOW_RESTARTS) -m bool }
|
|
|
|
|
|
|
|
http-request allow if { path,url_dec -m reg -i ^(/v[\d\.]+)?/containers/[a-zA-Z0-9_.-]+/start } { env(ALLOW_START) -m bool }
|
|
|
|
|
|
|
|
http-request allow if { path,url_dec -m reg -i ^(/v[\d\.]+)?/containers/[a-zA-Z0-9_.-]+/stop } { env(ALLOW_STOP) -m bool }
|
|
|
|
http-request allow if { path,url_dec -m reg -i ^(/v[\d\.]+)?/auth } { env(AUTH) -m bool }
|
|
|
|
http-request allow if { path,url_dec -m reg -i ^(/v[\d\.]+)?/auth } { env(AUTH) -m bool }
|
|
|
|
http-request allow if { path,url_dec -m reg -i ^(/v[\d\.]+)?/build } { env(BUILD) -m bool }
|
|
|
|
http-request allow if { path,url_dec -m reg -i ^(/v[\d\.]+)?/build } { env(BUILD) -m bool }
|
|
|
|
http-request allow if { path,url_dec -m reg -i ^(/v[\d\.]+)?/commit } { env(COMMIT) -m bool }
|
|
|
|
http-request allow if { path,url_dec -m reg -i ^(/v[\d\.]+)?/commit } { env(COMMIT) -m bool }
|
|
|
@ -68,3 +74,5 @@ frontend dockerfrontend
|
|
|
|
http-request allow if { path,url_dec -m reg -i ^(/v[\d\.]+)?/volumes } { env(VOLUMES) -m bool }
|
|
|
|
http-request allow if { path,url_dec -m reg -i ^(/v[\d\.]+)?/volumes } { env(VOLUMES) -m bool }
|
|
|
|
http-request deny
|
|
|
|
http-request deny
|
|
|
|
default_backend dockerbackend
|
|
|
|
default_backend dockerbackend
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
use_backend docker-events if { path,url_dec -m reg -i ^(/v[\d\.]+)?/events }
|
|
|
|