Discussion - fork question about security | PlexGuide.com

Discussion fork question about security

  • Stop using Chrome! Download the Brave Browser via >>> [Brave.com]
    It's a forked version of Chrome with native ad-blockers and Google's spyware stripped out! Download for Mac, Windows, Android, and Linux!
Welcome to the PlexGuide.com
Serving the Community since 2016!
Register Now

foolio

Experienced
Original poster
Jan 10, 2019
67
27
I do like the new fork method and have a community fork setup. nice to just push to the github and pull menu down right after commit. Question though for some containers that require some sensitive info in the ENV portion of the *.yml i.e. if you want email configured on bitwarden or setup a mariadb container and set the rootpassword in the *.yml as needed.

Github not allowing private forks - Does this new method expose possible security risks? if not cool but the version just before that let us dump .ymls to our our mycontainers folder.

Could both methods funciton simultaneasly i.e. still have access to the mycontainers form the plexguide menu (for us paranoid people) as well as the fork method?

Sorry if this is noob kind of questions but really enjoying my dive in the plexguide world and kind of missing the mycontainers and only publicly publishing what I want to when its ready scenario.
 

Admin9705

Administrator
Project Manager
Jan 17, 2018
5,119
2,064
I heard you can use portainer to accomplish this.
 

foolio

Experienced
Original poster
Jan 10, 2019
67
27
yeah but your yml files seem cleaner (and easier to write) then the json that portainer wants to use
 

foolio

Experienced
Original poster
Jan 10, 2019
67
27
@Admin9705 so maybe I found my workaround for this on my specific containers but want to confirm I understand any yml file I put in the mycontainers folder show up in the core option of the install apps section of plexguide?

If so this allows me to setup env values or customize labels for traefik that may be sensitive and would not be exposed on github forks. Then for those containers if published on community would just need special instructions in the wiki like:
  1. copy custom.yml to /opt/mycontainers directory (cp /opt/community/custom.yml /opt/mycontainers )
  2. Edit the /opt/mycontainers/custom.yml file (sudo nano /opt/mycontainers/custom.yml )
  3. change ENV or LABELS that are sensitive - ctrl x save
  4. sudo plexguide
Deploy custom app like any other app (it will be in option 1 of core apps)


Am I correct in this assumption?

I am mainly asking because I went with a mariadb with nextcloud and there might be some users who would want the same thing and also on bitwarden the smtp server values are ENV and not sure people want to publish thier SMTP logins and values.

I may over complicating something because of my ignorance with docker as well not sure.
 
Assists Greatly with Development Costs

foolio

Experienced
Original poster
Jan 10, 2019
67
27
I answered my own question to this i guess between 8.1.2 and 8.1.5 this ability went away so scratch that. looks like I am just using my own docker-compose.yml and portainer until I figure out how to integrate apps for the community.
 
Thread starter Similar threads Forum Replies Date
S Local / Home 5
pommy VPN & Security 7
A Traefik 4
B Social Chat (NonPG) 6
Datamonkeh Jellyfin 31

Recommend NewsGroups

      Up To a 58% Discount!

Trending