defguard---Core
defguard---Core
OficialAplicación Docker from grtgbln's Repository
Visión general
This is the core component of defguard, which may required for the other components to work (gateway, proxy)
Requisitos
Requires a separate Postgres database container. Requires either a separate defguard - Gateway, defguard - Proxy container or openldap container.
Argumentos en tiempo de ejecución
- Interfaz web
http://[IP]:[PORT:8000]/- Red
bridge- Privilegiado
- false
Configuración de plantillas
Container Port: 8000
- Objetivo
- 8000
- Por defecto
- 8000
- Valor
- 8000
Container Port: 50055
- Objetivo
- 50055
- Por defecto
- 50055
- Valor
- 50055
Postgres database host
- Objetivo
- DEFGUARD_DB_HOST
Postgres database port
- Objetivo
- DEFGUARD_DB_PORT
- Por defecto
- 5432
- Valor
- 5432
Postgres database user
- Objetivo
- DEFGUARD_DB_USER
Postgres database password
- Objetivo
- DEFGUARD_DB_PASSWORD
Postgres database name
- Objetivo
- DEFGUARD_DB_NAME
- Por defecto
- defguard
- Valor
- defguard
Used to encrypt private cookies. Run `openssl rand -base64 55 | tr -d '=+/' | tr -d '\n' | cut -c1-64` to generate a random key.
- Objetivo
- DEFGUARD_SECRET_KEY
Used to encrypt user tokens. Run `openssl rand -base64 55 | tr -d '=+/' | tr -d '\n' | cut -c1-64` to generate a random key.
- Objetivo
- DEFGUARD_AUTH_SECRET
Used to encrypt gateway tokens. Run `openssl rand -base64 55 | tr -d '=+/' | tr -d '\n' | cut -c1-64` to generate a random key.
- Objetivo
- DEFGUARD_GATEWAY_SECRET
Used to encrypt YubiBridge tokens. Run `openssl rand -base64 55 | tr -d '=+/' | tr -d '\n' | cut -c1-64` to generate a random key.
- Objetivo
- DEFGUARD_YUBIBRIDGE_SECRET
Publicly-accessible URL of defguard instance.
- Objetivo
- DEFGUARD_URL
- Por defecto
- http://localhost:8000
- Valor
- http://localhost:8000
Default password for the admin user.
- Objetivo
- DEFGUARD_DEFAULT_ADMIN_PASSWORD
- Por defecto
- pass123
- Valor
- pass123
Proxy URL of defguard instance. Delete if not using defguard proxy.
- Objetivo
- DEFGUARD_PROXY_URL
- Por defecto
- http://IP_ADDRESS:50051
- Valor
- http://IP_ADDRESS:50051
Set the domain for auth cookies. By default, it's the domain from DEFGUARD_URL. Must be changed to base URL if you want to use forward auth. Delete if not using defguard proxy.
- Objetivo
- DEFGUARD_COOKIE_DOMAIN
- Por defecto
- localhost
- Valor
- localhost
URL of LDAP server. Delete if not using LDAP.
- Objetivo
- DEFGUARD_LDAP_URL
- Por defecto
- ldap://IP_ADDRESS:1389
- Valor
- ldap://IP_ADDRESS:1389
Bind username for LDAP server. Delete if not using LDAP.
- Objetivo
- DEFGUARD_LDAP_BIND_USERNAME
- Por defecto
- cn=user,ou=users,dc=example,dc=org
- Valor
- cn=user,ou=users,dc=example,dc=org
Bind password for LDAP server. Delete if not using LDAP.
- Objetivo
- DEFGUARD_LDAP_BIND_PASSWORD
- Por defecto
- user
- Valor
- user
User search base for LDAP server. Delete if not using LDAP.
- Objetivo
- DEFGUARD_LDAP_USER_SEARCH_BASE
- Por defecto
- ou=users,dc=example,dc=org
- Valor
- ou=users,dc=example,dc=org
Group search base for LDAP server. Delete if not using LDAP.
- Objetivo
- DEFGUARD_LDAP_GROUP_SEARCH_BASE
- Por defecto
- ou=groups,dc=example,dc=org
- Valor
- ou=groups,dc=example,dc=org
Allow access via HTTP
- Objetivo
- DEFGUARD_COOKIE_INSECURE
- Por defecto
- false|true
Enable Rust backtraces
- Objetivo
- RUST_BACKTRACE
- Por defecto
- 1
Log level
- Objetivo
- DEFGUARD_LOG_LEVEL
- Por defecto
- info|debug
Detalles
ghcr.io/defguard/defguard:latestEjecute defguard---Core en Unraid.
defguard---Core se encuentra en Community Apps para Unraid OS. Explore Unraid para crear un servidor doméstico flexible, un NAS o un laboratorio doméstico.