AskDavis/cyphernode
1
0
Fork 0
mirror of https://github.com/AskDavis/cyphernode.git synced 2026-01-01 04:25:58 -08:00
Code Issues Packages Projects Releases Wiki Activity

Started IP whitelist, but defunct because of docker swarm obfuscating real IP

Browse Source
This commit is contained in:
kexkey
2018-10-16 12:55:02 -04:00
parent 2a7ca27600
commit 208d61361c
6 changed files with 42 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
api_auth_docker/README.md
View File

@@ -34,6 +34,19 @@ kapi_id="006";kapi_key="19e121b698014fac638f772c4ff5775a738856bf6cbdef0dc8897105
You can have multiple keys, but be aware that this container has **not** been built to support thousands of API keys! **Cyphernode should be used locally**, not publicly as a service.
## IP Addresses Whitelist (**do not use for now**)
**Docker Swarm obfuscates real client IP, this feature is not ready for now**
You can have an IP whitelist policy, denying everything except the explicit IP addresses you need. Edit ip-whitelist.conf file:
```conf
# Leave commented if you don't want to use IP whitelist
# List of white listed IP addresses...
#allow 45.56.67.78;
#deny all;
```
## SSL
If you already have your certificates and keystores infra, you already know what to do and your can skip this section. Put your files in the bound volume (~/cyphernode-ssl/ see volume path in docker-compose.yml).