Jabra-Xpress docker-compose in https

515chris · June 27, 2023, 1:44pm

Dear all,
I'm going crazy trying to get Jabra-xpress through Traeffik.
Here is the original docker-compose provided by Jabra. Could you help me change it to https?
Many thanks

Original docker-compose

version: '3.8'

services:

  mongodb:
    image: mongo:latest

  assets:
    image: gnaudio/jabra-xpress-assets:v5.12.06601

  frontend:
    image: gnaudio/jabra-xpress-frontend:v5.0.12201
    environment:
    - "ENDPOINT=http://¤HOST-NAME¤:85"
    ports:
    - "80:80"

  backend:
    image: gnaudio/jabra-xpress-api:v5.0.12201
    environment:
    - "ConnectionStrings:XpressDatabaseSqlServer=¤CONNSTRING¤"
    - "ConnectionStrings:MongoDb=mongodb://mongodb/raw"
    - "DefaultAnalyticsEndpoint=http://¤HOST-NAME¤:88/api/v1/Analytics"
    - "JDODownload=http://assets/"
    - "NetworkEndpoint=http://¤HOST-NAME¤:85"
    - "SDK:fwURL_base=http://¤HOST-NAME¤:82"
    - "SDK:fsURL_base=http://¤HOST-NAME¤:82"
    - "Security:PackageTokens:IssuerKey=¤SET_CUSTOM_VALUE¤"
    - "Security:ClientTokens:IssuerKey=¤SET_CUSTOM_VALUE¤"
    - "Security:TokenProtection:Key=¤SET_CUSTOM_VALUE¤"
    ports:
    - "85:80"
    depends_on:
    - mongodb
    - assets
    - sdkbackend

  sdkbackend:
    image: gnaudio/fds.api:5.1.964
    environment:
    - "Storage:SDKCopyUrl=http://¤HOST-NAME¤:82"
    ports:
    - "82:80"

  analytics:
    image: gnaudio/jabra-xpress-analytics:v5.0.12201
    environment:
    - "ConnectionStrings:MongodbServer=mongodb://mongodb/raw"
    - "Security:PackageTokens:IssuerKey=¤SET_CUSTOM_VALUE¤"
    - "Security:ClientTokens:IssuerKey=¤SET_CUSTOM_VALUE¤"
    - "Security:TokenProtection:Key=¤SET_CUSTOM_VALUE¤"
    ports:
    - "88:80"
    depends_on:
    - mongodb

  analytics-cron:
    image: gnaudio/jabra-xpress-analytics-cron:v5.0.12201
    environment:
    - "MONGODBCONNECTIONSTRING=mongodb://mongodb/raw"
    depends_on:
    - mongodb

bluepuma77 · June 27, 2023, 5:28pm

The original docker-compose.yml has a lot of open ports. You should just place all the services on a Docker network and not expose the ports externally.

If you want to use https with the service, check if Traefik can terminate TLS/SSL and you can use your service with http. Not sure if there are any special needs of your application to enable this scenario.