diff --git a/.env.example b/.env.example index 5e725cb..2bdf9b6 100644 --- a/.env.example +++ b/.env.example @@ -340,3 +340,13 @@ KC_DB_PASSWORD= # This matches the default user inside the container and avoids permission issues when accessing files. # Leaving it default stores data in docker internal volumes. #RADICALE_DATA_DIR=/your/local/radicale/data + +### Banned Password List Settings ### +# By default OpenCloud use this: +# OC_PASSWORD_POLICY_BANNED_PASSWORDS_LIST: banned-password-list.txt +# from here: https://raw.githubusercontent.com/opencloud-eu/opencloud-compose/refs/heads/main/config/opencloud/banned-password-list.txt +# ./config/opencloud/banned-password-list.txt:/etc/opencloud/banned-password-list.txt +# +# Here is an example where multiple lists from different sources can be merged into one: +#BANNED_PASSWORDS_URLS=https://raw.githubusercontent.com/opencloud-eu/opencloud-compose/refs/heads/main/config/opencloud/banned-password-list.txt,https://raw.githubusercontent.com/danielmiessler/SecLists/master/Passwords/Common-Credentials/Language-Specific/German_common-password-list.txt +# But it's important that the content of the txt file is formatted exactly the same as in the original OpenCloud banned-password-list.txt! diff --git a/docker-compose.yml b/docker-compose.yml index e43e317..ff7595e 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -12,7 +12,10 @@ services: # run opencloud init to initialize a configuration file with random secrets # it will fail on subsequent runs, because the config file already exists # therefore we ignore the error and then start the opencloud server - command: ["-c", "opencloud init || true; opencloud server"] + command: ["-c", " + [ -n \"$BANNED_PASSWORDS_URLS\" ] && echo \"$BANNED_PASSWORDS_URLS\" | tr ',' '\\n' | xargs -I{} curl -sfL {} | sort -u > /etc/opencloud/banned-password-list.txt; + opencloud init || true; opencloud server + "] environment: # enable services that are not started automatically OC_ADD_RUN_SERVICES: ${START_ADDITIONAL_SERVICES} diff --git a/weboffice/collabora.yml b/weboffice/collabora.yml index c08e8a2..c41c15d 100644 --- a/weboffice/collabora.yml +++ b/weboffice/collabora.yml @@ -48,7 +48,7 @@ services: restart: always collabora: - image: collabora/code:25.04.7.1.1 + image: collabora/code:25.04.8.1.1 # release notes: https://www.collaboraonline.com/release-notes/ networks: opencloud-net: