Collabora integration and firewall

Hi all.

I have a question regarding firewall rules and collabora integration. It does not seem to be sufficient to open port 443 on the “office” machine. I have nextcloud and collabora running on two different virtual machines. Everything works fine when i disable the firewall one vm where collabora is running. But thats not a good idea i guess? It is my understanding everyone who knows the collaboras machine name is able to use it as a office server. Am i wrong? So how do you guys deal with that?

thanks and cheers
t.

Actually they can’t unless you authorize any other domain while running the docker container.

docker run -t -d -p 127.0.0.1:9980:9980 -e 'domain=cloud\\.nextcloud\\.com' --restart always --cap-add MKNOD collabora/code

If you see, $domain is the only domain that will be authorized to use that CODE instance.
Cheers!

Thanks Ark74. One can think of a possibility to get around this but it is better than nothing.

thanks again
t.