Just got my setup working, using onlyoffice integrated in nextcloud. I notice however, that onlyoffice remains unsecured. Any other nextcloud/owncloud instance out there could use it.
What it the usual way to go to prevent this. I’d like that only users of my nextcloud setup can access onlyoffice.
I naively thought that nextcloud onlyoffice app integration would proxy my onlyoffice app, but nope, it gotta be publicly accessible. I did see another user trying to achieve the same, with partial success. Restricting Domain Access to OnlyOffice doc server from nextcloud only