Is your feature request related to a problem? Please describe.
In repository development I use the provided docker-services.yml to start up support services.
These by default bridge service ports to all interfaces which is a security risk.
Describe the solution you'd like
Prefix all bound ports with '127.0.0.1:' to bind them to localhost only.
To disable this (if there is a use case for this), add an option
to the cookiecutter (with the default set to localhost only).
Describe alternatives you've considered
Two service configs could be provided - one for secured development
and one for the scenario in which the ports have to be exposed to the
external world - but this would bring complexity to invenio-cli services
(selector which one to use).
Is your feature request related to a problem? Please describe.
In repository development I use the provided docker-services.yml to start up support services. These by default bridge service ports to all interfaces which is a security risk.
Describe the solution you'd like
Prefix all bound ports with '127.0.0.1:' to bind them to localhost only. To disable this (if there is a use case for this), add an option to the cookiecutter (with the default set to localhost only).
Describe alternatives you've considered
Two service configs could be provided - one for secured development and one for the scenario in which the ports have to be exposed to the external world - but this would bring complexity to
invenio-cli services
(selector which one to use).