From bd262257f00fa7244a3bf5d5a5003f8ce2ba4bcc Mon Sep 17 00:00:00 2001
From: OscarSotoSanchez <oscarsotosanchez@gmail.com>
Date: Thu, 30 Apr 2020 11:02:50 +0200
Subject: [PATCH] allowed access proxy added

---
 .../docker/openvidu-docker-compose/.env       | 20 +++++++++++++++++++
 .../docker-compose.yml                        |  2 ++
 2 files changed, 22 insertions(+)

diff --git a/openvidu-server/docker/openvidu-docker-compose/.env b/openvidu-server/docker/openvidu-docker-compose/.env
index e0226ab1..dfdd8318 100644
--- a/openvidu-server/docker/openvidu-docker-compose/.env
+++ b/openvidu-server/docker/openvidu-docker-compose/.env
@@ -39,6 +39,26 @@ LETSENCRYPT_EMAIL=user@example.com
 # SDKs, REST clients and browsers will have to connect to this port
 # HTTPS_PORT=443
 
+# Access restrictions
+# In this section you will be able to restrict the ips from which you can access to
+# Openvidu API and the Administration Panel
+# WARNING! If you touch this configuration you can lose access to the platform from some IPs, 
+# use it carefully.
+
+# This section limits access to the /dashboard and /inspector page. 
+# The form for a single IP or RANGE is:
+# ALLOWED_ACCESS_TO_DASHBOARD=198.51.100.1 and ALLOWED_ACCESS_TO_DASHBOARD=198.51.100.1/24
+# To limit multiple IPs or RANGESs, separate by commas:
+# ALLOWED_ACCESS_TO_DASHBOARD=198.51.100.1, 198.51.100.1/24
+# ALLOWED_ACCESS_TO_DASHBOARD=
+
+# This section limits access to the Openvidu API.
+# The form for a single IP or RANGE is:
+# ALLOWED_ACCESS_TO_RESTAPI=198.51.100.1 and ALLOWED_ACCESS_TO_RESTAPI=198.51.100.1/24
+# To limit multiple IPs or RANGEs, separate by commas:
+# ALLOWED_ACCESS_TO_RESTAPI=198.51.100.1, 198.51.100.1/24
+# ALLOWED_ACCESS_TO_RESTAPI=
+
 # Whether to enable recording module or not
 OPENVIDU_RECORDING=false
 
diff --git a/openvidu-server/docker/openvidu-docker-compose/docker-compose.yml b/openvidu-server/docker/openvidu-docker-compose/docker-compose.yml
index d608958f..0fa31f30 100644
--- a/openvidu-server/docker/openvidu-docker-compose/docker-compose.yml
+++ b/openvidu-server/docker/openvidu-docker-compose/docker-compose.yml
@@ -80,5 +80,7 @@ services:
             - LETSENCRYPT_EMAIL=${LETSENCRYPT_EMAIL}
             - PROXY_HTTP_PORT=${HTTP_PORT:-}
             - PROXY_HTTPS_PORT=${HTTPS_PORT:-}
+            - ALLOWED_ACCESS_TO_DASHBOARD=${ALLOWED_ACCESS_TO_DASHBOARD:-}
+            - ALLOWED_ACCESS_TO_RESTAPI=${ALLOWED_ACCESS_TO_RESTAPI:-}
             - PROXY_MODE=CE
             - WITH_DEMOS=true