I would love this for the app images. Ideally a build which was made today from a git tag and made 10 days ago from the same git tag should result in the same docker image. But currently, it doesn't. I don't know if this is a solved problem for docker. If there's any docs/ideas here, would be good to know.
@nebulon this is something for some "larger" sized organizations. As an example, a client that wants to switch to using cloudron - they have 50 or so users. It would be nice to automate the mailbox creation with initial sync and/or on-going (new users get a new mailbox and so on). Of course, this is mainly for external LDAP / AD.
@jdaviescoates we are discussing options there. It is a bit more complex given that the current pricepoint does not realistically justify hiring support resources for such app related tickets. Afterall we are neither the experts on bugs our users hit within the apps nor do we really want to head into a pure support based business, which obviously would be in our case time-intense and thus requiring an entirely different price tag. Of course a broken app instance has no use to anyone, which is why we are prioritizing such tickets currently.
Trireme, an open-source library curated by Aporeto to provide cryptographic isolation for cloud-native applications. Trireme-lib is a Zero-Trust networking library that makes it possible to setup security policies and segment applications by enforcing end-to-end authentication and authorization without the need for complex control planes or IP/port-centric ACLs and east-west firewalls.
Trireme-lib supports both containers and Linux processes as well user-based activation, and it allows security policy enforcement between any of these entities.
A good tool for Cloudron as well as securing LDAP across machines.