Enable console over ssh #56
Conversation
|
I've gone through your feedback, and also merged the |
|
I'll get it merged and released for inclusion in the bedrock image. |
Any chance Java can pick this up as well? :) |
|
I was getting wrappers mixed up. The Java edition images is what uses mc-server-runner, so that's what I actually meant 😉. Bedrock image will need a different strategy since it uses just entrypoint-demoter and then directly exec's the bedrock server executable. |
|
I’ve started playing with both projects seeing if I can put the PRs together and do some testing. in principle it should still be possible to bring in mc-server-runner as the wrapper in the bedrock-entry script. Just need to build my changes and do some testing to see if it regresses anything. |
| // directly assign stdout/err to pass through terminal, if applicable | ||
| cmd.Stdout = os.Stdout | ||
| cmd.Stderr = os.Stderr |
There was a problem hiding this comment.
I just realized this was quite important for server types/mods that detect TTY/console in order to render logs with color codes. Will need to make this behavior conditional on the use of remote console.
Purpose
For Bedrock, we don't have access to anything like rcon which would enable the ability to issue save-related commands for the purposes of making backups easier.
On Java, rcon only allows us to issue commands and doesn't let a container like "Bedrockifier" (it supports both Java and Bedrock) listen to the console output to trigger things when an event fires.
In both cases, in order to create a backup container that can fire backups and listen to events like user login/logout, it needs access to console itself of the container. Using
docker attachfrom the backup container is the natural approach here, but in many cases, a user might not have the tech savvy required to configure docker safely for this, or might be using a different container engine like Kubernetes. Configuring docker so thatdocker attachis successful accounts for almost all support issues raised on the Bedrockifier backup container.So the next best approach is to offer some sort of secure access to the console directly.
Approach
This adds support for SSH to mc-server-runner. It uses gliderlabs' package to function, and it has been tested against official SSH clients. It uses the RCON password as the account password, and allows for any username. The username and remote address are logged, as well as any authentication failures for auditing and debugging purposes. Services should use a fixed username to make identifying their service easier in logs. For example, 'bedrockifier' for the Bedrockifier backup container.
In terms of how this would be used: In a bedrock/java container that uses mc-server-runner, the command needs to be passed
-remote-consoleto enable the server. How this is done from the docker-compose YAML is TBD for those projects (env variable such asENABLE_SSH?). Then the user would need to addexpose:to their docker-compose to expose the port to other containers, much like with rcon. This ensures the defaults are as secure as possible.It generates a host key that shares the lifespan of the container on the host. In docker-compose cases, this generally should be adequate as any known_hosts on client containers should have similar lifespans.
Example Log Output
Future Thoughts
The host key is probably the weakest part of this design. An idea would be to put it in the data folder with the rest of the Minecraft content, but it also reduces the security of the key as it exposes it to anyone with read access to the docker volume holding the Minecraft content.