admin/honeyDueAPI
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Split Docker config for dev/prod and fix arch-agnostic builds

Browse Source 
- Dockerfile: use --platform=$BUILDPLATFORM + ARG TARGETARCH instead of
  hardcoded GOARCH=arm64, enabling cross-compilation and native builds
  on both arm64 (M1) and amd64 (prod server)
- docker-compose.yml: rewrite for Docker Swarm — image refs, deploy
  sections, overlay network, no container_name/depends_on conditions,
  DB/Redis ports not exposed externally
- docker-compose.dev.yml: rewrite as self-contained dev compose with
  build targets, container_name, depends_on, dev-safe defaults
- Makefile: switch to docker compose v2, point dev targets at
  docker-compose.dev.yml, add docker-build-prod target
- Delete stale docker/Dockerfile (Go 1.21) and docker/docker-compose.yml

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
treyt
2026-02-24 21:27:35 -06:00
parent 9f8828a503
commit f1e39f90c7
6 changed files with 274 additions and 251 deletions
Download Patch File Download Diff File Expand all files Collapse all files

151
docker-compose.yml
View File

@@ -1,167 +1,178 @@
# Production / Docker Swarm compose file
# Usage:
# docker stack deploy -c docker-compose.yml casera
#
# All env vars must be set in the environment or a .env file.
# No dev-safe defaults — missing vars will fail the deploy.
services:
# PostgreSQL Database
db:
image: postgres:16-alpine
container_name: casera-db
restart: unless-stopped
environment:
POSTGRES_USER: ${POSTGRES_USER:-casera}
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:-casera_dev_password}
POSTGRES_DB: ${POSTGRES_DB:-casera}
POSTGRES_USER: ${POSTGRES_USER}
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}
POSTGRES_DB: ${POSTGRES_DB}
volumes:
- postgres_data:/var/lib/postgresql/data
ports:
- "${DB_PORT:-5433}:5432" # Use 5433 externally to avoid conflicts
# DB port NOT exposed externally — only reachable within overlay network
healthcheck:
test: ["CMD-SHELL", "pg_isready -U ${POSTGRES_USER:-casera} -d ${POSTGRES_DB:-casera}"]
test: ["CMD-SHELL", "pg_isready -U ${POSTGRES_USER} -d ${POSTGRES_DB}"]
interval: 10s
timeout: 5s
retries: 5
deploy:
replicas: 1
restart_policy:
condition: any
delay: 5s
update_config:
parallelism: 1
delay: 10s
networks:
- casera-network
# Redis Cache
redis:
image: redis:7-alpine
container_name: casera-redis
restart: unless-stopped
command: redis-server --appendonly yes
volumes:
- redis_data:/data
ports:
- "${REDIS_PORT:-6379}:6379"
# Redis port NOT exposed externally — only reachable within overlay network
healthcheck:
test: ["CMD", "redis-cli", "ping"]
interval: 10s
timeout: 5s
retries: 5
deploy:
replicas: 1
restart_policy:
condition: any
delay: 5s
networks:
- casera-network
# Casera API
api:
platform: linux/arm64
build:
context: .
target: api
container_name: casera-api
restart: unless-stopped
image: ${REGISTRY:-ghcr.io/treytartt}/casera-api:${TAG:-latest}
ports:
- "${PORT:-8000}:8000"
environment:
# Server
PORT: "8000"
DEBUG: "${DEBUG:-false}"
ALLOWED_HOSTS: "${ALLOWED_HOSTS:-localhost,127.0.0.1}"
ALLOWED_HOSTS: "${ALLOWED_HOSTS}"
TIMEZONE: "${TIMEZONE:-UTC}"
# Database
DB_HOST: db
DB_PORT: "5432"
POSTGRES_USER: ${POSTGRES_USER:-casera}
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:-casera_dev_password}
POSTGRES_DB: ${POSTGRES_DB:-casera}
POSTGRES_USER: ${POSTGRES_USER}
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}
POSTGRES_DB: ${POSTGRES_DB}
DB_SSLMODE: "${DB_SSLMODE:-disable}"
# Redis
REDIS_URL: "redis://redis:6379/0"
# Security
SECRET_KEY: ${SECRET_KEY:-dev-secret-key-change-in-production-min-32-chars}
SECRET_KEY: ${SECRET_KEY}
# Email
EMAIL_HOST: ${EMAIL_HOST:-smtp.gmail.com}
EMAIL_HOST: ${EMAIL_HOST}
EMAIL_PORT: ${EMAIL_PORT:-587}
EMAIL_HOST_USER: ${EMAIL_HOST_USER}
EMAIL_HOST_PASSWORD: ${EMAIL_HOST_PASSWORD}
DEFAULT_FROM_EMAIL: ${DEFAULT_FROM_EMAIL:-Casera <noreply@casera.com>}
DEFAULT_FROM_EMAIL: ${DEFAULT_FROM_EMAIL}
EMAIL_USE_TLS: "${EMAIL_USE_TLS:-true}"
# Push Notifications (Direct APNs/FCM - no Gorush)
APNS_AUTH_KEY_PATH: ${APNS_AUTH_KEY_PATH}
# Push Notifications
APNS_AUTH_KEY_PATH: "/certs/apns_key.p8"
APNS_AUTH_KEY_ID: ${APNS_AUTH_KEY_ID}
APNS_TEAM_ID: ${APNS_TEAM_ID}
APNS_TOPIC: ${APNS_TOPIC:-com.example.casera}
APNS_USE_SANDBOX: "${APNS_USE_SANDBOX:-true}"
APNS_TOPIC: ${APNS_TOPIC}
APNS_USE_SANDBOX: "${APNS_USE_SANDBOX:-false}"
FCM_SERVER_KEY: ${FCM_SERVER_KEY}
volumes:
- ./push_certs:/certs:ro
- ./uploads:/app/uploads
depends_on:
db:
condition: service_healthy
redis:
condition: service_healthy
- push_certs:/certs:ro
- uploads:/app/uploads
# TODO: migrate secrets to Docker secrets (docker secret create)
healthcheck:
test: ["CMD", "wget", "--no-verbose", "--tries=1", "--spider", "http://localhost:8000/api/health/"]
test: ["CMD", "curl", "-f", "http://127.0.0.1:8000/api/health/"]
interval: 30s
timeout: 10s
start_period: 15s
retries: 3
deploy:
replicas: 1
restart_policy:
condition: any
delay: 5s
update_config:
parallelism: 1
delay: 10s
order: start-first
networks:
- casera-network
# Casera Admin Panel (Next.js)
admin:
platform: linux/arm64
build:
context: .
target: admin
container_name: casera-admin
restart: unless-stopped
image: ${REGISTRY:-ghcr.io/treytartt}/casera-admin:${TAG:-latest}
ports:
- "${ADMIN_PORT:-3000}:3000"
environment:
PORT: "3000"
HOSTNAME: "0.0.0.0"
NEXT_PUBLIC_API_URL: "${NEXT_PUBLIC_API_URL:-http://api:8000}"
depends_on:
api:
condition: service_healthy
NEXT_PUBLIC_API_URL: "${NEXT_PUBLIC_API_URL}"
healthcheck:
test: ["CMD", "wget", "--no-verbose", "--tries=1", "--spider", "http://127.0.0.1:3000/admin/"]
interval: 30s
timeout: 10s
retries: 3
deploy:
replicas: 1
restart_policy:
condition: any
delay: 5s
update_config:
parallelism: 1
delay: 10s
order: start-first
networks:
- casera-network
# Casera Worker (Background Jobs)
worker:
platform: linux/arm64
build:
context: .
target: worker
container_name: casera-worker
restart: unless-stopped
image: ${REGISTRY:-ghcr.io/treytartt}/casera-worker:${TAG:-latest}
environment:
# Database
DB_HOST: db
DB_PORT: "5432"
POSTGRES_USER: ${POSTGRES_USER:-casera}
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:-casera_dev_password}
POSTGRES_DB: ${POSTGRES_DB:-casera}
POSTGRES_USER: ${POSTGRES_USER}
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}
POSTGRES_DB: ${POSTGRES_DB}
DB_SSLMODE: "${DB_SSLMODE:-disable}"
# Redis
REDIS_URL: "redis://redis:6379/0"
# Security
SECRET_KEY: ${SECRET_KEY:-dev-secret-key-change-in-production-min-32-chars}
SECRET_KEY: ${SECRET_KEY}
# Push Notifications (Direct APNs/FCM - no Gorush)
# Push Notifications
APNS_AUTH_KEY_PATH: "/certs/apns_key.p8"
APNS_AUTH_KEY_ID: ${APNS_AUTH_KEY_ID}
APNS_TEAM_ID: ${APNS_TEAM_ID}
APNS_TOPIC: ${APNS_TOPIC:-com.example.casera}
APNS_USE_SANDBOX: "${APNS_USE_SANDBOX:-true}"
APNS_TOPIC: ${APNS_TOPIC}
APNS_USE_SANDBOX: "${APNS_USE_SANDBOX:-false}"
FCM_SERVER_KEY: ${FCM_SERVER_KEY}
# Email
EMAIL_HOST: ${EMAIL_HOST:-smtp.gmail.com}
EMAIL_HOST: ${EMAIL_HOST}
EMAIL_PORT: ${EMAIL_PORT:-587}
EMAIL_HOST_USER: ${EMAIL_HOST_USER}
EMAIL_HOST_PASSWORD: ${EMAIL_HOST_PASSWORD}
DEFAULT_FROM_EMAIL: ${DEFAULT_FROM_EMAIL:-Casera <noreply@casera.com>}
DEFAULT_FROM_EMAIL: ${DEFAULT_FROM_EMAIL}
EMAIL_USE_TLS: "${EMAIL_USE_TLS:-true}"
# Worker settings (UTC hours for scheduled jobs)
@@ -169,19 +180,21 @@ services:
OVERDUE_REMINDER_HOUR: ${OVERDUE_REMINDER_HOUR:-15}
DAILY_DIGEST_HOUR: ${DAILY_DIGEST_HOUR:-3}
volumes:
- ./push_certs:/certs:ro
depends_on:
db:
condition: service_healthy
redis:
condition: service_healthy
- push_certs:/certs:ro
deploy:
replicas: 1
restart_policy:
condition: any
delay: 5s
networks:
- casera-network
volumes:
postgres_data:
redis_data:
push_certs:
uploads:
networks:
casera-network:
driver: bridge
driver: overlay