orion/HangmanLab.Server.T1
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: chown wizard_config volume to nonroot uid via init sidecar

Browse Source 
The abstract-wizard image runs as nonroot (65532), but the named
volume is created with root:root ownership, causing PUT writes to
harborforge.json to return 500. Add a busybox wizard_init service
that chowns /config to 65532:65532 before wizard starts.
This commit is contained in:
orion
2026-04-15 15:41:02 +00:00
parent 5c10d6d4c2
commit 5e601b1840
1 changed files with 11 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
docker-compose.yml
View File

@@ -80,6 +80,14 @@ services:
networks: networks:
- app-network - app-network
wizard_init:
image: busybox:1.36
restart: "no"
user: "0:0"
volumes:
- wizard_config:/config
command: ["sh", "-c", "chown -R 65532:65532 /config"]
wizard: wizard:
image: git.hangman-lab.top/nav/abstract-wizard:latest image: git.hangman-lab.top/nav/abstract-wizard:latest
ports: ports:
@@ -91,6 +99,9 @@ services:
LISTEN_ADDR: "0.0.0.0:8080" LISTEN_ADDR: "0.0.0.0:8080"
MAX_BACKUPS: "5" MAX_BACKUPS: "5"
CORS_ORIGINS: ${HF_FRONTEND_HOST} CORS_ORIGINS: ${HF_FRONTEND_HOST}
depends_on:
wizard_init:
condition: service_completed_successfully
networks: networks:
- app-network - app-network