orion/HangmanLab.Server.T1
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c5735f31297b55a3eae9d0983825b7031fef6b91
HangmanLab.Server.T1/docker-compose.yml
orion 5e601b1840 fix: chown wizard_config volume to nonroot uid via init sidecar 
The abstract-wizard image runs as nonroot (65532), but the named
volume is created with root:root ownership, causing PUT writes to
harborforge.json to return 500. Add a busybox wizard_init service
that chowns /config to 65532:65532 before wizard starts.
2026-04-15 15:41:02 +00:00

129 lines
3.0 KiB
YAML
Raw Blame History

services:
backend:
image: git.hangman-lab.top/hzhang/hangmanlab-backend:latest
ports:
- "$BACKEND_PORT:$BACKEND_PORT"
env_file:
- .env
depends_on:
- mysql
networks:
- app-network
volumes:
- backend_dump:/app/dump
frontend:
image: git.hangman-lab.top/hzhang/hangmanlab-frontend:latest
ports:
- "$FRONTEND_PORT:80"
env_file:
- .env
depends_on:
- backend
networks:
- app-network
mysql:
image: mysql:8.0
container_name: mysql
ports:
- "$DB_PORT:$DB_PORT"
environment:
MYSQL_ROOT_PASSWORD: ${MYSQL_ROOT_PASSWORD}
MYSQL_DATABASE: ${DB_NAME}
MYSQL_USER: ${DB_USER}
MYSQL_PASSWORD: ${DB_PASSWORD}
volumes:
- mysql_data:/var/lib/mysql
networks:
- app-network
healthcheck:
test: ["CMD", "mysqladmin", "ping", "-h", "localhost", "-p${MYSQL_ROOT_PASSWORD}"]
interval: 10s
timeout: 5s
retries: 5
start_period: 20s
hf_db_init:
image: mysql:8.0
restart: "no"
environment:
MYSQL_HOST: mysql
MYSQL_ROOT_PASSWORD: ${MYSQL_ROOT_PASSWORD}
DB_USER: ${DB_USER}
HF_DB_NAME: ${HF_DB_NAME:-harborforge}
volumes:
- ./mysql-init/10-harborforge.sh:/init/10-harborforge.sh:ro
entrypoint: ["/bin/sh", "/init/10-harborforge.sh"]
depends_on:
mysql:
condition: service_healthy
networks:
- app-network
hf_backend:
image: git.hangman-lab.top/zhi/harborforge-backend:multi-stage
restart: "no"
ports:
- "$HF_BACKEND_PORT:8000"
volumes:
- wizard_config:/config:ro
environment:
CONFIG_DIR: /config
CONFIG_FILE: harborforge.json
SECRET_KEY: ${HF_SECRET_KEY:-change_me_in_production}
LOG_LEVEL: ${HF_LOG_LEVEL:-INFO}
DATABASE_URL: mysql+pymysql://${DB_USER}:${DB_PASSWORD}@mysql:3306/${HF_DB_NAME:-harborforge}
depends_on:
hf_db_init:
condition: service_completed_successfully
networks:
- app-network
wizard_init:
image: busybox:1.36
restart: "no"
user: "0:0"
volumes:
- wizard_config:/config
command: ["sh", "-c", "chown -R 65532:65532 /config"]
wizard:
image: git.hangman-lab.top/nav/abstract-wizard:latest
ports:
- "$WIZARD_PORT:8080"
volumes:
- wizard_config:/config
environment:
CONFIG_DIR: /config
LISTEN_ADDR: "0.0.0.0:8080"
MAX_BACKUPS: "5"
CORS_ORIGINS: ${HF_FRONTEND_HOST}
depends_on:
wizard_init:
condition: service_completed_successfully
networks:
- app-network
hf_frontend:
image: git.hangman-lab.top/zhi/harborforge-frontend:latest
ports:
- "$HF_FRONTEND_PORT:3000"
environment:
FRONTEND_DEV_MODE: ${HF_FRONTEND_DEV_MODE:-0}
NODE_ENV: production
depends_on:
- wizard
- hf_backend
networks:
- app-network
networks:
app-network:
driver: bridge
volumes:
mysql_data:
backend_dump:
wizard_config:
Reference in New Issue View Git Blame Copy Permalink