coop-cloud/karrot
0
0
Fork 0
Code Issues 4 Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: coop-cloud:4.0.0+17.2.1
Branches Tags
coop-cloud:main coop-cloud:compose-split coop-cloud:change/use-new-docker-images coop-cloud:mail coop-cloud:dev
coop-cloud:4.0.0+17.2.1 coop-cloud:3.2.1+17.2.1 coop-cloud:3.2.0+17.2.0 coop-cloud:3.1.1+17.1.0 coop-cloud:3.1.0+17.1.0 coop-cloud:3.0.0+17.0.0 coop-cloud:2.2.0+16.2.0 coop-cloud:2.1.0+16.1.0 coop-cloud:2.0.1+16.0.0 coop-cloud:2.0.0+16.0.0 coop-cloud:1.4.0+15.2.0 coop-cloud:1.3.0+15.1.1 coop-cloud:1.2.0+15.0.0 coop-cloud:1.1.0+14.1.0 coop-cloud:1.0.0+14.0.1 coop-cloud:0.1.10+13.0.0 coop-cloud:0.1.9+13.0.0 coop-cloud:0.1.8+13.0.0 coop-cloud:0.1.5+0.1.4 coop-cloud:0.1.4+0.1.3 coop-cloud:0.1.3+0.1.3 coop-cloud:0.1.2+0.1.2 coop-cloud:0.1.0+0.1.0
..
compare: coop-cloud:mail
Branches Tags
coop-cloud:main coop-cloud:compose-split coop-cloud:change/use-new-docker-images coop-cloud:mail coop-cloud:dev
coop-cloud:4.0.0+17.2.1 coop-cloud:3.2.1+17.2.1 coop-cloud:3.2.0+17.2.0 coop-cloud:3.1.1+17.1.0 coop-cloud:3.1.0+17.1.0 coop-cloud:3.0.0+17.0.0 coop-cloud:2.2.0+16.2.0 coop-cloud:2.1.0+16.1.0 coop-cloud:2.0.1+16.0.0 coop-cloud:2.0.0+16.0.0 coop-cloud:1.4.0+15.2.0 coop-cloud:1.3.0+15.1.1 coop-cloud:1.2.0+15.0.0 coop-cloud:1.1.0+14.1.0 coop-cloud:1.0.0+14.0.1 coop-cloud:0.1.10+13.0.0 coop-cloud:0.1.9+13.0.0 coop-cloud:0.1.8+13.0.0 coop-cloud:0.1.5+0.1.4 coop-cloud:0.1.4+0.1.3 coop-cloud:0.1.3+0.1.3 coop-cloud:0.1.2+0.1.2 coop-cloud:0.1.0+0.1.0

1 Commits
4.0.0+17.2 ... mail

Author SHA1 Message Date
knoflook
bdea86f282 add mail support 2022-09-29 19:29:02 +02:00
18 changed files with 173 additions and 450 deletions
Expand all files Collapse all files

17
.drone.yml
View File

@ -1,17 +0,0 @@
---
kind: pipeline
name: generate recipe catalogue
steps:
- name: release a new version
image: plugins/downstream
settings:
server: https://build.coopcloud.tech
token:
from_secret: drone_abra-bot_token
fork: true
repositories:
- toolshed/auto-recipes-catalogue-json
trigger:
event: tag

107
.env.sample
View File

@ -1,108 +1,21 @@
TYPE=karrot
# For more information about these options
# see https://docs.karrot.world/self-host/settings
DOMAIN=karrot.example.com
LETS_ENCRYPT_ENV=production
COMPOSE_FILE="compose.yml"
SITE_NAME=karrot dev
SITE_LOGO=https://user-images.githubusercontent.com/31616/36565633-517373a4-1821-11e8-9948-5bf6887c667e.png
FILE_UPLOAD_MAX_SIZE=10m
# Useful to set this, it's a comma separated list of email address.
# Anyone that registers with one of these emails addresses is considered an instance admin
# and will have access to the instance admin UI within Karrot
#ADMIN_EMAILS=
SECRET_DB_PASSWORD_VERSION=v1
SECRET_SECRET_KEY_VERSION=v1
SECRET_SMTP_PASSWORD_VERSION=v1
SECRET_MAXMIND_LICENSE_KEY_VERSION=v1
SECRET_VAPID_PRIVATE_KEY_VERSION=v1
SECRET_LIVEKIT_API_SECRET_VERSION=v1
SECRET_POSTAL_API_KEY_VERSION=v1
# Email
#------------------------------------------------------
# Note: you can also configure this in the admin UI
# Can be: postal, smtp, or console
# postal,smtp,sonsole
EMAIL_BACKEND=console
# SMTP
#-----------------------
# when EMAIL_BACKEND=smtp
# SMTP USER and EMAIL_FROM are usually the same
# make sure to set the smtp_password secret
#COMPOSE_FILE="$COMPOSE_FILE:compose.smtp.yml"
# only set those when using SMTP
#EMAIL_FROM=
#SMTP_USER=
#EMAIL_PASSWORD=
#SMTP_HOST=
#SMTP_USE_SSL=
#SMTP_USE_TLS=true
#SMTP_PORT=587
# Postal
#-----------------------
# when EMAIL_BACKEND=postal
# make sure to set the postal_api_key secret
#COMPOSE_FILE="$COMPOSE_FILE:compose.postal.yml"
#POSTAL_API_URL=
# Postal incoming email
#-----------------------
# If you are using postal for incoming email, set these.
# You can use smtp for outgoing and postal for incoming if you wish!
#POSTAL_WEBHOOK_KEY=
#EMAIL_REPLY_DOMAIN=
# MaxMind GeoIP (optional)
#------------------------------------------------------
#SMTP_USE_SSL=true
#SMTP_PORT=465
# account id for maxmind (for GeoIP)
# uncomment if using maxmind account
# make sure to set the maxmind_license_key secret
MAXMIND_ACCOUNT_ID=
# License key for maxmind
MAXMIND_LICENSE_KEY=
#COMPOSE_FILE="$COMPOSE_FILE:compose.geoip.yml"
#MAXMIND_ACCOUNT_ID=
# Web Push (Vapid) (optional)
#------------------------------------------------------
# Note: you can also configure this in the instance admin UI
# You need to generate a valid vapid keypair
# You can generate one by running:
# docker run --rm codeberg.org/karrot/generate-vapid-keypair
# make sure to set the vapid_private_key secret
#COMPOSE_FILE="$COMPOSE_FILE:compose.vapid.yml"
#VAPID_PUBLIC_KEY=
#VAPID_ADMIN_EMAIL=
# Video calls (optional)
#------------------------------------------------------
# Note: you can also configure this in the admin UI
# make sure to set the livekit_api_secret secret
#COMPOSE_FILE="$COMPOSE_FILE:compose.livekit.yml"
#MEET_LIVEKIT_ENDPOINT=
#MEET_LIVEKIT_API_KEY=
# You probably don't need to touch these
#------------------------------------------------------
SITE_URL=https://${DOMAIN}
LETS_ENCRYPT_ENV=production
CSRF_TRUSTED_ORIGINS=${SITE_URL}
SECRET_DB_PASSWORD_VERSION=v1

31
README.md
View File

@ -1,31 +0,0 @@
# karrot
Karrot is a free and open-source tool for grassroots initiatives and groups of people that want to coordinate face-to-face activities on a local, autonomous and voluntary basis.
<!-- metadata -->
* **Category**: Utilities
* **Status**: 3, stable
* **Image**: [`karrot-frontend`](https://codeberg.org/karrot/-/packages/container/karrot-backend)/[`karrot-frontend`](https://codeberg.org/karrot/-/packages/container/karrot-backend),4,upstream
* **Healthcheck**: Yes
* **Backups**: Yes
* **Email**: Yes
* **Tests**: No
* **SSO**: No
<!-- endmetadata -->
## Basic usage
1. Set up Docker Swarm and [`abra`]
2. `abra app new karrot`
3. `abra app config <karrot app name>`
4. `abra app deploy <karrot app name>`
See [Karrot Self-hosting docs](https://docs.karrot.world/self-host/coop-cloud/getting-started) for more information.
## Configuration options
`MAXMIND_ACCOUNT_ID` and `MAXMIND_ACCOUNT_KEY` are API credentials from maxmind.com. You need an account there to get GeoIP data for Karrot.
[`abra`]: https://git.coopcloud.tech/coop-cloud/abra

19
abra.sh
View File

@ -1,17 +1,2 @@
fix-permissions() {
if [ "$(whoami)" != "root" ]; then
echo "error: you must be root to fix permissions"
echo "Try adding '--user root'"
exit 1
fi
echo "Fixing permissions"
echo "Making karrot the owner of uploads"
chown -R karrot:karrot /app/uploads
echo "Making karrot the owner of plugins"
chown -R karrot:karrot /app/plugins
echo "Done"
}
export NGINX_CONFIG_VERSION=v1
export POSTGRES_ENTRYPOINT_VERSION=v1

13
backend/Dockerfile Normal file
View File

@ -0,0 +1,13 @@
FROM python:3.7-buster
WORKDIR /app
RUN apt-get update && \
apt-get install -y gdal-bin
COPY ./karrot-backend.pyz /app/karrot-backend.pyz
RUN sed -i -e's/ main/ main contrib non-free/g' /etc/apt/sources.list && \
apt-get update && \
apt-get install -y libmaxminddb0 libmaxminddb-dev geoipupdate

BIN
backend/backend.pyz Normal file
View File

Binary file not shown.

BIN
backend/karrot-backend.pyz Normal file
View File

Binary file not shown.

30
compose.geoip.yml
View File

@ -1,30 +0,0 @@
version: "3.8"
services:
app:
volumes:
- "geoip_data:/var/lib/GeoIP"
worker:
volumes:
- "geoip_data:/var/lib/GeoIP"
geoip:
image: "ghcr.io/maxmind/geoipupdate:v6"
volumes:
- "geoip_data:/usr/share/GeoIP"
secrets:
- maxmind_license_key
environment:
- "GEOIPUPDATE_EDITION_IDS=GeoLite2-City GeoLite2-Country"
- "GEOIPUPDATE_ACCOUNT_ID=${MAXMIND_ACCOUNT_ID:-}"
- "GEOIPUPDATE_LICENSE_KEY_FILE=/run/secrets/maxmind_license_key"
- "GEOIPUPDATE_FREQUENCY=72"
secrets:
maxmind_license_key:
external: true
name: ${STACK_NAME}_maxmind_license_key_${SECRET_MAXMIND_LICENSE_KEY_VERSION}
volumes:
geoip_data:

23
compose.livekit.yml
View File

@ -1,23 +0,0 @@
version: "3.8"
services:
app:
secrets:
- livekit_api_secret
environment:
- MEET_LIVEKIT_ENDPOINT
- MEET_LIVEKIT_API_KEY
- MEET_LIVEKIT_API_SECRET_FILE=/run/secrets/livekit_api_secret
worker:
secrets:
- livekit_api_secret
environment:
- MEET_LIVEKIT_ENDPOINT
- MEET_LIVEKIT_API_KEY
- MEET_LIVEKIT_API_SECRET_FILE=/run/secrets/livekit_api_secret
secrets:
livekit_api_secret:
external: true
name: ${STACK_NAME}_livekit_api_secret_${SECRET_LIVEKIT_API_SECRET_VERSION}

21
compose.postal.yml
View File

@ -1,21 +0,0 @@
version: "3.8"
services:
app:
secrets:
- postal_api_key
environment:
- POSTAL_API_KEY_FILE=/run/secrets/postal_api_key
- POSTAL_API_URL
worker:
secrets:
- postal_api_key
environment:
- POSTAL_API_KEY_FILE=/run/secrets/postal_api_key
- POSTAL_API_URL
secrets:
postal_api_key:
external: true
name: ${STACK_NAME}_postal_api_key_${SECRET_POSTAL_API_KEY_VERSION}

29
compose.smtp.yml
View File

@ -1,29 +0,0 @@
version: "3.8"
services:
app:
secrets:
- smtp_password
environment:
- SMTP_HOST
- SMTP_PASSWORD_FILE=/run/secrets/smtp_password
- SMTP_PORT
- SMTP_USE_SSL
- SMTP_USE_TLS
- SMTP_USER
worker:
secrets:
- smtp_password
environment:
- SMTP_HOST
- SMTP_PASSWORD_FILE=/run/secrets/smtp_password
- SMTP_PORT
- SMTP_USE_SSL
- SMTP_USE_TLS
- SMTP_USER
secrets:
smtp_password:
external: true
name: ${STACK_NAME}_smtp_password_${SECRET_SMTP_PASSWORD_VERSION}

23
compose.vapid.yml
View File

@ -1,23 +0,0 @@
version: "3.8"
services:
app:
secrets:
- vapid_private_key
environment:
- VAPID_ADMIN_EMAIL
- VAPID_PUBLIC_KEY
- VAPID_PRIVATE_KEY_FILE=/run/secrets/vapid_private_key
worker:
secrets:
- vapid_private_key
environment:
- VAPID_ADMIN_EMAIL
- VAPID_PUBLIC_KEY
- VAPID_PRIVATE_KEY_FILE=/run/secrets/vapid_private_key
secrets:
vapid_private_key:
external: true
name: ${STACK_NAME}_vapid_private_key_${SECRET_VAPID_PRIVATE_KEY_VERSION}

175
compose.yml
View File

@ -2,27 +2,24 @@ version: "3.8"
services:
web:
image: "codeberg.org/karrot/karrot-frontend:v17.2.1"
image: "vlafvlaf/karrot_frontend:0.0.3"
configs:
- source: nginx_config
target: /etc/nginx/conf.d/default.conf
depends_on:
- app
environment:
- DOMAIN
- FILE_UPLOAD_MAX_SIZE
- FILE_UPLOAD_DIR=/app/uploads/
- CSP_CONNECT_SRC=${CSP_CONNECT_SRC:-}
- LISTEN=80
- BACKEND=app:8000
healthcheck:
test: ["CMD", "curl", "-f", "http://localhost/"]
interval: 15s
interval: 30s
timeout: 3s
retries: 2
start_period: 15s
retries: 30
networks:
- internal
- proxy
volumes:
- "app_data:/app/uploads/"
- "app_data:/app/uploads"
deploy:
update_config:
failure_action: rollback
@ -33,106 +30,85 @@ services:
- "traefik.http.routers.${STACK_NAME}.rule=Host(`${DOMAIN}`${EXTRA_DOMAINS})"
- "traefik.http.routers.${STACK_NAME}.entrypoints=web-secure"
- "traefik.http.routers.${STACK_NAME}.tls.certresolver=${LETS_ENCRYPT_ENV}"
- "coop-cloud.${STACK_NAME}.version=0.0.1+testing"
app:
image: "codeberg.org/karrot/karrot-backend:v17.2.1"
image: "vlafvlaf/karrot_backend:test"
networks:
- internal
depends_on:
- db
- redis
secrets:
- db_password
- secret_key
volumes:
- "app_data:/app/uploads/"
- "plugins_data:/app/plugins/"
- "shiv_data:/root/.shiv"
- "geoip_data:/var/lib/GeoIP"
- "app_data:/app/uploads"
environment:
- ADMIN_EMAILS
- CSRF_TRUSTED_ORIGINS
- DATABASE_CONN_MAX_AGE
- DATABASE_HOST=db
- DATABASE_NAME=karrot
- DATABASE_PASSWORD_FILE=/run/secrets/db_password
- DATABASE_PORT=5432
- DATABASE_USER=karrot
- EMAIL_BACKEND
- MAXMIND_ACCOUNT_ID
- MAXMIND_LICENSE_KEY
- EMAIL_FROM
- EMAIL_REPLY_DOMAIN
- FILE_UPLOAD_DIR=/app/uploads/
- FILE_UPLOAD_USE_ACCEL_REDIRECT=true
- FILE_UPLOAD_MAX_SIZE
- FORUM_BANNER_TOPIC_ID
- FORUM_DISCUSSIONS_FEED
- SMTP_PASSWORD
- SMTP_HOST
- EMAIL_BACKEND
- SMTP_PORT
- SMTP_USE_SSL
- SITE_URL=http://localhost:8000
- LISTEN_HOST=0.0.0.0
- LISTEN_SERVER=uvicorn
- MODE=prod
# Keep POSTAL_WEBHOOK_KEY in main compose file
# as you can use it without the other postal vars
- POSTAL_WEBHOOK_KEY
- PROXY_DISCOURSE_URL
- PLUGIN_DIR=/app/plugins/
- REDIS_DB=0
- SECRET_KEY=foobar
- DATABASE_HOST=db
- DATABASE_PORT=5432
- DATABASE_NAME=karrot
- DATABASE_USER=karrot
- DATABASE_PASSWORD=karrot
- REDIS_HOST=redis
- REDIS_PORT=6379
- SECRET_KEY_FILE=/run/secrets/secret_key
- SITE_LOGO
- SITE_NAME
- SITE_URL
- MIGRATE=yes
command: server
- REDIS_DB=0
healthcheck:
test: ["CMD", "curl", "-f", "http://localhost:8000/api/healthcheck/"]
interval: 10s
test: ["CMD", "curl", "-f", "http://localhost:8000/api/"]
interval: 30s
timeout: 3s
retries: 3
# sometimes migrations can take their time..
start_period: 600s
deploy:
labels:
- "coop-cloud.${STACK_NAME}.version=4.0.0+17.2.1"
- "backupbot.backup=true"
- "backupbot.backup.path=/app/uploads"
retries: 90
command: >
sh -c "
echo 'EditionIDs GeoLite2-City GeoLite2-Country' > /etc/GeoIP.conf &&
echo AccountID $${MAXMIND_ACCOUNT_ID} >> /etc/GeoIP.conf &&
echo LicenseKey $${MAXMIND_LICENSE_KEY} >> /etc/GeoIP.conf &&
echo 'Updating geoip data, first time could be slow...' &&
geoipupdate &&
pip install tzdata &&
python karrot-backend.pyz migrate &&
python karrot-backend.pyz server
"
worker:
image: "codeberg.org/karrot/karrot-backend:v17.2.1"
image: "vlafvlaf/karrot_backend:test"
depends_on:
# shiv + geoip data gets loaded on the first run of the app
# so to ensure it's available in the worker too, we need to wait
- app
volumes:
- "shiv_data:/root/.shiv"
- "geoip_data:/var/lib/GeoIP"
networks:
- internal
secrets:
- db_password
- secret_key
volumes:
- "app_data:/app/uploads/"
- "plugins_data:/app/plugins/"
environment:
- ADMIN_EMAILS
- DATABASE_CONN_MAX_AGE
- DATABASE_HOST=db
- DATABASE_NAME=karrot
- DATABASE_PASSWORD_FILE=/run/secrets/db_password
- DATABASE_PORT=5432
- DATABASE_USER=karrot
- EMAIL_BACKEND
- EMAIL_FROM
- EMAIL_REPLY_DOMAIN
- SITE_URL=http://localhost:8000
- LISTEN_HOST=0.0.0.0
- LISTEN_SERVER=uvicorn
- MODE=prod
# Keep POSTAL_WEBHOOK_KEY in main compose file
# as you can use it without the other postal vars
- POSTAL_WEBHOOK_KEY
- PLUGIN_DIR=/app/plugins/
- REDIS_DB=0
- SECRET_KEY=foobar
- DATABASE_HOST=db
- DATABASE_PORT=5432
- DATABASE_NAME=karrot
- DATABASE_USER=karrot
- DATABASE_PASSWORD=karrot
- REDIS_HOST=redis
- REDIS_PORT=6379
- SECRET_KEY_FILE=/run/secrets/secret_key
- SITE_LOGO
- SITE_NAME
- SITE_URL
command: worker
- REDIS_DB=0
command:
sh -c "
pip install tzdata &&
python karrot-backend.pyz worker"
redis:
image: "redis:6-alpine"
command: ["redis-server", "--appendonly", "yes"]
@ -153,37 +129,40 @@ services:
interval: 10s
timeout: 3s
retries: 30
secrets:
- db_password
configs:
- source: postgres_extensions
target: /docker-entrypoint-initdb.d/extensions.sql
mode: 0555
volumes:
- "postgres_data:/var/lib/postgresql/data"
networks:
- internal
environment:
- POSTGRES_PASSWORD_FILE=/run/secrets/db_password
- POSTGRES_PASSWORD=karrot
- POSTGRES_USER=karrot
- POSTGRES_DB=karrot
deploy:
labels:
backupbot.backup: "true"
backupbot.backup.pre-hook: "PGPASSWORD=$$(cat $${POSTGRES_PASSWORD_FILE}) pg_dump -U $${POSTGRES_USER} $${POSTGRES_DB} > /var/lib/postgresql/data/postgres-backup.sql"
backupbot.backup.post-hook: "rm -rf /var/lib/postgresql/data/postgres-backup.sql"
backupbot.backup.path: "/var/lib/postgresql/data/"
secrets:
db_password:
external: true
name: ${STACK_NAME}_db_password_${SECRET_DB_PASSWORD_VERSION}
secret_key:
external: true
name: ${STACK_NAME}_secret_key_${SECRET_SECRET_KEY_VERSION}
configs:
nginx_config:
name: ${STACK_NAME}_nginx_config_${NGINX_CONFIG_VERSION}
file: nginx.conf.tmpl
template_driver: golang
postgres_extensions:
name: ${STACK_NAME}_postgres_extensions_${POSTGRES_ENTRYPOINT_VERSION}
file: pg_extensions.sql
volumes:
shiv_data:
geoip_data:
app_data:
plugins_data:
postgres_data:
redis_data:
networks:
proxy:
external: true

4
frontend/Dockerfile Normal file
View File

@ -0,0 +1,4 @@
FROM nginx:1.20.1-alpine
RUN curl https://download.karrot.world/karrot-frontend-production.zip -o karrot-frontend.zip && \
unzip -o karrot-frontend.zip -d /usr/share/nginx/html

64
frontend/nginx.conf Normal file
View File

@ -0,0 +1,64 @@
map $http_upgrade $connection_upgrade {
default upgrade;
'' close;
}
server {
listen 80;
server_name web;
root /usr/share/nginx/html;
location / {
try_files $uri /index.html;
if_modified_since off;
expires off;
etag off;
# TODO: csp headers
}
location /css {
expires max;
}
location /js {
expires max;
}
location /img {
expires max;
}
location /fonts {
expires max;
}
# /app/uploads
location /media/ {
alias /app/uploads/;
expires max;
}
location /community_proxy/ {
proxy_pass https://community.foodsaving.world/;
}
location ^\/(api(\-auth)?|docs|silk)\/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header X-Forwarded-Proto $scheme;
# this port is whatever port 80 is mapped to outside the container
proxy_set_header Host $host:8080;
proxy_pass http://app:8000;
proxy_redirect off;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection $connection_upgrade;
proxy_set_header Sec-WebSocket-Extensions $http_sec_websocket_extensions;
proxy_set_header Sec-WebSocket-Key $http_sec_websocket_key;
proxy_set_header Sec-WebSocket-Protocol $http_sec_websocket_protocol;
proxy_set_header Sec-WebSocket-Version $http_sec_websocket_version;
}
}

13
nginx.conf.tmpl
View File

@ -3,8 +3,6 @@ map $http_upgrade $connection_upgrade {
'' close;
}
client_max_body_size {{ env "FILE_UPLOAD_MAX_SIZE" }};
server {
listen 80;
server_name {{ env "DOMAIN" }};
@ -41,9 +39,9 @@ server {
alias /app/uploads/;
expires max;
}
location /community_proxy/ {
proxy_pass https://community.karrot.world/;
proxy_pass https://community.foodsaving.world/;
}
location ~ ^\/(api(\-auth)?|docs|silk)\/ {
@ -52,12 +50,7 @@ server {
proxy_set_header X-Forwarded-Proto $scheme;
# this port is whatever port 80 is mapped to outside the container
proxy_set_header Host $host:80;
# resolver + backend as a variable means can run when backend is not up yet
resolver 127.0.0.11 valid=3s;
set $backend app:8000;
proxy_pass http://$backend$request_uri;
proxy_pass http://app:8000;
proxy_redirect off;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;

32
release/1.0.0+14.0.1
View File

@ -1,32 +0,0 @@
Major upgrade because this switches to new set of docker images with new python version.
Full release info available here: https://codeberg.org/karrot/karrot/releases/tag/v14.0.1
## Fix to uploaded file permissions
We now run the container as non-root user which means the file permissions need updating.
After you deployment you can fix that by running:
```
abra app cmd --user root <domain> app fix-permissions
```
(Note: we need `--user root` there, as we need to be `root` in the container to change the permissions)
## geoip changes
Now the geoip update server is run using an additional compose file config, so if you are using geoip with a maxmind account, modify your config to include:
```
COMPOSE_FILE="compose.yml"
COMPOSE_FILE="$COMPOSE_FILE:compose.geoip.yml"
MAXMIND_ACCOUNT_ID=youraccountid
SECRET_MAXMIND_LICENSE_KEY_VERSION=v1
```
And ensure you have the `maxmind_license_key` secret set, which you can do with:
```
abra app secret insert <domain> maxmind_license_key v1 <key>
```

22
release/4.0.0+17.2.1
View File

@ -1,22 +0,0 @@
This is a major release update because you might need to change your app config.
Now, all the optional features are split out into separate compose files, and you need
to include them explictly if you are using them.
SMTP:
COMPOSE_FILE="$COMPOSE_FILE:compose.smtp.yml"
Postal:
COMPOSE_FILE="$COMPOSE_FILE:compose.postal.yml"
Web Push (Vapid):
COMPOSE_FILE="$COMPOSE_FILE:compose.vapid.yml"
Video calls (meet):
COMPOSE_FILE="$COMPOSE_FILE:compose.livekit.yml"
Additionally you now need to set "livekit_api_secret"
Previously it was MEET_LIVEKIT_API_SECRET env var.
abra app secret insert <domain> livekit_api_secret v1 <secret>
GeoIP (this was already separate):
COMPOSE_FILE="$COMPOSE_FILE:compose.geoip.yml"