coop-cloud/lasuite-docs
2
0
Fork 1
Code Issues 5 Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: coop-cloud:minio_root_password_file
Branches Tags
coop-cloud:main coop-cloud:secrets coop-cloud:minio_root_password_file coop-cloud:dev
coop-cloud:0.2.1+v3.4.2 coop-cloud:0.2.0+v3.4.2 coop-cloud:0.1.0+v3.3.0
..
compare: coop-cloud:secrets
Branches Tags
coop-cloud:main coop-cloud:secrets coop-cloud:minio_root_password_file coop-cloud:dev
coop-cloud:0.2.1+v3.4.2 coop-cloud:0.2.0+v3.4.2 coop-cloud:0.1.0+v3.3.0

2 Commits
minio_root ... secrets

Author SHA1 Message Date
notplants
d82844ba59 inline secret export for y-provider 2025-11-07 10:32:42 -05:00
notplants
b527d802ca minio using files for secrets instead of env vars 2025-11-07 09:54:19 -05:00
2 changed files with 8 additions and 20 deletions
Expand all files Collapse all files

7
abra-entrypoint.sh
View File

@ -3,7 +3,6 @@ set -e
[ -f /run/secrets/postgres_p ] && export DB_PASSWORD="$(cat /run/secrets/postgres_p)" [ -f /run/secrets/postgres_p ] && export DB_PASSWORD="$(cat /run/secrets/postgres_p)"
[ -f /run/secrets/django_sk ] && export DJANGO_SECRET_KEY="$(cat /run/secrets/django_sk)" [ -f /run/secrets/django_sk ] && export DJANGO_SECRET_KEY="$(cat /run/secrets/django_sk)"
#[ -f /run/secrets/minio_rp ] && export MINIO_ROOT_PASSWORD="$(cat /run/secrets/minio_rp)"
[ -f /run/secrets/minio_rp ] && export AWS_S3_SECRET_ACCESS_KEY="$(cat /run/secrets/minio_rp)" [ -f /run/secrets/minio_rp ] && export AWS_S3_SECRET_ACCESS_KEY="$(cat /run/secrets/minio_rp)"
[ -f /run/secrets/minio_ru ] && export AWS_S3_ACCESS_KEY_ID="$(cat /run/secrets/minio_ru)" [ -f /run/secrets/minio_ru ] && export AWS_S3_ACCESS_KEY_ID="$(cat /run/secrets/minio_ru)"
[ -f /run/secrets/django_sp ] && export DJANGO_SUPERUSER_PASSWORD="$(cat /run/secrets/django_sp)" [ -f /run/secrets/django_sp ] && export DJANGO_SUPERUSER_PASSWORD="$(cat /run/secrets/django_sp)"
@ -13,11 +12,5 @@ set -e
# if not in "env" mode, then execute the original entrypoint and command # if not in "env" mode, then execute the original entrypoint and command
if [ ! "$1" = "-e" ]; then if [ ! "$1" = "-e" ]; then
ORIGINAL_ENTRYPOINT="$1"
shift
if [ -n "$ORIGINAL_ENTRYPOINT" ] && [ "$ORIGINAL_ENTRYPOINT" != "null" ]; then
exec "$ORIGINAL_ENTRYPOINT" "$@"
else
exec "$@" exec "$@"
fi fi
fi

19
compose.yml
View File

@ -119,6 +119,7 @@ services:
- oidc_rpcs - oidc_rpcs
- collab_ss - collab_ss
- minio_rp - minio_rp
- minio_ru
- postgres_p - postgres_p
- y_api_key - y_api_key
@ -149,20 +150,11 @@ services:
networks: networks:
- backend - backend
environment: *yprovider-env environment: *yprovider-env
entrypoint: >
sh -c "export Y_PROVIDER_API_KEY=\"$$(cat /run/secrets/y_api_key)\" && exec /usr/local/bin/entrypoint \"$$@\"" --
command: ["yarn", "start"] command: ["yarn", "start"]
entrypoint: ["/abra-entrypoint.sh", "/usr/local/bin/entrypoint"]
configs:
- source: abra_entrypoint
target: /abra-entrypoint.sh
mode: 0555
# NOTE: healthcheck - `wget` is available in the container, but `wget http://localhost:4444` gives a 403 # NOTE: healthcheck - `wget` is available in the container, but `wget http://localhost:4444` gives a 403
secrets: secrets:
- django_sk
- django_sp
- oidc_rpcs
- collab_ss
- minio_rp
- postgres_p
- y_api_key - y_api_key
db: db:
@ -231,7 +223,7 @@ services:
networks: networks:
- backend - backend
command: minio server /data command: minio server /data
entrypoint: ["/abra-entrypoint.sh", "/usr/bin/docker-entrypoint.sh"] entrypoint: ["/usr/bin/docker-entrypoint.sh"]
volumes: volumes:
- minio:/data - minio:/data
deploy: deploy:
@ -254,6 +246,9 @@ services:
networks: networks:
proxy: proxy:
backend: backend:
depends_on:
- backend
- app
environment: environment:
- STACK_NAME - STACK_NAME
deploy: deploy: