chore: publish 5.1.2+v3.0.0 release

Merge pull request 'fix for OAUTH_ENABLED check' (#17 ) from patch_5.1.1_release into main
Reviewed-on: #17 Reviewed-by: ammaratef45 <ammaratef45@proton.me>
2025-08-03 15:58:57 -07:00 · 2025-08-03 22:55:54 +00:00 · 2025-08-02 12:37:16 -07:00 · 2025-07-31 17:08:31 -07:00 · 2025-08-01 00:07:30 +00:00 · 2025-07-31 17:04:55 -07:00
7 changed files with 59 additions and 7 deletions
--- a/.drone.yml
+++ b/.drone.yml
@ -22,6 +22,7 @@ steps:
      SECRET_SECRET_COOKIE_TOKEN_VERSION: v1
      SECRET_DB_PASSWORD_VERSION: v1
      SECRET_SMTP_PASSWORD_VERSION: v1
+      SECRET_OAUTH_APP_SECRET_VERSION: v1
 trigger:
  branch:
    - main
--- a/.env.sample
+++ b/.env.sample
@ -90,3 +90,17 @@ SECRET_DB_PASSWORD_VERSION=v1
 # THEME_ACCENT_COLOR=rgb(0,188,212)
 # THEME_TEXT_ON_PRIMARY_COLOR=rgb(255,255,255)
 # THEME_TEXT_ON_ACCENT_COLOR=rgb(255,255,255)
+
+# env variables needed to enable OAuth2 authentication  
+# COMPOSE_FILE="$COMPOSE_FILE:compose.oauth.yml"
+# OAUTH_ENABLED=1
+# OAUTH_AUTH_URL=
+# OAUTH_TOKEN_URL=
+# OAUTH_PROFILE_URL=
+# OAUTH_SCOPE=
+# OAUTH_APP_KEY=
+# OAUTH_ATTR_UID=
+# OAUTH_ATTR_NAME=
+# OAUTH_ATTR_EMAIL=
+# OAUTH_LOGIN_PROVIDER_NAME=
+# SECRET_OAUTH_APP_SECRET_VERSION=v1
--- a/abra.sh
+++ b/abra.sh
@ -1,4 +1,4 @@
-export LOOMIO_ENTRYPOINT_VERSION=v6
+export LOOMIO_ENTRYPOINT_VERSION=v8

 # cannot be integrated into entrypoint.sh as it requires the operator to create a user first
 function make_last_user_admin()
@ -13,4 +13,4 @@ function set_new_db_password()
    echo "setting new password for db user..."
 	psql -U $POSTGRES_USER -c "ALTER USER $POSTGRES_USER PASSWORD '$(cat /run/secrets/db_password)';"
    echo "done"
-}
+}
--- a/compose.oauth.yml
+++ b/compose.oauth.yml
@ -0,0 +1,31 @@
+version: "3.8"
+
+x-oauth-env: &oauth-env
+  OAUTH_AUTH_URL:
+  OAUTH_TOKEN_URL:
+  OAUTH_PROFILE_URL:
+  OAUTH_SCOPE:
+  OAUTH_APP_KEY:
+  OAUTH_APP_SECRET_FILE: /run/secrets/oauth_app_secret
+  OAUTH_ATTR_UID:
+  OAUTH_ATTR_NAME:
+  OAUTH_ATTR_EMAIL:
+  OAUTH_LOGIN_PROVIDER_NAME:
+  OAUTH_ENABLED: 
+
+services:
+  app:
+    environment: 
+      *oauth-env
+    secrets:
+      - oauth_app_secret
+  worker:
+    environment: 
+      *oauth-env
+    secrets:
+      - oauth_app_secret
+
+secrets:
+  oauth_app_secret:
+    name: ${STACK_NAME}_oauth_app_secret_${SECRET_OAUTH_APP_SECRET_VERSION}
+    external: true
--- a/compose.yml
+++ b/compose.yml
@ -32,7 +32,7 @@ x-environment: &default-env

 services:
  app:
-    image: loomio/loomio:v2.25.4
+    image: loomio/loomio:v3.0.0
    configs:
      - source: entrypoint
        target: /entrypoint.sh
@ -70,7 +70,7 @@ services:
        - "traefik.http.routers.${STACK_NAME}.rule=Host(`${DOMAIN}`${EXTRA_DOMAINS})"
        - "traefik.http.routers.${STACK_NAME}.entrypoints=web-secure"
        - "traefik.http.routers.${STACK_NAME}.tls.certresolver=${LETS_ENCRYPT_ENV}"
-        - "coop-cloud.${STACK_NAME}.version=4.0.2+v2.25.4"
+        - "coop-cloud.${STACK_NAME}.version=5.1.2+v3.0.0"
        - "backupbot.backup:=${ENABLE_BACKUPS:-true}"
        - "traefik.http.routers.${STACK_NAME}.middlewares=${STACK_NAME}"
        - "traefik.http.middlewares.${STACK_NAME}.headers.accesscontrolallowmethods=GET,OPTIONS,PUT"
@ -79,7 +79,7 @@ services:
        - "traefik.http.middlewares.${STACK_NAME}.headers.accesscontrolmaxage=100"
        - "traefik.http.middlewares.${STACK_NAME}.headers.addvaryheader=true"
  worker:
-    image: loomio/loomio:v2.25.4
+    image: loomio/loomio:v3.0.0
    configs:
      - source: entrypoint
        target: /entrypoint.sh
@ -122,7 +122,7 @@ services:
        backupbot.restore: "true"
        backupbot.restore.post-hook: sh -c 'gzip -d /postgres.dump.gz && pg_restore --clean -U "$$POSTGRES_USER" --dbname="$$POSTGRES_DB" < /postgres.dump && rm -f /postgres.dump'
  redis:
-    image: redis:5.0
+    image: redis:8.0
    networks:
      - backend
    healthcheck:
@ -156,7 +156,7 @@ services:
        - "traefik.http.routers.channels${STACK_NAME}.entrypoints=web-secure"

  cron:
-    image: loomio/loomio:v2.25.4
+    image: loomio/loomio:v3.0.0
    configs:
      - source: entrypoint
        target: /entrypoint.sh
--- a/entrypoint.sh
+++ b/entrypoint.sh
@ -25,6 +25,11 @@ file_env "DEVISE_SECRET"
 file_env "SECRET_COOKIE_TOKEN"
 file_env "POSTGRES_PASSWORD"
 file_env "SMTP_PASSWORD"
+
+if [ "$OAUTH_ENABLED" = "1" ]; then
+	file_env "OAUTH_APP_SECRET"
+fi  
+
 export DB_HOST="db"
 export DATABASE_URL="postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@db/${POSTGRES_DB}"

--- a/release/5.1.0+v3.0.0
+++ b/release/5.1.0+v3.0.0
@ -0,0 +1 @@
+Add support for OAuth2. To use this feature copy and populate the new oauth2 env variables from the .env.sample to your locale .env config and insert the oauth2_app_secret secret into your recipe:
Author	SHA1	Message	Date
Jackie Makdah	2ea69cb952	chore: publish 5.1.2+v3.0.0 release All checks were successful continuous-integration/drone/tag Build is passing Details continuous-integration/drone/push Build is passing Details	2025-08-03 15:58:57 -07:00
jmakdah2	a323593824	Merge pull request 'fix for OAUTH_ENABLED check' (#17 ) from patch_5.1.1_release into main All checks were successful continuous-integration/drone/push Build is passing Details Reviewed-on: #17 Reviewed-by: ammaratef45 <ammaratef45@proton.me>	2025-08-03 22:55:54 +00:00
Jackie Makdah	746413e31e	fix for OAUTH_ENABLED check Some checks failed continuous-integration/drone/pr Build is failing Details	2025-08-02 12:37:16 -07:00
Jackie Makdah	973fd2a751	chore: publish 5.1.1+v3.0.0 release Some checks failed continuous-integration/drone/tag Build is passing Details continuous-integration/drone/push Build is failing Details	2025-07-31 17:08:31 -07:00
ammaratef45	0a33f87074	Merge pull request 'update entrypoint version' (#16 ) from patch_5.1.0_release into main All checks were successful continuous-integration/drone/push Build is passing Details Reviewed-on: #16	2025-08-01 00:07:30 +00:00
Jackie Makdah	90ddc72c37	update entrypoint version Some checks failed continuous-integration/drone/pr Build is failing Details	2025-07-31 17:04:55 -07:00
Jackie Makdah	c2421778af	chore: publish 5.1.0+v3.0.0 release All checks were successful continuous-integration/drone/tag Build is passing Details continuous-integration/drone/push Build is passing Details	2025-07-31 16:55:05 -07:00
Jackie Makdah	efa3e2e036	remove manual release notes	2025-07-31 16:54:44 -07:00
jmakdah2	5deafb6ed5	Merge pull request 'add OAuth2 env variables' (#14 ) from jmakdah2/loomio:OAuth2 into main All checks were successful continuous-integration/drone/push Build is passing Details Reviewed-on: #14 Reviewed-by: decentral1se <decentral1se@noreply.git.coopcloud.tech>	2025-07-31 23:30:50 +00:00
Jackie	8e577ae8af	add OAUTH_ENABLED env variable Some checks failed continuous-integration/drone/pr Build is failing Details	2025-07-28 21:07:16 -07:00
Jackie	9531f4fe40	add compose.oauth.yml file Some checks failed continuous-integration/drone/pr Build is failing Details	2025-07-27 17:52:57 -07:00
Jackie	e9ec238865	add OAuth2 env variables Some checks failed continuous-integration/drone/pr Build is failing Details	2025-07-23 16:17:11 -07:00
Cassowary	bc6f625ac5	chore: publish 5.0.0+v3.0.0 release All checks were successful continuous-integration/drone/tag Build is passing Details continuous-integration/drone/push Build is passing Details	2025-06-25 10:47:34 -07:00
3wordchant	79a45d9aca	Merge pull request 'make channels container externally available' (#12 ) from fix-channels-container into main All checks were successful continuous-integration/drone/push Build is passing Details Reviewed-on: #12 Reviewed-by: 3wordchant <3wordchant@noreply.git.coopcloud.tech>	2025-06-06 19:19:06 +00:00
				`@ -0,0 +1 @@`
				`Add support for OAuth2. To use this feature copy and populate the new oauth2 env variables from the .env.sample to your locale .env config and insert the oauth2_app_secret secret into your recipe:`