Add CI and catalogue generation [mass update]

chore: publish 1.1.1+0.24.6 release
chore: publish 1.1.0+0.24.6 release
2025-05-08 14:44:10 +02:00 · 2025-02-04 18:51:07 +01:00 · 2025-01-19 10:28:23 -08:00 · 2025-01-08 10:09:13 -08:00 · 2024-10-26 00:06:03 +02:00 · 2024-10-25 22:43:56 +02:00
10 changed files with 176 additions and 20 deletions
--- a/.drone.yml
+++ b/.drone.yml
@ -17,7 +17,9 @@ steps:
      DOMAIN: authentik.swarm-test.autonomic.zone
      STACK_NAME: authentik
      LETS_ENCRYPT_ENV: production
-      CONFIG_YML_VERSION: v1
+      CONFIG_YML_VERSION: v8
      HEALTHCHECK_VERSION: v1
      PG_BACKUP_VERSION: v1
      SECRET_DB_PASSWORD_VERSION: v1
      SECRET_JWT_SECRET_VERSION: v1
@ -36,8 +38,7 @@ steps:
        from_secret: drone_abra-bot_token
      fork: true
      repositories:
-        - coop-cloud/auto-recipes-catalogue-json
+        - toolshed/auto-recipes-catalogue-json
 trigger:
  event: tag
--- a/.env.sample
+++ b/.env.sample
@ -1,11 +1,13 @@
 TYPE=vikunja
 TIMEOUT=300
 ENABLE_AUTO_UPDATE=true
 ENABLE_BACKUPS=true
 DOMAIN=vikunja.example.com
 ## Domain aliases
 #EXTRA_DOMAINS=', `www.vikunja.example.com`'
 #REDIRECT_DOMAIN=www.vikunja.example.com
 LETS_ENCRYPT_ENV=production
--- a/README.md
+++ b/README.md
@ -23,3 +23,28 @@ Organize everything, on all platforms
 * `abra app deploy <app-name>`
 For more, see [`docs.coopcloud.tech`](https://docs.coopcloud.tech).
 ## Healthcheck
 Vikunja uses a docker [scratch](https://hub.docker.com/_/scratch/) image, that is completely empty, therefore it is necessary to copy a statically build healthcheck binary into the container to perform the healthcheck.
 To verify the binary in this recipe run this code:
 ```
 # Set the source date epoch for reproducibility
 export SOURCE_DATE_EPOCH=1640995200
 export DOCKER_BUILDKIT=1
 # Build the Docker image
 docker build --build-arg SOURCE_DATE_EPOCH=${SOURCE_DATE_EPOCH} -t healthcheck -f healthcheck_Dockerfile .
 # Create container, extract binary and remove the container
 docker create --name healthcheck_builder healthcheck
 docker cp healthcheck_builder:/app/healthcheck .
 docker rm healthcheck_builder
 # Check if the build is reproducible by calculating hash
 sha256sum healthcheck
 ```
 The sha256 checksum should be **c7c12a0eb019edd275c3f5a9302c70b2112941a8c0b9d9128d26c66a81a263c6**
--- a/abra.sh
+++ b/abra.sh
@ -1 +1,3 @@
 export CONFIG_YML_VERSION=v8
 export HEALTHCHECK_VERSION=v1
 export PG_BACKUP_VERSION=v2
--- a/compose.yml
+++ b/compose.yml
@ -3,7 +3,7 @@ version: "3.8"
 services:
  app:
-    image: vikunja/vikunja:0.24.2
+    image: vikunja/vikunja:0.24.6
    environment:
      - DOMAIN
      - LOG_LEVEL
@ -47,29 +47,32 @@ services:
    configs:
      - source: config_yml
        target: /etc/vikunja/config.yml
      - source: healthcheck
        target: /healthcheck
        mode: 555
    deploy:
      labels:
        - "traefik.enable=true"
        - "traefik.http.services.${STACK_NAME}.loadbalancer.server.port=3456"
-        - "traefik.http.routers.${STACK_NAME}.rule=Host(`${DOMAIN}`)"
+        - "traefik.http.routers.${STACK_NAME}.rule=Host(`${DOMAIN}`${EXTRA_DOMAINS})"
        - "traefik.http.routers.${STACK_NAME}.middlewares=${STACK_NAME}-redirect-aliases@docker"
        - "traefik.http.middlewares.${STACK_NAME}-redirect-aliases.redirectregex.regex=^https://${REDIRECT_DOMAIN:-example.com}(.*)"
        - "traefik.http.middlewares.${STACK_NAME}-redirect-aliases.redirectregex.replacement=https://${DOMAIN}$${1}"
        - "traefik.http.routers.${STACK_NAME}.entrypoints=web-secure"
        - "traefik.http.routers.${STACK_NAME}.tls.certresolver=${LETS_ENCRYPT_ENV}"
-        - "coop-cloud.${STACK_NAME}.version=1.0.0+0.24.2"
+        - "coop-cloud.${STACK_NAME}.version=1.1.1+0.24.6"
        - "coop-cloud.${STACK_NAME}.timeout=${TIMEOUT:-120}"
-   #healthcheck:
+    healthcheck:
-   #  test: [ "CMD", "curl", "-f", "http://localhost:3456" ]
+      test: [ "CMD", "/healthcheck"]
-   #  interval: 30s
+      interval: 30s
-   #  timeout: 10s
+      timeout: 10s
-   #  retries: 10
+      retries: 10
-   #  start_period: 1m
+      start_period: 1m
  redis:
-    image: redis
+    image: redis:7.4.2-alpine
    networks:
      - internal
    ports:
      - "6379:6379"
  db:
    image: postgres:13
@ -88,10 +91,14 @@ services:
      - db_password
    deploy:
      labels:
-        backupbot.backup: "true"
+        backupbot.backup: "${ENABLE_BACKUPS:-true}"
-        backupbot.backup.pre-hook: "PGPASSWORD=$$(cat $${POSTGRES_PASSWORD_FILE}) pg_dump -U $${POSTGRES_USER} $${POSTGRES_DB} > /var/lib/postgresql/data/backup.sql"
+        backupbot.backup.pre-hook: "/pg_backup.sh backup"
-        backupbot.backup.post-hook: "rm -rf /var/lib/postgresql/data/backup.sql"
+        backupbot.backup.volumes.db.path: "backup.sql"
-        backupbot.backup.path: "/var/lib/postgresql/data/backup.sql"
+        backupbot.restore.post-hook: '/pg_backup.sh restore'
    configs:
        - source: pg_backup
          target: /pg_backup.sh
          mode: 0555
 volumes:
  files:
@ -109,6 +116,12 @@ configs:
    name: ${STACK_NAME}_config_yml_${CONFIG_YML_VERSION}
    file: config.yml.tmpl
    template_driver: golang
  healthcheck:
    name: ${STACK_NAME}_healthcheck_${HEALTHCHECK_VERSION}
    file: healthcheck
  pg_backup:
    name: ${STACK_NAME}_pg_backup_${PG_BACKUP_VERSION}
    file: pg_backup.sh
 secrets:
  db_password:
--- a/16
+++ b/16
@ -0,0 +1,16 @@
 FROM vikunja/vikunja:0.24.2 AS vikunja-scratch
 FROM alpine
 RUN apk add --upgrade --no-cache vim bash curl
 WORKDIR /app/vikunja
 CMD [ "/app/vikunja/vikunja" ]
 EXPOSE 3456
 USER 1000
 ENV VIKUNJA_SERVICE_ROOTPATH=/app/vikunja/
 ENV VIKUNJA_DATABASE_PATH=/db/vikunja.db
 COPY --from=vikunja-scratch /app/vikunja /app/vikunja
 COPY --from=vikunja-scratch /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/
--- a/BIN
+++ b/BIN
--- a/healthcheck.c
+++ b/healthcheck.c
@ -0,0 +1,50 @@
 #include <stdio.h>
 #include <stdlib.h>
 #include <string.h>
 #include <sys/socket.h>
 #include <netinet/in.h>
 #include <arpa/inet.h>
 #include <unistd.h>
 int main() {
    int sockfd;
    struct sockaddr_in server_addr;
    char request[] = "HEAD / HTTP/1.1\r\nHost: localhost\r\n\r\n";
    char response[1024];
    int received_bytes;
    sockfd = socket(AF_INET, SOCK_STREAM, 0);
    if (sockfd < 0) {
        perror("socket");
        return 1;
    }
    server_addr.sin_family = AF_INET;
    server_addr.sin_port = htons(3456);
    server_addr.sin_addr.s_addr = inet_addr("127.0.0.1");
    if (connect(sockfd, (struct sockaddr *)&server_addr, sizeof(server_addr)) < 0) {
        perror("connect");
        close(sockfd);
        return 1;
    }
    send(sockfd, request, strlen(request), 0);
    received_bytes = recv(sockfd, response, sizeof(response) - 1, 0);
    if (received_bytes < 0) {
        perror("recv");
        close(sockfd);
        return 1;
    }
    // Null-terminieren der empfangenen Bytes
    response[received_bytes] = '\0';
    // Statuscode extrahieren (erste Zeile enthält den Statuscode)
    char *status_line = strtok(response, "\r\n");
    printf("Response: %s\n", status_line);
    close(sockfd);
    return 0;
 }
--- a/13
+++ b/13
@ -0,0 +1,13 @@
 FROM alpine:latest
 ENV SOURCE_DATE_EPOCH=1640995200
 RUN apk add --no-cache gcc musl-dev
 WORKDIR /app
 COPY healthcheck.c /app
 RUN gcc -o healthcheck healthcheck.c -static
 CMD ["./healthcheck"]
--- a/pg_backup.sh
+++ b/pg_backup.sh
@ -0,0 +1,34 @@
 #!/bin/bash
 set -e
 BACKUP_FILE='/var/lib/postgresql/data/backup.sql'
 function backup {
  export PGPASSWORD=$(cat /run/secrets/db_password)
  pg_dump -U ${POSTGRES_USER} ${POSTGRES_DB} > $BACKUP_FILE
 }
 function restore {
    cd /var/lib/postgresql/data/
    restore_config(){
        # Restore allowed connections
        cat pg_hba.conf.bak > pg_hba.conf
        su postgres -c 'pg_ctl reload'
    }
    # Don't allow any other connections than local
    cp pg_hba.conf pg_hba.conf.bak
    echo "local all all trust" > pg_hba.conf
    su postgres -c 'pg_ctl reload'
    trap restore_config EXIT INT TERM
    # Recreate Database
    psql -U ${POSTGRES_USER} -d postgres -c "DROP DATABASE ${POSTGRES_DB} WITH (FORCE);" 
    createdb -U ${POSTGRES_USER} ${POSTGRES_DB}
    psql -U ${POSTGRES_USER} -d ${POSTGRES_DB} -1 -f $BACKUP_FILE
    trap - EXIT INT TERM
    restore_config
 }
 $@
Author	SHA1	Message	Date
3wc	0a6f397f4b	Add CI and catalogue generation [mass update] All checks were successful continuous-integration/drone/push Build is passing Details	2025-05-08 14:44:10 +02:00
Moritz	ba78d79998	chore: publish 1.1.1+0.24.6 release All checks were successful continuous-integration/drone/tag Build is passing Details continuous-integration/drone/push Build is passing Details	2025-02-04 18:51:07 +01:00
Cassowary	5637a59368	chore: publish 1.1.0+0.24.6 release All checks were successful continuous-integration/drone/tag Build is passing Details continuous-integration/drone/push Build is passing Details	2025-01-19 10:28:23 -08:00
Cassowary	e039b08ff0	Update .drone.yml All checks were successful continuous-integration/drone/push Build is passing Details	2025-01-08 10:09:13 -08:00
Moritz	db3edafbee	add REDIRECT_DOMAIN All checks were successful continuous-integration/drone/push Build is passing Details	2024-10-26 00:06:03 +02:00
Moritz	ce8c3eec63	add EXTRA_DOMAINS env All checks were successful continuous-integration/drone/push Build is passing Details	2024-10-25 22:43:56 +02:00
Moritz	c4a74a817a	fix drone runner All checks were successful continuous-integration/drone/push Build is passing Details	2024-10-25 22:13:55 +02:00
Moritz	2011a91921	chore: publish 1.0.3+0.24.2 release Some checks failed continuous-integration/drone/push Build is failing Details continuous-integration/drone/tag Build is passing Details	2024-10-25 21:50:45 +02:00
Moritz	dddc5f7df2	fix redis, don't publish ports!	2024-10-25 21:50:14 +02:00
Moritz	3bb2a94d3a	chore: publish 1.0.2+0.24.2 release Some checks failed continuous-integration/drone/tag Build is passing Details continuous-integration/drone/push Build is failing Details	2024-10-22 21:11:28 +02:00
Moritz	27f33cd0d5	update backupbot labels	2024-10-22 21:11:23 +02:00
Moritz	4e5dc4e185	add debug Dockerfile All checks were successful continuous-integration/drone/push Build is passing Details	2024-10-15 14:07:29 +02:00
Moritz	c18d143b7c	fix drone runner All checks were successful continuous-integration/drone/push Build is passing Details	2024-10-08 15:43:13 +02:00
Moritz	bc1bdc825b	chore: publish 1.0.1+0.24.2 release Some checks failed continuous-integration/drone/push Build is failing Details continuous-integration/drone/tag Build is passing Details	2024-10-08 15:39:45 +02:00
Moritz	2e40802f55	specify redis version	2024-10-08 15:39:06 +02:00
Moritz	95cf5c9374	add healthcheck binary Some checks failed continuous-integration/drone/push Build is failing Details	2024-10-08 15:32:06 +02:00