Reinstate ancient database settings for VREC

Reviewed-on: coop-cloud/outline#11

README.md

@@ -43,10 +43,6 @@ _As of 2022-03-30, this requires `abra` RC version, run `abra upgrade --rc`._
 
 Avoid the use of quotes (`"..."`) as much as possible, the NodeJS scripts flip out for some reason on some vars.
 
-### Multiple users logging in & generic oauth
-
-`COMPOSE_FILE="compose.yml:compose.patch.yml"`
-
 ### Deleting a user (e.g. to fix SSO weirdness)
 
 `abra app cmd YOURAPPNAME db delete_user <username-to-delete> <username-to-replace>`

abra.sh

@@ -1,4 +1,4 @@
-export APP_ENTRYPOINT_VERSION=v5
+export APP_ENTRYPOINT_VERSION=v6
 
 migrate() {
 	export DATABASE_PASSWORD=$(cat /run/secrets/db_password)

compose.google.yml

@@ -8,6 +8,7 @@ services:
     environment:
       - GOOGLE_CLIENT_ID
       - GOOGLE_ENABLED
+      - ALLOWED_DOMAINS
 
 secrets:
   google_client_secret:

compose.yml

@@ -6,7 +6,7 @@ services:
     networks:
       - backend
       - proxy
-    image: outlinewiki/outline:0.64.3
+    image: outlinewiki/outline:0.64.4
     secrets:
       - aws_secret_key
       - db_password
@@ -27,6 +27,7 @@ services:
       - AWS_SDK_LOAD_CONFIG=0
       - AWS_SECRET_KEY_FILE=/run/secrets/aws_secret_key
       - DATABASE_PASSWORD_FILE=/run/secrets/db_password
+      - DATABASE_PASSWORD=pass
       - FORCE_HTTPS=true
       - PGSSLMODE=disable
       - REDIS_URL=redis://${STACK_NAME}_cache:6379
@@ -43,7 +44,7 @@ services:
         - "traefik.http.routers.${STACK_NAME}.rule=Host(`${DOMAIN}`${EXTRA_DOMAINS})"
         - "traefik.http.routers.${STACK_NAME}.entrypoints=web-secure"
         - "traefik.http.routers.${STACK_NAME}.tls.certresolver=${LETS_ENCRYPT_ENV}"
-        - "coop-cloud.${STACK_NAME}.version=0.4.0+0.64.3"
+        - "coop-cloud.${STACK_NAME}.version=0.4.1+0.64.4"
         ## Redirect from EXTRA_DOMAINS to DOMAIN
         #- "traefik.http.routers.${STACK_NAME}.middlewares=${STACK_NAME}-redirect"
         #- "traefik.http.middlewares.${STACK_NAME}-redirect.headers.SSLForceHost=true"
@@ -54,7 +55,7 @@ services:
     networks:
       - backend
 
-  db:
+  postgres:
     image: postgres:11
     networks:
       - backend
@@ -62,8 +63,8 @@ services:
       - db_password
     environment:
       POSTGRES_DB: outline
-      POSTGRES_PASSWORD_FILE: /run/secrets/db_password
+      POSTGRES_PASSWORD: pass
-      POSTGRES_USER: outline
+      POSTGRES_USER: user
     volumes:
       - "postgres_data:/var/lib/postgresql/data"
 

entrypoint.sh.tmpl

@@ -12,7 +12,8 @@ export GOOGLE_CLIENT_SECRET=$(cat /run/secrets/google_client_secret)
 
 export UTILS_SECRET=$(cat /run/secrets/utils_secret)
 export SECRET_KEY=$(cat /run/secrets/secret_key)
-export DATABASE_PASSWORD=$(cat /run/secrets/db_password)
+#export DATABASE_PASSWORD=$(cat /run/secrets/db_password)
-export DATABASE_URL="postgres://outline:${DATABASE_PASSWORD}@${STACK_NAME}_db:5432/outline"
+export DATABASE_URL="postgres://user:${DATABASE_PASSWORD}@${STACK_NAME}_postgres:5432/outline"
 
+/usr/local/bin/yarn db:migrate --env=production-ssl-disabled
 /usr/local/bin/yarn start "$@"

release/0.4.0+0.64.3

@@ -6,7 +6,8 @@ users are enjoying using it.
 
 - Additional login methods have been added e.g. Google (yep...). You now need
   to make a choice of which authentication you want to make. This can be done by
-  using the usual `$AUTH_ENABLED=1` environment variable condition.
+  using the usual `$AUTH_ENABLED=1` environment variable condition. See the
+  recipe `.env.sample` for more.
 
 - If you were using the generic OpenID Connect authentication method (e.g.
   Keycloak, Authentik) then you will now need to use