mirror of
https://github.com/kevinveenbirkenbach/computer-playbook.git
synced 2025-09-08 19:27:18 +02:00
Kevin Veen-Birkenbach
33a5fadf67
• Add roles/web-app-chess/files/Dockerfile using build ARGs (CHESS_VERSION, CHESS_REPO_URL, CHESS_REPO_REF, CHESS_ENTRYPOINT_REL, CHESS_ENTRYPOINT_INT, CHESS_APP_DATA_DIR, CONTAINER_PORT). Enable Corepack/Yarn as root in the runtime stage to avoid EACCES on /usr/local/bin symlinks, then drop privileges to 'node'. • Delete Jinja-based templates/Dockerfile.j2; docker-compose now passes former Jinja vars via build.args. • Update templates/docker-compose.yml.j2 to forward all required build args. • Update config/main.yml: add CSP flag 'script-src-elem: unsafe-inline'. Ref: https://chatgpt.com/share/68b88d3d-3bd8-800f-9723-e8df0cdc37e2
36 lines
845 B
YAML
36 lines
845 B
YAML
credentials: {}
|
|
docker:
|
|
services:
|
|
database:
|
|
enabled: true # Use central DB role (recommended)
|
|
application:
|
|
image: "node" # Base image family; final image is custom
|
|
version: "20-bullseye" # >=16 as required upstream
|
|
name: "web-app-chess"
|
|
backup:
|
|
no_stop_required: true
|
|
volumes:
|
|
data: "chess_data"
|
|
features:
|
|
matomo: true
|
|
css: true
|
|
desktop: true
|
|
central_database: true
|
|
logout: false
|
|
oidc: false
|
|
server:
|
|
csp:
|
|
whitelist: {}
|
|
flags:
|
|
script-src-elem:
|
|
unsafe-inline: true
|
|
domains:
|
|
canonical:
|
|
- "chess.{{ PRIMARY_DOMAIN }}"
|
|
aliases: []
|
|
rbac:
|
|
roles: {}
|
|
source:
|
|
repo: "https://github.com/stephank/castling.club.git"
|
|
ref: "main"
|