Patrick Plate
ade9673f02
CI — Build, Lint & Security Scan / frontend (push) Has been cancelled
CI — Build, Lint & Security Scan / image-scan (push) Has been cancelled
CI — Build, Lint & Security Scan / secrets-scan (push) Has been cancelled
CI — Build, Lint & Security Scan / backend (push) Has been cancelled
Deploy to TrueNAS / deploy (push) Has been cancelled
- Make OWASP, Gitleaks, pnpm audit blocking (remove || true fallbacks) - Add Maven -T 1C for parallel reactor threads - Fix parallel Docker build race condition (PID tracking + set -euo pipefail) - Externalize JWT/NextAuth secrets via env vars with dev-only defaults - Add .env.example with generation instructions - Add CI/CD infrastructure review document
21 lines
930 B
YAML
21 lines
930 B
YAML
# TrueNAS homelab override — replaces localhost with 192.168.188.119
|
|
# Applied on top of docker-compose.yml for the homelab deployment on TrueNAS.local.
|
|
# Usage:
|
|
# docker compose -f docker-compose.yml -f docker-compose.truenas.yml up -d --build
|
|
services:
|
|
backend:
|
|
# Host port 8080 is taken by odysseus-searxng-1; remap to 8081.
|
|
# !override replaces the inherited ports list (compose merges lists by concat otherwise).
|
|
# Internal container port stays 8080 so frontend's BACKEND_URL=http://backend:8080 is unaffected.
|
|
ports: !override
|
|
- "8081:8080"
|
|
|
|
frontend:
|
|
environment:
|
|
NEXTAUTH_URL: http://192.168.188.119:3000
|
|
AUTH_URL: http://192.168.188.119:3000
|
|
# NextAuth v5 (Auth.js) reads AUTH_SECRET, not NEXTAUTH_SECRET. Without it at
|
|
# runtime, signIn throws MissingSecret -> the app error boundary shows 'Oops'.
|
|
AUTH_SECRET: ${AUTH_SECRET}
|
|
AUTH_TRUST_HOST: "true"
|