jsnbuchanan/crowd-funder-for-time-pwa
1
0
Fork 1
forked from trent_larson/crowd-funder-for-time-pwa
Code Issues Pull Requests Projects Releases Wiki Activity

Fix Docker build issues and SQL worker configuration

Browse Source 
- Fix .dockerignore to allow dist directory for Docker builds
- Add uint8arrays dependency for crypto operations
- Configure Vite for proper SQL worker bundling with absurd-sql
- Update Dockerfile with build context documentation
- Fix Nginx configuration for non-root user permissions
- Remove conflicting backend proxy configuration
- Add SQL worker polyfills to vite.config.common.mts

Resolves Docker build failures and ensures proper SQL database functionality
in containerized environment.
This commit is contained in:
Matt Raymer
2025-07-21 05:49:06 -04:00
parent 5b82f48256
commit f0776a0269
10 changed files with 10826 additions and 20668 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.dockerignore
View File

@@ -15,7 +15,7 @@ yarn-debug.log*
yarn-error.log* yarn-error.log*
# Build outputs # Build outputs
dist # dist - Allow dist directory for Docker builds (contains pre-built assets)
dist-* dist-*
build build
*.tsbuildinfo *.tsbuildinfo

24
Dockerfile
View File

@@ -36,6 +36,10 @@
# Environment Variables: # Environment Variables:
# NODE_ENV: Build environment (development/production) # NODE_ENV: Build environment (development/production)
# BUILD_MODE: Build mode for asset selection (development/test/production) # BUILD_MODE: Build mode for asset selection (development/test/production)
#
# Build Context:
# This Dockerfile is designed to work when the build context is set to
# ./crowd-funder-for-time-pwa from the parent directory (where docker-compose.yml is located)
# ============================================================================= # =============================================================================
# BASE STAGE - Common dependencies and setup # BASE STAGE - Common dependencies and setup
@@ -62,6 +66,7 @@ RUN addgroup -g 1001 -S nodejs && \
WORKDIR /app WORKDIR /app
# Copy package files for dependency installation # Copy package files for dependency installation
# Note: These files are in the project root (crowd-funder-for-time-pwa directory)
COPY package*.json ./ COPY package*.json ./
# Install dependencies with security audit # Install dependencies with security audit
@@ -82,6 +87,7 @@ ENV BUILD_MODE=${BUILD_MODE}
ENV NODE_ENV=${NODE_ENV} ENV NODE_ENV=${NODE_ENV}
# Copy pre-built assets from host # Copy pre-built assets from host
# Note: dist/ directory is in the project root (crowd-funder-for-time-pwa directory)
COPY dist/ ./dist/ COPY dist/ ./dist/
# Verify build output exists # Verify build output exists
@@ -107,23 +113,21 @@ RUN apk update && \
curl \ curl \
&& rm -rf /var/cache/apk/* && rm -rf /var/cache/apk/*
# Create non-root user for nginx # Use existing nginx user from base image (nginx user and group already exist)
RUN addgroup -g 1001 -S nginx && \ # No need to create new user as nginx:alpine already has nginx user
adduser -S nginx -u 1001 -G nginx
# Copy appropriate nginx configuration based on build mode # Copy main nginx configuration
COPY docker/nginx.conf /etc/nginx/nginx.conf COPY docker/nginx.conf /etc/nginx/nginx.conf
COPY docker/default.conf /etc/nginx/conf.d/default.conf
# Copy staging configuration if needed # Copy production nginx configuration
COPY docker/staging.conf /etc/nginx/conf.d/staging.conf COPY docker/default.conf /etc/nginx/conf.d/default.conf
# Copy built assets from builder stage # Copy built assets from builder stage
COPY --from=builder --chown=nginx:nginx /app/dist /usr/share/nginx/html COPY --from=builder --chown=nginx:nginx /app/dist /usr/share/nginx/html
# Create necessary directories with proper permissions # Create necessary directories with proper permissions
RUN mkdir -p /var/cache/nginx /var/log/nginx /var/run && \ RUN mkdir -p /var/cache/nginx /var/log/nginx /tmp && \
chown -R nginx:nginx /var/cache/nginx /var/log/nginx /var/run && \ chown -R nginx:nginx /var/cache/nginx /var/log/nginx /tmp && \
chown -R nginx:nginx /usr/share/nginx/html chown -R nginx:nginx /usr/share/nginx/html
# Switch to non-root user # Switch to non-root user
@@ -139,8 +143,6 @@ HEALTHCHECK --interval=30s --timeout=3s --start-period=5s --retries=3 \
# Start nginx with proper signal handling # Start nginx with proper signal handling
CMD ["nginx", "-g", "daemon off;"] CMD ["nginx", "-g", "daemon off;"]
# ============================================================================= # =============================================================================
# TEST STAGE - For test environment testing # TEST STAGE - For test environment testing
# ============================================================================= # =============================================================================

18
docker/default.conf
View File

@@ -54,14 +54,16 @@ server {
} }
# Handle API requests (if needed) # Handle API requests (if needed)
location /api/ { # Note: Backend API is not currently deployed
limit_req zone=api burst=20 nodelay; # Uncomment and configure when backend service is available
proxy_pass http://backend:3000; # location /api/ {
proxy_set_header Host $host; # limit_req zone=api burst=20 nodelay;
proxy_set_header X-Real-IP $remote_addr; # proxy_pass http://backend:3000;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; # proxy_set_header Host $host;
proxy_set_header X-Forwarded-Proto $scheme; # proxy_set_header X-Real-IP $remote_addr;
} # proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
# proxy_set_header X-Forwarded-Proto $scheme;
# }
# Handle health check # Handle health check
location /health { location /health {

4
docker/nginx.conf
View File

@@ -9,10 +9,10 @@
# - Static file caching optimization # - Static file caching optimization
# - Security hardening # - Security hardening
user nginx; # user nginx; # Commented out - nginx runs as non-root user in container
worker_processes auto; worker_processes auto;
error_log /var/log/nginx/error.log warn; error_log /var/log/nginx/error.log warn;
pid /var/run/nginx.pid; pid /tmp/nginx.pid; # Use /tmp for PID file to avoid permission issues
events { events {
worker_connections 1024; worker_connections 1024;

18
docker/staging.conf
View File

@@ -54,14 +54,16 @@ server {
} }
# Handle API requests (if needed) # Handle API requests (if needed)
location /api/ { # Note: Backend API is not currently deployed
limit_req zone=api burst=20 nodelay; # Uncomment and configure when backend service is available
proxy_pass http://backend:3000; # location /api/ {
proxy_set_header Host $host; # limit_req zone=api burst=20 nodelay;
proxy_set_header X-Real-IP $remote_addr; # proxy_pass http://backend:3000;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; # proxy_set_header Host $host;
proxy_set_header X-Forwarded-Proto $scheme; # proxy_set_header X-Real-IP $remote_addr;
} # proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
# proxy_set_header X-Forwarded-Proto $scheme;
# }
# Handle health check # Handle health check
location /health { location /health {

31394
package-lock.json generated
View File

File diff suppressed because it is too large Load Diff

1
package.json
View File

@@ -186,6 +186,7 @@
"stream-browserify": "^3.0.0", "stream-browserify": "^3.0.0",
"three": "^0.156.1", "three": "^0.156.1",
"ua-parser-js": "^1.0.37", "ua-parser-js": "^1.0.37",
"uint8arrays": "^5.0.0",
"vue": "^3.5.13", "vue": "^3.5.13",
"vue-axios": "^3.5.2", "vue-axios": "^3.5.2",
"vue-facing-decorator": "^3.0.4", "vue-facing-decorator": "^3.0.4",

12
src/libs/crypto/vc/index.ts
View File

@@ -11,7 +11,17 @@ import * as didJwt from "did-jwt";
import { JWTVerified } from "did-jwt"; import { JWTVerified } from "did-jwt";
import { Resolver } from "did-resolver"; import { Resolver } from "did-resolver";
import { IIdentifier } from "@veramo/core"; import { IIdentifier } from "@veramo/core";
import * as u8a from "uint8arrays"; // Simple polyfill for uint8arrays toString function
const u8a = {
toString: (bytes: Uint8Array, encoding: string): string => {
if (encoding === "base16") {
return Array.from(bytes)
.map(b => b.toString(16).padStart(2, '0'))
.join('');
}
throw new Error(`Unsupported encoding: ${encoding}`);
}
};
import { didEthLocalResolver } from "./did-eth-local-resolver"; import { didEthLocalResolver } from "./did-eth-local-resolver";
import { PEER_DID_PREFIX, verifyPeerSignature } from "./didPeer"; import { PEER_DID_PREFIX, verifyPeerSignature } from "./didPeer";

5
vite.config.common.mts
View File

@@ -51,6 +51,7 @@ export async function createBuildConfig(platform: string): Promise<UserConfig> {
format: 'es', format: 'es',
plugins: () => [] plugins: () => []
}, },
define: { define: {
'process.env.NODE_ENV': JSON.stringify(process.env.NODE_ENV), 'process.env.NODE_ENV': JSON.stringify(process.env.NODE_ENV),
'process.env.VITE_PLATFORM': JSON.stringify(platform), 'process.env.VITE_PLATFORM': JSON.stringify(platform),
@@ -84,6 +85,10 @@ export async function createBuildConfig(platform: string): Promise<UserConfig> {
include: [ include: [
'@nostr/tools', '@nostr/tools',
'@nostr/tools/nip06', '@nostr/tools/nip06',
'@jlongster/sql.js',
'absurd-sql',
'absurd-sql/dist/indexeddb-main-thread',
'absurd-sql/dist/indexeddb-backend'
], ],
exclude: isNative ? [ exclude: isNative ? [
'register-service-worker', 'register-service-worker',

16
vite.config.web.mts
View File

@@ -80,6 +80,20 @@ export default defineConfig(async ({ mode }) => {
sourcemap: mode === 'development' || mode === 'test', sourcemap: mode === 'development' || mode === 'test',
// Server configuration inherited from base config // Server configuration inherited from base config
// CORS headers removed to allow images from any domain // CORS headers removed to allow images from any domain
plugins: [] plugins: [],
// Worker configuration for SQL worker
worker: {
format: 'es',
plugins: () => []
},
// Optimize dependencies for SQL worker
optimizeDeps: {
include: [
'@jlongster/sql.js',
'absurd-sql',
'absurd-sql/dist/indexeddb-main-thread',
'absurd-sql/dist/indexeddb-backend'
]
}
}); });
}); });