Complete V1 scaffold

2026-06-07 15:21:35 +00:00 · 2026-03-14 20:01:53 -04:00
parent d395776a95
commit 3a9fe8ba37
30 changed files with 6131 additions and 104 deletions
@@ -1,28 +1,29 @@
-version: '3.8'
-
 services:
  # PostgreSQL database
  postgres:
    image: postgres:16-alpine
    container_name: certctl-postgres
    environment:
-      POSTGRES_DB: ${POSTGRES_DB:-certctl}
-      POSTGRES_USER: ${POSTGRES_USER:-certctl}
-      POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:-certctl}
+      POSTGRES_DB: certctl
+      POSTGRES_USER: certctl
+      POSTGRES_PASSWORD: certctl
    ports:
-      - "${POSTGRES_PORT:-5432}:5432"
+      - "5432:5432"
    volumes:
      - postgres_data:/var/lib/postgresql/data
+      - ../migrations/000001_initial_schema.up.sql:/docker-entrypoint-initdb.d/001_schema.sql
+      - ../migrations/seed.sql:/docker-entrypoint-initdb.d/002_seed.sql
+      - ../migrations/seed_demo.sql:/docker-entrypoint-initdb.d/003_seed_demo.sql
    networks:
      - certctl-network
    healthcheck:
-      test: ["CMD-SHELL", "pg_isready -U ${POSTGRES_USER:-certctl} -d ${POSTGRES_DB:-certctl}"]
-      interval: 10s
+      test: ["CMD-SHELL", "pg_isready -U certctl -d certctl"]
+      interval: 5s
      timeout: 5s
      retries: 5
    restart: unless-stopped

-  # Certctl Server
+  # Certctl Server (API + scheduler)
  certctl-server:
    build:
      context: ..
@@ -32,45 +33,21 @@ services:
      postgres:
        condition: service_healthy
    environment:
-      # Database configuration
-      DB_HOST: postgres
-      DB_PORT: 5432
-      DB_USER: ${POSTGRES_USER:-certctl}
-      DB_PASSWORD: ${POSTGRES_PASSWORD:-certctl}
-      DB_NAME: ${POSTGRES_DB:-certctl}
-      DB_SSL_MODE: disable
-
-      # Server configuration
-      SERVER_HOST: 0.0.0.0
-      SERVER_PORT: 8443
-      LOG_LEVEL: info
-
-      # ACME Configuration (example: Let's Encrypt staging)
-      ACME_DIRECTORY_URL: https://acme-staging-v02.api.letsencrypt.org/directory
-      ACME_EMAIL: ${ACME_EMAIL:-admin@example.com}
-
-      # SMTP Configuration (for email notifications)
-      SMTP_HOST: ${SMTP_HOST:-smtp.example.com}
-      SMTP_PORT: 587
-      SMTP_USERNAME: ${SMTP_USERNAME:-}
-      SMTP_PASSWORD: ${SMTP_PASSWORD:-}
-      SMTP_FROM_ADDRESS: ${SMTP_FROM_ADDRESS:-certctl@example.com}
-
-      # Webhook Configuration (optional)
-      WEBHOOK_URL: ${WEBHOOK_URL:-}
-      WEBHOOK_SECRET: ${WEBHOOK_SECRET:-}
+      CERTCTL_DB_URL: postgres://certctl:certctl@postgres:5432/certctl?sslmode=disable
+      CERTCTL_SERVER_HOST: 0.0.0.0
+      CERTCTL_SERVER_PORT: 8443
+      CERTCTL_LOG_LEVEL: info
    ports:
-      - "${SERVER_PORT:-8443}:8443"
+      - "8443:8443"
    networks:
      - certctl-network
    healthcheck:
      test: ["CMD", "curl", "-f", "http://localhost:8443/health"]
-      interval: 30s
-      timeout: 3s
-      retries: 3
-      start_period: 5s
+      interval: 10s
+      timeout: 5s
+      retries: 5
    restart: unless-stopped
-    logs:
+    logging:
      driver: "json-file"
      options:
        max-size: "10m"
@@ -86,18 +63,14 @@ services:
      certctl-server:
        condition: service_healthy
    environment:
-      # Server configuration
-      SERVER_URL: http://certctl-server:8443
-      API_KEY: ${AGENT_API_KEY:-change-me-in-production}
-      AGENT_NAME: ${AGENT_NAME:-docker-agent}
-
-      # Agent configuration
-      LOG_LEVEL: info
-      CHECK_INTERVAL: 60s
+      CERTCTL_SERVER_URL: http://certctl-server:8443
+      CERTCTL_API_KEY: change-me-in-production
+      CERTCTL_AGENT_NAME: docker-agent
+      CERTCTL_LOG_LEVEL: info
    networks:
      - certctl-network
    restart: unless-stopped
-    logs:
+    logging:
      driver: "json-file"
      options:
        max-size: "10m"