vndangkhoa/kv-music
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge pull request #331 from itsmo-ks/fix-docker-env-vars

Browse source 
Enhance Docker and environment variable handling for authentication
This commit is contained in:
edideaur 2026-03-16 14:36:07 +02:00 committed by GitHub
commit 23c53eb05f
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
4 changed files with 51 additions and 35 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
Dockerfile
View file

@ -7,6 +7,14 @@ WORKDIR /app
RUN apk add --no-cache wget curl bash RUN apk add --no-cache wget curl bash
RUN apk add --no-cache python3 make g++ && ln -sf python3 /usr/bin/python RUN apk add --no-cache python3 make g++ && ln -sf python3 /usr/bin/python
# Accept build arguments for environment variables
ARG AUTH_ENABLED
ARG AUTH_SECRET
ARG APPWRITE_ENDPOINT
ARG APPWRITE_PROJECT_ID
ARG POCKETBASE_URL
ARG SESSION_MAX_AGE
# Copy package files first for caching # Copy package files first for caching
COPY package.json package-lock.json ./ COPY package.json package-lock.json ./

14
docker-compose.yml
View file

@ -4,16 +4,16 @@ services:
build: build:
context: . context: .
dockerfile: Dockerfile dockerfile: Dockerfile
args:
- AUTH_ENABLED=${AUTH_ENABLED}
- AUTH_SECRET=${AUTH_SECRET}
- APPWRITE_ENDPOINT=${APPWRITE_ENDPOINT}
- APPWRITE_PROJECT_ID=${APPWRITE_PROJECT_ID}
- POCKETBASE_URL=${POCKETBASE_URL}
- SESSION_MAX_AGE=${SESSION_MAX_AGE}
container_name: monochrome container_name: monochrome
ports: ports:
- '${MONOCHROME_PORT:-3000}:4173' - '${MONOCHROME_PORT:-3000}:4173'
environment:
AUTH_ENABLED: ${AUTH_ENABLED:-false}
AUTH_SECRET: ${AUTH_SECRET:-}
APPWRITE_ENDPOINT: ${APPWRITE_ENDPOINT:-https://auth.yourdomain.com/v1}
APPWRITE_PROJECT_ID: ${APPWRITE_PROJECT_ID:-auth-for-monochrome}
POCKETBASE_URL: ${POCKETBASE_URL:-}
SESSION_MAX_AGE: ${SESSION_MAX_AGE:-604800000}
restart: unless-stopped restart: unless-stopped
networks: networks:
- monochrome-network - monochrome-network

2
js/accounts/pocketbase.js
View file

@ -5,7 +5,7 @@ import { authManager } from './auth.js';
const PUBLIC_COLLECTION = 'public_playlists'; const PUBLIC_COLLECTION = 'public_playlists';
const DEFAULT_POCKETBASE_URL = 'https://data.samidy.xyz'; const DEFAULT_POCKETBASE_URL = 'https://data.samidy.xyz';
const POCKETBASE_URL = localStorage.getItem('monochrome-pocketbase-url') || DEFAULT_POCKETBASE_URL; const POCKETBASE_URL = window.__POCKETBASE_URL__ || localStorage.getItem('monochrome-pocketbase-url') || DEFAULT_POCKETBASE_URL;
console.log('[PocketBase] Using URL:', POCKETBASE_URL); console.log('[PocketBase] Using URL:', POCKETBASE_URL);

42
vite-plugin-auth-gate.js
View file

@ -19,17 +19,7 @@ function parseBody(req) {
}); });
} }
export default function authGatePlugin() { function buildInjectionScript(env) {
let env = {};
return {
name: 'auth-gate',
config(_, { mode }) {
env = loadEnv(mode, process.cwd(), '');
},
configurePreviewServer(server) {
const AUTH_ENABLED = (env.AUTH_ENABLED ?? 'false') !== 'false'; const AUTH_ENABLED = (env.AUTH_ENABLED ?? 'false') !== 'false';
const APPWRITE_ENDPOINT = env.APPWRITE_ENDPOINT; const APPWRITE_ENDPOINT = env.APPWRITE_ENDPOINT;
const APPWRITE_PROJECT_ID = env.APPWRITE_PROJECT_ID; const APPWRITE_PROJECT_ID = env.APPWRITE_PROJECT_ID;
@ -37,8 +27,6 @@ export default function authGatePlugin() {
const AUTH_GOOGLE_ENABLED = env.AUTH_GOOGLE_ENABLED; const AUTH_GOOGLE_ENABLED = env.AUTH_GOOGLE_ENABLED;
const AUTH_EMAIL_ENABLED = env.AUTH_EMAIL_ENABLED; const AUTH_EMAIL_ENABLED = env.AUTH_EMAIL_ENABLED;
// --- Build injection script (always, for both auth gate and env config) ---
const flags = []; const flags = [];
if (AUTH_ENABLED) flags.push('window.__AUTH_GATE__=true'); if (AUTH_ENABLED) flags.push('window.__AUTH_GATE__=true');
const authProviderOverrides = {}; const authProviderOverrides = {};
@ -52,10 +40,29 @@ export default function authGatePlugin() {
flags.push(`window.__AUTH_PROVIDERS__=${JSON.stringify(authProviderOverrides)}`); flags.push(`window.__AUTH_PROVIDERS__=${JSON.stringify(authProviderOverrides)}`);
} }
if (APPWRITE_ENDPOINT) flags.push(`window.__APPWRITE_ENDPOINT__=${JSON.stringify(APPWRITE_ENDPOINT)}`); if (APPWRITE_ENDPOINT) flags.push(`window.__APPWRITE_ENDPOINT__=${JSON.stringify(APPWRITE_ENDPOINT)}`);
if (APPWRITE_PROJECT_ID) if (APPWRITE_PROJECT_ID) flags.push(`window.__APPWRITE_PROJECT_ID__=${JSON.stringify(APPWRITE_PROJECT_ID)}`);
flags.push(`window.__APPWRITE_PROJECT_ID__=${JSON.stringify(APPWRITE_PROJECT_ID)}`);
if (POCKETBASE_URL) flags.push(`window.__POCKETBASE_URL__=${JSON.stringify(POCKETBASE_URL)}`); if (POCKETBASE_URL) flags.push(`window.__POCKETBASE_URL__=${JSON.stringify(POCKETBASE_URL)}`);
const configScript = flags.length > 0 ? `<script>${flags.join(';')};</script>` : null;
return flags.length > 0 ? `<script>${flags.join(';')};</script>` : null;
}
export default function authGatePlugin() {
let env = {};
return {
name: 'auth-gate',
config(_, { mode }) {
env = loadEnv(mode, process.cwd(), '');
},
transformIndexHtml(html) {
const scriptTag = buildInjectionScript(env);
return scriptTag ? html.replace('</head>', `${scriptTag}\n</head>`) : html;
},
configurePreviewServer(server) {
const configScript = buildInjectionScript(env);
// --- Pre-build injected HTML pages --- // --- Pre-build injected HTML pages ---
@ -69,6 +76,7 @@ export default function authGatePlugin() {
} }
let loginHtml = null; let loginHtml = null;
const AUTH_ENABLED = (env.AUTH_ENABLED ?? 'false') !== 'false';
if (AUTH_ENABLED) { if (AUTH_ENABLED) {
const loginPath = join(distDir, 'login.html'); const loginPath = join(distDir, 'login.html');
if (existsSync(loginPath)) { if (existsSync(loginPath)) {
@ -98,7 +106,7 @@ export default function authGatePlugin() {
process.exit(1); process.exit(1);
} }
console.log(`Auth gate enabled (Project: ${APPWRITE_PROJECT_ID})`); console.log(`Auth gate enabled (Project: ${env.APPWRITE_PROJECT_ID})`);
server.middlewares.use( server.middlewares.use(
cookieSession({ cookieSession({