From 8b268640a557c560e975bedc84b5720fbfae9bcf Mon Sep 17 00:00:00 2001 From: Nik Afiq Date: Wed, 10 Dec 2025 19:37:11 +0900 Subject: [PATCH] feat(docker): add Firebase credentials volume to Docker Compose for OAuth integration --- .gitignore | 1 + backend/Dockerfile | 6 ++++-- docker-compose.yml | 4 ++++ 3 files changed, 9 insertions(+), 2 deletions(-) diff --git a/.gitignore b/.gitignore index 0577391..7018fad 100644 --- a/.gitignore +++ b/.gitignore @@ -4,4 +4,5 @@ *.gocache *.exe */dist +*/secrets */node_modules \ No newline at end of file diff --git a/backend/Dockerfile b/backend/Dockerfile index 23716a4..65f3c39 100644 --- a/backend/Dockerfile +++ b/backend/Dockerfile @@ -25,8 +25,10 @@ RUN --mount=type=cache,target=/root/.cache/go-build \ FROM alpine:3.20 # minimal tools for healthcheck + TLS roots + timezone RUN apk add --no-cache ca-certificates tzdata curl && \ - adduser -D -H -u 10001 app + adduser -D -H -u 10001 app && \ + mkdir -p /home/app && chown app:app /home/app USER app +ENV HOME=/home/app WORKDIR /app COPY --from=builder /out/server /app/server @@ -37,4 +39,4 @@ EXPOSE 8082 HEALTHCHECK --interval=15s --timeout=3s --retries=3 \ CMD curl -sf http://localhost:8082/healthz || exit 1 -ENTRYPOINT ["/app/server"] \ No newline at end of file +ENTRYPOINT ["/app/server"] diff --git a/docker-compose.yml b/docker-compose.yml index 88fd746..f58a693 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -65,6 +65,8 @@ services: entrypoint: ["/app/migrate"] env_file: - ./.env + volumes: + - ./backend/secrets/firebase_credentials.json:/secrets/firebase_credentials.json:ro depends_on: db: condition: service_healthy @@ -83,6 +85,8 @@ services: condition: service_completed_successfully expose: - "8082" + volumes: + - ./backend/secrets/firebase_credentials.json:/secrets/firebase_credentials.json:ro restart: unless-stopped networks: [internal] healthcheck: