feat(docker): add Firebase credentials volume to Docker Compose for OAuth integration

2025-12-10 19:37:11 +09:00 · 2025-12-10 19:37:11 +09:00 · 8b268640a5
commit 8b268640a5
parent 8a549504a4
3 changed files with 9 additions and 2 deletions
--- a/.gitignore
+++ b/.gitignore
@ -4,4 +4,5 @@
 *.gocache
 *.exe
 */dist
 */secrets
 */node_modules
--- a/backend/Dockerfile
+++ b/backend/Dockerfile
@ -25,8 +25,10 @@ RUN --mount=type=cache,target=/root/.cache/go-build \
 FROM alpine:3.20
 # minimal tools for healthcheck + TLS roots + timezone
 RUN apk add --no-cache ca-certificates tzdata curl && \
-    adduser -D -H -u 10001 app
+    adduser -D -H -u 10001 app && \
    mkdir -p /home/app && chown app:app /home/app
 USER app
 ENV HOME=/home/app
 WORKDIR /app
 COPY --from=builder /out/server /app/server
@ -37,4 +39,4 @@ EXPOSE 8082
 HEALTHCHECK --interval=15s --timeout=3s --retries=3 \
    CMD curl -sf http://localhost:8082/healthz || exit 1
-ENTRYPOINT ["/app/server"]
+ENTRYPOINT ["/app/server"]
--- a/docker-compose.yml
+++ b/docker-compose.yml
@ -65,6 +65,8 @@ services:
    entrypoint: ["/app/migrate"]
    env_file:
      - ./.env
    volumes:
      - ./backend/secrets/firebase_credentials.json:/secrets/firebase_credentials.json:ro
    depends_on:
      db:
        condition: service_healthy
@ -83,6 +85,8 @@ services:
        condition: service_completed_successfully
    expose:
      - "8082"
    volumes:
      - ./backend/secrets/firebase_credentials.json:/secrets/firebase_credentials.json:ro
    restart: unless-stopped
    networks: [internal]
    healthcheck: