CooperandGoodman/homeschool
1
0
Fork 0
Code Issues Pull Requests Activity
Files
663b50686845c408f6b2e6ba5c7fb2a7ec6cd0b8
homeschool/docker-compose.yml
derekc 663b506868 Pin versions, add resource limits, and harden config 
- Pin all Docker image tags (mysql 8.0.40, python 3.12.13-slim, node 20.20.1-alpine, nginx 1.29.6-alpine)
- Pin all frontend npm dependencies to exact versions (remove ^ ranges)
- Add mem_limit and cpus resource limits to all three containers
- Add non-root appuser to backend Dockerfile
- Migrate JWT from python-jose to PyJWT
- Remove default admin_password in config.py — must be explicitly set in .env
- Add DOCS_ENABLED flag to config and .env.example (default false)
- Add indexes on session_date, is_active, event_type in session models
- Add limit/offset pagination to all log endpoints

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-03-22 00:01:32 -07:00

63 lines
1.5 KiB
YAML
Raw Blame History

services:
db:
image: mysql:8.0.40
container_name: homeschool_db
restart: unless-stopped
environment:
MYSQL_ROOT_PASSWORD: ${MYSQL_ROOT_PASSWORD}
MYSQL_DATABASE: ${MYSQL_DATABASE}
MYSQL_USER: ${MYSQL_USER}
MYSQL_PASSWORD: ${MYSQL_PASSWORD}
volumes:
- mysql_data:/var/lib/mysql
networks:
- homeschool_net
healthcheck:
test: ["CMD", "mysqladmin", "ping", "-h", "localhost", "-u", "root", "-p${MYSQL_ROOT_PASSWORD}"]
interval: 10s
timeout: 5s
retries: 5
mem_limit: 512m
cpus: 1.0
backend:
build: ./backend
container_name: homeschool_backend
restart: unless-stopped
environment:
DATABASE_URL: mysql+aiomysql://${MYSQL_USER}:${MYSQL_PASSWORD}@db/${MYSQL_DATABASE}
SECRET_KEY: ${SECRET_KEY}
ALGORITHM: ${ALGORITHM:-HS256}
ACCESS_TOKEN_EXPIRE_MINUTES: ${ACCESS_TOKEN_EXPIRE_MINUTES:-30}
REFRESH_TOKEN_EXPIRE_DAYS: ${REFRESH_TOKEN_EXPIRE_DAYS:-30}
CORS_ORIGINS: ${CORS_ORIGINS:-http://localhost:8057}
ADMIN_USERNAME: ${ADMIN_USERNAME}
ADMIN_PASSWORD: ${ADMIN_PASSWORD}
depends_on:
db:
condition: service_healthy
networks:
- homeschool_net
mem_limit: 512m
cpus: 1.0
frontend:
build: ./frontend
container_name: homeschool_frontend
restart: unless-stopped
ports:
- "8054:80"
depends_on:
- backend
networks:
- homeschool_net
mem_limit: 128m
cpus: 0.5
networks:
homeschool_net:
driver: bridge
volumes:
mysql_data:
Reference in New Issue View Git Blame Copy Permalink