food-market

nns/food-market

Fork 0

Commit graph

Author	SHA1	Message	Date
nurdotnet	8ac9e04bcf	ci(docker): drop setup-buildx-action — use system buildx on self-hosted docker/setup-buildx-action pulls the buildx binary from release-assets.githubusercontent.com, which is unreachable from our network (TLS handshake never completes — SNI-level block from upstream, same host works for objects.githubusercontent.com). The self-hosted runner already has docker-buildx 0.30.1 installed via apt, so build-push-action can use it directly. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-04-22 23:44:11 +05:00
nurdotnet	5dce324f24	ci: move Linux jobs (backend, web, docker api/web) to self-hosted runner POS stays on windows-latest (tag/manual only). Runner is registered on the stage server, systemd-managed, labels [self-hosted, Linux, X64]. Goal: drop dependency on the 2000 GitHub-hosted minute quota — Windows POS build now runs at most once per release tag. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-04-22 23:17:52 +05:00
nurdotnet	5bcbff66de	ci/deploy: GitHub Actions + Docker images + DB backup + 24x7 plan .github/workflows/ci.yml — on push/PR: - backend job: dotnet restore/build/test with a live postgres service - web job: pnpm install + vite build + tsc, uploads dist artifact - pos job: windows-latest, dotnet publish self-contained win-x64 single-file exe as artifact .github/workflows/docker.yml — on push to main (if src changed) or manual: - api image → ghcr.io/nurdotnet/food-market-api:{latest,sha} - web image → ghcr.io/nurdotnet/food-market-web:{latest,sha} - uses buildx + GHA cache deploy/Dockerfile.api — multi-stage (.NET 8 sdk → aspnet runtime), healthcheck on /health, App_Data + logs volumes mounted. deploy/Dockerfile.web — node20 build → nginx 1.27 runtime; ships the Vite dist + nginx.conf that proxies /api, /connect, /health to api service and serves the SPA with fallback to index.html. deploy/nginx.conf — SPA + API reverse-proxy configuration. deploy/docker-compose.yml — production-shape stack: postgres 16 + api (from ghcr image) + web (from ghcr image), named volumes, env- driven tags so stage/prod can pin specific SHAs. deploy/backup.sh — pg_dump wrapper with 3 modes: local (brew postgres), --docker (compose container), --remote HOST:PORT. Writes gzipped dumps to ~/food-market-backups, 30-day retention. docs/24x7.md — explains where Claude/CI/stage live, which pieces depend on the Mac, and the exact steps to hand off secrets via ~/.food-market-secrets/ so I can push them into GitHub Secrets. Next, once user supplies Proxmox + FTP + Telegram creds: stage deploy workflow, notification workflow, and (optional) claude-runner VM so I no longer depend on the Mac being awake. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-04-22 11:26:01 +05:00

Author

SHA1

Message

Date

nurdotnet

8ac9e04bcf

ci(docker): drop setup-buildx-action — use system buildx on self-hosted

docker/setup-buildx-action pulls the buildx binary from
release-assets.githubusercontent.com, which is unreachable from our
network (TLS handshake never completes — SNI-level block from upstream,
same host works for objects.githubusercontent.com). The self-hosted
runner already has docker-buildx 0.30.1 installed via apt, so
build-push-action can use it directly.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-04-22 23:44:11 +05:00

nurdotnet

5dce324f24

ci: move Linux jobs (backend, web, docker api/web) to self-hosted runner

POS stays on windows-latest (tag/manual only). Runner is registered on
the stage server, systemd-managed, labels [self-hosted, Linux, X64].
Goal: drop dependency on the 2000 GitHub-hosted minute quota — Windows
POS build now runs at most once per release tag.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-04-22 23:17:52 +05:00

nurdotnet

5bcbff66de

ci/deploy: GitHub Actions + Docker images + DB backup + 24x7 plan

.github/workflows/ci.yml — on push/PR:
  - backend job: dotnet restore/build/test with a live postgres service
  - web job: pnpm install + vite build + tsc, uploads dist artifact
  - pos job: windows-latest, dotnet publish self-contained win-x64
    single-file exe as artifact

.github/workflows/docker.yml — on push to main (if src changed) or manual:
  - api image → ghcr.io/nurdotnet/food-market-api:{latest,sha}
  - web image → ghcr.io/nurdotnet/food-market-web:{latest,sha}
  - uses buildx + GHA cache

deploy/Dockerfile.api — multi-stage (.NET 8 sdk → aspnet runtime),
  healthcheck on /health, App_Data + logs volumes mounted.

deploy/Dockerfile.web — node20 build → nginx 1.27 runtime; ships the
  Vite dist + nginx.conf that proxies /api, /connect, /health to api
  service and serves the SPA with fallback to index.html.

deploy/nginx.conf — SPA + API reverse-proxy configuration.

deploy/docker-compose.yml — production-shape stack: postgres 16 +
  api (from ghcr image) + web (from ghcr image), named volumes, env-
  driven tags so stage/prod can pin specific SHAs.

deploy/backup.sh — pg_dump wrapper with 3 modes: local (brew
  postgres), --docker (compose container), --remote HOST:PORT. Writes
  gzipped dumps to ~/food-market-backups, 30-day retention.

docs/24x7.md — explains where Claude/CI/stage live, which pieces
  depend on the Mac, and the exact steps to hand off secrets via
  ~/.food-market-secrets/ so I can push them into GitHub Secrets.

Next, once user supplies Proxmox + FTP + Telegram creds: stage deploy
workflow, notification workflow, and (optional) claude-runner VM so
I no longer depend on the Mac being awake.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-04-22 11:26:01 +05:00

3 commits