ulsklyc
8f3f5cce01
- CSP: SHA-256-Hash für Theme-Detection Inline-Script hinzugefügt - docker-compose: SESSION_SECURE=false, damit HSTS und upgrade-insecure-requests bei direktem HTTP-Zugriff deaktiviert sind Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
27 lines
651 B
YAML
27 lines
651 B
YAML
services:
|
|
oikos:
|
|
build: .
|
|
container_name: oikos
|
|
restart: unless-stopped
|
|
ports:
|
|
- "0.0.0.0:3000:3000"
|
|
volumes:
|
|
- oikos_data:/data
|
|
env_file:
|
|
- .env
|
|
environment:
|
|
- NODE_ENV=production
|
|
- DB_PATH=/data/oikos.db
|
|
# Auf false setzen wenn kein HTTPS/Reverse-Proxy (direkter HTTP-Zugriff)
|
|
- SESSION_SECURE=false
|
|
healthcheck:
|
|
test: ["CMD", "node", "-e", "require('http').get('http://localhost:3000/health', r => process.exit(r.statusCode === 200 ? 0 : 1))"]
|
|
interval: 30s
|
|
timeout: 10s
|
|
retries: 3
|
|
start_period: 10s
|
|
|
|
volumes:
|
|
oikos_data:
|
|
driver: local
|