feat: comprehensive project improvements
Some checks failed
CI / Rust Format (push) Has been cancelled
CI / Clippy (push) Has been cancelled
CI / Test Server (push) Has been cancelled
CI / Frontend Check (push) Has been cancelled
CI / Tauri Client Check (push) Has been cancelled
CI / Docker Build (push) Has been cancelled
CI / Build Tauri (Linux) (push) Has been cancelled
Some checks failed
CI / Rust Format (push) Has been cancelled
CI / Clippy (push) Has been cancelled
CI / Test Server (push) Has been cancelled
CI / Frontend Check (push) Has been cancelled
CI / Tauri Client Check (push) Has been cancelled
CI / Docker Build (push) Has been cancelled
CI / Build Tauri (Linux) (push) Has been cancelled
- Fix 14 Clippy warnings across server and bot-sdk - Add 67 unit tests (32 bot-sdk, 34 server, 1 doctest) - Add Prometheus metrics endpoint (/api/metrics) - Add structured JSON logging (EIFELDC_LOG_FORMAT=json) - Add release workflow (Docker push + GitHub Release + Tauri builds) - Add rate limiting middleware (EIFELDC_RATE_LIMIT) - Add CORS restriction (EIFELDC_CORS_ORIGINS) - Add session token expiry (EIFELDC_SESSION_TTL) - Add input validation (username/password/homeserver length limits) - Add upload size limit (EIFELDC_MAX_UPLOAD_MB) - Upgrade Tauri client from v1 to v2 - Add session store with SQLite persistence - Add proper error types and cleanup across all crates - Format all code with cargo fmt - Update CI pipeline with fmt, clippy, test, frontend, and Tauri checks - Add README with full API reference and setup guide
This commit is contained in:
root
@@ -2,4 +2,7 @@ DOMAIN=eifeldc.local
|
||||
POSTGRES_PASSWORD=changeme_postgres_password
|
||||
TURN_SECRET=changeme_turn_secret
|
||||
MACAROON_SECRET=changeme_macaroon_secret
|
||||
FORM_SECRET=changeme_form_secret
|
||||
FORM_SECRET=changeme_form_secret
|
||||
LIVEKIT_API_KEY=devkey
|
||||
LIVEKIT_API_SECRET=devsecret
|
||||
LIVEKIT_NODE_IP=127.0.0.1
|
||||
@@ -1,5 +1,3 @@
|
||||
version: "3.8"
|
||||
|
||||
services:
|
||||
eifeldc:
|
||||
build:
|
||||
@@ -12,12 +10,21 @@ services:
|
||||
environment:
|
||||
- EIFELDC_STATIC_DIR=/usr/share/eifeldc/client
|
||||
- RUST_LOG=eifeldc_server=info,tower_http=info
|
||||
- LIVEKIT_API_KEY=${LIVEKIT_API_KEY:-devkey}
|
||||
- LIVEKIT_API_SECRET=${LIVEKIT_API_SECRET:-devsecret}
|
||||
- LIVEKIT_URL=ws://livekit:7880
|
||||
- SYNAPSE_URL=http://synapse:8008
|
||||
healthcheck:
|
||||
test: ["CMD", "curl", "-f", "http://localhost:3000/api/current-user"]
|
||||
interval: 15s
|
||||
timeout: 5s
|
||||
retries: 3
|
||||
start_period: 10s
|
||||
deploy:
|
||||
resources:
|
||||
limits:
|
||||
memory: 512M
|
||||
cpus: "1.0"
|
||||
logging:
|
||||
driver: json-file
|
||||
options:
|
||||
@@ -48,6 +55,11 @@ services:
|
||||
timeout: 5s
|
||||
retries: 5
|
||||
start_period: 30s
|
||||
deploy:
|
||||
resources:
|
||||
limits:
|
||||
memory: 1G
|
||||
cpus: "2.0"
|
||||
logging:
|
||||
driver: json-file
|
||||
options:
|
||||
@@ -72,6 +84,11 @@ services:
|
||||
interval: 5s
|
||||
timeout: 5s
|
||||
retries: 5
|
||||
deploy:
|
||||
resources:
|
||||
limits:
|
||||
memory: 512M
|
||||
cpus: "1.0"
|
||||
logging:
|
||||
driver: json-file
|
||||
options:
|
||||
@@ -95,6 +112,32 @@ services:
|
||||
max-size: "10m"
|
||||
max-file: "3"
|
||||
|
||||
livekit:
|
||||
image: livekit/livekit-server:latest
|
||||
container_name: eifeldc-livekit
|
||||
restart: unless-stopped
|
||||
ports:
|
||||
- "7880:7880"
|
||||
- "7881:7881"
|
||||
- "7882:7882/udp"
|
||||
- "50000-50200:50000-50200/udp"
|
||||
environment:
|
||||
- LIVEKIT_KEYS=${LIVEKIT_API_KEY:-devkey}: ${LIVEKIT_API_SECRET:-devsecret}
|
||||
command: --dev --node-ip ${LIVEKIT_NODE_IP:-127.0.0.1}
|
||||
healthcheck:
|
||||
test: ["CMD", "wget", "--spider", "-q", "http://localhost:7880"]
|
||||
interval: 10s
|
||||
timeout: 5s
|
||||
retries: 3
|
||||
start_period: 5s
|
||||
logging:
|
||||
driver: json-file
|
||||
options:
|
||||
max-size: "10m"
|
||||
max-file: "3"
|
||||
networks:
|
||||
- eifeldc
|
||||
|
||||
nginx:
|
||||
image: nginx:alpine
|
||||
container_name: eifeldc-nginx
|
||||
@@ -110,6 +153,8 @@ services:
|
||||
condition: service_healthy
|
||||
synapse:
|
||||
condition: service_healthy
|
||||
livekit:
|
||||
condition: service_healthy
|
||||
healthcheck:
|
||||
test: ["CMD", "curl", "-f", "http://localhost:80/"]
|
||||
interval: 15s
|
||||
|
||||
@@ -6,6 +6,10 @@ upstream synapse_server {
|
||||
server synapse:8008;
|
||||
}
|
||||
|
||||
upstream livekit_server {
|
||||
server livekit:7880;
|
||||
}
|
||||
|
||||
server {
|
||||
listen 80;
|
||||
server_name eifeldc.local;
|
||||
@@ -60,6 +64,18 @@ server {
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
}
|
||||
|
||||
location /livekit/ {
|
||||
proxy_pass http://livekit_server/;
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Forwarded-For $remote_addr;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_http_version 1.1;
|
||||
proxy_set_header Upgrade $http_upgrade;
|
||||
proxy_set_header Connection "upgrade";
|
||||
proxy_read_timeout 86400s;
|
||||
proxy_send_timeout 86400s;
|
||||
}
|
||||
|
||||
location /api/ {
|
||||
proxy_pass http://eifeldc_server;
|
||||
proxy_set_header Host $host;
|
||||
|
||||
Reference in New Issue
Block a user