the-other-dude

monoadmin/the-other-dude

Fork 0

Commit Graph

Author	SHA1	Message	Date
Jason Staack	4757b93d9d	fix(setup): address security and robustness issues - Use dollar-quoting in generated SQL to prevent injection - Set .env.prod and init-postgres-prod.sql to mode 0600 - Use run_compose for OpenBao log capture (consistent env-file) - Prompt user before continuing if OpenBao bootstrap fails - Improve mask_secret to fully mask short secrets - Check sysctl return code before parsing RAM	2026-03-14 10:01:44 -05:00
Jason Staack	4885d14a1d	feat: add production setup wizard (setup.py) Interactive Python script that: - Runs pre-flight checks (Docker, RAM, port conflicts) - Walks through database, security, admin, email, domain config - Auto-generates JWT secrets, encryption keys, DB passwords - Writes .env.prod and init-postgres-prod.sql - Bootstraps OpenBao (captures unseal key + token from logs) - Builds images sequentially (avoids OOM) - Starts the stack and verifies service health	2026-03-14 09:58:16 -05:00

Author

SHA1

Message

Date

Jason Staack

4757b93d9d

fix(setup): address security and robustness issues

- Use dollar-quoting in generated SQL to prevent injection
- Set .env.prod and init-postgres-prod.sql to mode 0600
- Use run_compose for OpenBao log capture (consistent env-file)
- Prompt user before continuing if OpenBao bootstrap fails
- Improve mask_secret to fully mask short secrets
- Check sysctl return code before parsing RAM

2026-03-14 10:01:44 -05:00

Jason Staack

4885d14a1d

feat: add production setup wizard (setup.py)

Interactive Python script that:
- Runs pre-flight checks (Docker, RAM, port conflicts)
- Walks through database, security, admin, email, domain config
- Auto-generates JWT secrets, encryption keys, DB passwords
- Writes .env.prod and init-postgres-prod.sql
- Bootstraps OpenBao (captures unseal key + token from logs)
- Builds images sequentially (avoids OOM)
- Starts the stack and verifies service health

2026-03-14 09:58:16 -05:00

2 Commits