Skip to content

KSIUJ/KSI-Landing-2.0

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

128 Commits
backend
backend
 
 
database
database
 
 
frontend
frontend
 
 
images
images
 
 
proxy
proxy
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 
mvp.md
mvp.md
 
 
setup_enviroment.py
setup_enviroment.py
 
 

Repository files navigation

KSI Landing

Prerequisites

  • Docker and Docker Compose

Important Security Configuration

This application runs containers with non-root user mappings for enhanced security:

  • Backend container: Runs as user 10001:10001
  • Frontend & Proxy container: Served by nginxinc/nginx-unprivileged:alpine as user 101:101

Service topology

The current docker-compose.yml exposes only the proxy service on the host. The backend and frontend services are internal to Docker Compose:

  • proxy listens on 127.0.0.1:8000
  • proxy routes / to the frontend service on frontend:8001
  • proxy routes /api to the backend service on backend:8000

Quick Start

1. Environment Configuration

Create and configure environment variables before building the images.

Backend (.env)

Create a .env file in the backend/app directory:

SQLALCHEMY_DATABASE_URL=sqlite+aiosqlite:///./app/db/db.sqlite3
ADMIN_API_KEY=<admin-api-key>
IMAGES_DIR=./app/images

Important: Generate your own secure ADMIN_API_KEY.

Frontend (.env)

Create a .env file in the frontend directory:

VITE_API_URL=http://localhost:8000/api

Note: The backend & frontend image is built using the .env file at build time, so create it before running docker compose build.

2. Set File Permissions (REQUIRED)

Before starting the services, set permissions so the backend container can access the mounted volumes.

The repository includes setup_enviroment.py, a helper script that detects Docker userns-remap offset and updates ownership for the local images and database directories.

Run it with sudo from the project root:

sudo python3 setup_enviroment.py

If you prefer to set permissions manually, use:

sudo chown -R 10001:10001 ./database

sudo chown -R 10001:10001 ./images

The ./database and ./images directories must also be writable by the backend container.

Important: If Docker is configured with userns-remap, the helper script will compute the correct UID/GID offset automatically.

3. Start Application with Docker

From the project root directory:

docker compose up -d --build

This starts the following services:

  • Proxy – acts as a network gateway, mediating traffic between the internal Docker network and the outside world.
  • Frontend
  • Backend API

4. Verify Installation

Check if services are running:

docker compose ps

You should see 3 containers running: backend, frontend, and proxy.

To follow logs for the proxy and verify routing:

docker compose logs

About

Landing page of the Computer Science Students' Association of JU (KSI). All our services and info in once place.

ksi.ii.uj.edu.pl/

Resources

Readme
Activity
Custom properties

Stars

4 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages