fix: SSL Certificate Issues with docker container

RealVidy · RealVidy · commit 80a4eba0f065 · 2025-09-24T15:32:16.000+02:00
vidy-br: fix-certificate-issues
diff --git a/Dockerfile b/Dockerfile
@@ -1,20 +1,23 @@
 # Single stage build
 FROM node:24-slim
 
-# Create non-root user with explicit IDs
+# Create non-root user with explicit IDs and install SSL certificates
 RUN groupadd -g 1001 nonroot && \
     useradd -u 1001 -g nonroot -s /bin/bash -m nonroot && \
     apt-get update && \
     apt-get install --no-install-recommends -y \
     build-essential \
+    ca-certificates \
     curl \
-    git && \
+    git \
+    openssl && \
     apt-get clean && \
-    rm -rf /var/lib/apt/lists/*
-
-# Create app directory and set ownership
-RUN mkdir -p /app && \
+    rm -rf /var/lib/apt/lists/* && \
+    update-ca-certificates && \
+    # Create app directory and set ownership
+    mkdir -p /app && \
     chown 1001:1001 /app
+
 WORKDIR /app
 
 # Switch to non-root user
@@ -25,7 +28,7 @@ USER 1001:1001
 COPY --chown=1001:1001 package.json yarn.lock .yarnrc.yml ./
 COPY --chown=1001:1001 .yarn .yarn
 
-# Install dependencies (CORRECTION PRINCIPALE)
+# Install dependencies
 RUN yarn install --immutable
 
 # Copy source code (including templates needed for PR review prompts)
@@ -34,11 +37,15 @@ COPY --chown=1001:1001 templates/ templates/
 
 # Create repository directory for cloning with appropriate permissions
 RUN mkdir -p /app/repos && \
-    chmod u+w /app/repos
+    chmod u+w /app/repos && \
+    # Configure git for SSL certificate verification
+    git config --global http.sslverify true && \
+    git config --global http.sslcainfo /etc/ssl/certs/ca-certificates.crt
 
 # Set environment variables for server configuration
 ENV HOST=0.0.0.0
 ENV PORT=3000
+ENV GIT_SSL_CAINFO=/etc/ssl/certs/ca-certificates.crt
 
 # Expose port for webhook server
 EXPOSE 3000
