coolify/app/Models/LocalPersistentVolume.php

<?php

namespace App\Models;

use Illuminate\Database\Eloquent\Casts\Attribute;
use Illuminate\Database\Eloquent\Model;
use Symfony\Component\Yaml\Yaml;

class LocalPersistentVolume extends Model
{
    protected $guarded = [];

    public function resource()
    {
        return $this->morphTo('resource');
    }

    public function application()
    {
        return $this->morphTo('resource');
    }

    public function service()
    {
        return $this->morphTo('resource');
    }

    public function database()
    {
        return $this->morphTo('resource');
    }

    protected function customizeName($value)
    {
        return str($value)->trim()->value;
    }

    protected function mountPath(): Attribute
    {
        return Attribute::make(
            set: fn (string $value) => str($value)->trim()->start('/')->value
        );
    }

    protected function hostPath(): Attribute
    {
        return Attribute::make(
            set: function (?string $value) {
                if ($value) {
                    return str($value)->trim()->start('/')->value;
                } else {
                    return $value;
                }
            }
        );
    }

    // Check if this volume belongs to a service resource
    public function isServiceResource(): bool
    {
        return in_array($this->resource_type, [
            'App\Models\ServiceApplication',
            'App\Models\ServiceDatabase',
        ]);
    }

    // Check if this volume belongs to a dockercompose application
    public function isDockerComposeResource(): bool
    {
        if ($this->resource_type !== 'App\Models\Application') {
            return false;
        }

        // Only access relationship if already eager loaded to avoid N+1
        if (! $this->relationLoaded('resource')) {
            return false;
        }

        $application = $this->resource;
        if (! $application) {
            return false;
        }

        return data_get($application, 'build_pack') === 'dockercompose';
    }

    // Determine if this volume should be read-only in the UI
    // Service volumes and dockercompose application volumes are read-only
    // (users should edit compose file directly)
    public function shouldBeReadOnlyInUI(): bool
    {
        // All service volumes should be read-only in UI
        if ($this->isServiceResource()) {
            return true;
        }

        // All dockercompose application volumes should be read-only in UI
        if ($this->isDockerComposeResource()) {
            return true;
        }

        // Check for explicit :ro flag in compose (existing logic)
        return $this->isReadOnlyVolume();
    }

    // Check if this volume is read-only by parsing the docker-compose content
    public function isReadOnlyVolume(): bool
    {
        try {
            // Get the resource (can be application, service, or database)
            $resource = $this->resource;
            if (! $resource) {
                return false;
            }

            // Only check for services
            if (! method_exists($resource, 'service')) {
                return false;
            }

            $actualService = $resource->service;
            if (! $actualService || ! $actualService->docker_compose_raw) {
                return false;
            }

            // Parse the docker-compose content
            $compose = Yaml::parse($actualService->docker_compose_raw);
            if (! isset($compose['services'])) {
                return false;
            }

            // Find the service that this volume belongs to
            $serviceName = $resource->name;
            if (! isset($compose['services'][$serviceName]['volumes'])) {
                return false;
            }

            $volumes = $compose['services'][$serviceName]['volumes'];

            // Check each volume to find a match
            // Note: We match on mount_path (container path) only, since host paths get transformed
            foreach ($volumes as $volume) {
                // Volume can be string like "host:container:ro" or "host:container"
                if (is_string($volume)) {
                    $parts = explode(':', $volume);

                    // Check if this volume matches our mount_path
                    if (count($parts) >= 2) {
                        $containerPath = $parts[1];
                        $options = $parts[2] ?? null;

                        // Match based on mount_path
                        // Remove leading slash from mount_path if present for comparison
                        $mountPath = str($this->mount_path)->ltrim('/')->toString();
                        $containerPathClean = str($containerPath)->ltrim('/')->toString();

                        if ($mountPath === $containerPathClean || $this->mount_path === $containerPath) {
                            return $options === 'ro';
                        }
                    }
                } elseif (is_array($volume)) {
                    // Long-form syntax: { type: bind/volume, source: ..., target: ..., read_only: true }
                    $containerPath = data_get($volume, 'target');
                    $readOnly = data_get($volume, 'read_only', false);

                    // Match based on mount_path
                    // Remove leading slash from mount_path if present for comparison
                    $mountPath = str($this->mount_path)->ltrim('/')->toString();
                    $containerPathClean = str($containerPath)->ltrim('/')->toString();

                    if ($mountPath === $containerPathClean || $this->mount_path === $containerPath) {
                        return $readOnly === true;
                    }
                }
            }

            return false;
        } catch (\Throwable $e) {
            ray($e->getMessage(), 'Error checking read-only persistent volume');

            return false;
        }
    }
}
wip: persisting data 2023-04-03 11:37:53 +00:00			`<?php`

			`namespace App\Models;`

storages 2023-05-05 10:08:38 +00:00			`use Illuminate\Database\Eloquent\Casts\Attribute;`
fix 2023-06-15 11:28:16 +00:00			`use Illuminate\Database\Eloquent\Model;`
feat(storage): add read-only volume handling and UI notifications - Introduced `isReadOnlyVolume` method in `LocalFileVolume` and `LocalPersistentVolume` models to determine if a volume is read-only based on Docker Compose configuration. - Updated `FileStorage` and `Show` components to set `isReadOnly` state during mounting. - Enhanced UI to display notifications for read-only volumes, preventing modification actions in the interface. - Refactored file storage and directory management forms to conditionally enable or disable actions based on read-only status. 2025-10-03 14:39:57 +00:00			`use Symfony\Component\Yaml\Yaml;`
storages 2023-05-05 10:08:38 +00:00
fix 2023-06-15 11:28:16 +00:00			`class LocalPersistentVolume extends Model`
wip: persisting data 2023-04-03 11:37:53 +00:00			`{`
lots of updates + refactoring 2023-08-07 20:14:21 +00:00			`protected $guarded = [];`
testing php storm code cleanup and styling 2023-08-08 09:51:36 +00:00
fix: Prevent N+1 query in LocalPersistentVolume.isDockerComposeResource() Use relationLoaded() check before accessing the application relationship to avoid triggering individual queries for each volume when rendering storage lists. Update Storage.php to eager load the relationship. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2025-12-11 20:23:46 +00:00			`public function resource()`
			`{`
			`return $this->morphTo('resource');`
			`}`

wip: persisting data 2023-04-03 11:37:53 +00:00			`public function application()`
			`{`
fix: show real storage name on services 2023-09-25 15:14:19 +00:00			`return $this->morphTo('resource');`
wip: persisting data 2023-04-03 11:37:53 +00:00			`}`
Fix styling 2024-06-10 20:43:34 +00:00
wip: services 2023-09-20 13:42:41 +00:00			`public function service()`
			`{`
fix: show real storage name on services 2023-09-25 15:14:19 +00:00			`return $this->morphTo('resource');`
			`}`
Fix styling 2024-06-10 20:43:34 +00:00
fix: show real storage name on services 2023-09-25 15:14:19 +00:00			`public function database()`
			`{`
			`return $this->morphTo('resource');`
wip: services 2023-09-20 13:42:41 +00:00			`}`
Fix styling 2024-06-10 20:43:34 +00:00
feat(validation): centralize validation patterns for names and descriptions - Introduced `ValidationPatterns` class to standardize validation rules and messages for name and description fields across the application. - Updated various components and models to utilize the new validation patterns, ensuring consistent sanitization and validation logic. - Replaced the `HasSafeNameAttribute` trait with `HasSafeStringAttribute` to enhance attribute handling and maintain consistency in name sanitization. - Enhanced the `CleanupNames` command to align with the new validation rules, allowing for a broader range of valid characters in names. 2025-08-19 10:14:48 +00:00			`protected function customizeName($value)`
storages 2023-05-05 10:08:38 +00:00			`{`
feat(validation): centralize validation patterns for names and descriptions - Introduced `ValidationPatterns` class to standardize validation rules and messages for name and description fields across the application. - Updated various components and models to utilize the new validation patterns, ensuring consistent sanitization and validation logic. - Replaced the `HasSafeNameAttribute` trait with `HasSafeStringAttribute` to enhance attribute handling and maintain consistency in name sanitization. - Enhanced the `CleanupNames` command to align with the new validation rules, allowing for a broader range of valid characters in names. 2025-08-19 10:14:48 +00:00			`return str($value)->trim()->value;`
storages 2023-05-05 10:08:38 +00:00			`}`
testing php storm code cleanup and styling 2023-08-08 09:51:36 +00:00
storages 2023-05-05 10:08:38 +00:00			`protected function mountPath(): Attribute`
			`{`
			`return Attribute::make(`
refactor: Update code to use str() instead of Str::of() for string manipulation 2024-06-25 08:37:10 +00:00			`set: fn (string $value) => str($value)->trim()->start('/')->value`
storages 2023-05-05 10:08:38 +00:00			`);`
			`}`
testing php storm code cleanup and styling 2023-08-08 09:51:36 +00:00
storages 2023-05-05 10:08:38 +00:00			`protected function hostPath(): Attribute`
			`{`
			`return Attribute::make(`
Fix styling 2024-06-10 20:43:34 +00:00			`set: function (?string $value) {`
storages 2023-05-05 10:08:38 +00:00			`if ($value) {`
refactor: Update code to use str() instead of Str::of() for string manipulation 2024-06-25 08:37:10 +00:00			`return str($value)->trim()->start('/')->value;`
Revert "rector: arrrrr" This reverts commit 16c0cd10d8913417ad709ba4e737ed1f12374f45. 2025-01-07 14:31:43 +00:00			`} else {`
			`return $value;`
storages 2023-05-05 10:08:38 +00:00			`}`
			`}`
			`);`
			`}`
feat(storage): add read-only volume handling and UI notifications - Introduced `isReadOnlyVolume` method in `LocalFileVolume` and `LocalPersistentVolume` models to determine if a volume is read-only based on Docker Compose configuration. - Updated `FileStorage` and `Show` components to set `isReadOnly` state during mounting. - Enhanced UI to display notifications for read-only volumes, preventing modification actions in the interface. - Refactored file storage and directory management forms to conditionally enable or disable actions based on read-only status. 2025-10-03 14:39:57 +00:00
fix: Prevent N+1 query in LocalPersistentVolume.isDockerComposeResource() Use relationLoaded() check before accessing the application relationship to avoid triggering individual queries for each volume when rendering storage lists. Update Storage.php to eager load the relationship. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2025-12-11 20:23:46 +00:00			`// Check if this volume belongs to a service resource`
			`public function isServiceResource(): bool`
			`{`
			`return in_array($this->resource_type, [`
			`'App\Models\ServiceApplication',`
			`'App\Models\ServiceDatabase',`
			`]);`
			`}`

			`// Check if this volume belongs to a dockercompose application`
			`public function isDockerComposeResource(): bool`
			`{`
			`if ($this->resource_type !== 'App\Models\Application') {`
			`return false;`
			`}`

			`// Only access relationship if already eager loaded to avoid N+1`
			`if (! $this->relationLoaded('resource')) {`
			`return false;`
			`}`

			`$application = $this->resource;`
			`if (! $application) {`
			`return false;`
			`}`

			`return data_get($application, 'build_pack') === 'dockercompose';`
			`}`

			`// Determine if this volume should be read-only in the UI`
			`// Service volumes and dockercompose application volumes are read-only`
			`// (users should edit compose file directly)`
			`public function shouldBeReadOnlyInUI(): bool`
			`{`
			`// All service volumes should be read-only in UI`
			`if ($this->isServiceResource()) {`
			`return true;`
			`}`

			`// All dockercompose application volumes should be read-only in UI`
			`if ($this->isDockerComposeResource()) {`
			`return true;`
			`}`

			`// Check for explicit :ro flag in compose (existing logic)`
			`return $this->isReadOnlyVolume();`
			`}`

feat(storage): add read-only volume handling and UI notifications - Introduced `isReadOnlyVolume` method in `LocalFileVolume` and `LocalPersistentVolume` models to determine if a volume is read-only based on Docker Compose configuration. - Updated `FileStorage` and `Show` components to set `isReadOnly` state during mounting. - Enhanced UI to display notifications for read-only volumes, preventing modification actions in the interface. - Refactored file storage and directory management forms to conditionally enable or disable actions based on read-only status. 2025-10-03 14:39:57 +00:00			`// Check if this volume is read-only by parsing the docker-compose content`
			`public function isReadOnlyVolume(): bool`
			`{`
			`try {`
			`// Get the resource (can be application, service, or database)`
			`$resource = $this->resource;`
			`if (! $resource) {`
			`return false;`
			`}`

			`// Only check for services`
			`if (! method_exists($resource, 'service')) {`
			`return false;`
			`}`

			`$actualService = $resource->service;`
			`if (! $actualService \|\| ! $actualService->docker_compose_raw) {`
			`return false;`
			`}`

			`// Parse the docker-compose content`
			`$compose = Yaml::parse($actualService->docker_compose_raw);`
			`if (! isset($compose['services'])) {`
			`return false;`
			`}`

			`// Find the service that this volume belongs to`
			`$serviceName = $resource->name;`
			`if (! isset($compose['services'][$serviceName]['volumes'])) {`
			`return false;`
			`}`

			`$volumes = $compose['services'][$serviceName]['volumes'];`

			`// Check each volume to find a match`
fix: Detect read-only Docker volumes with long-form syntax and enable refresh - Fixed isReadOnlyVolume() to detect both short-form (:ro) and long-form (read_only: true) Docker Compose volume syntax - Fixed path matching to use mount_path only (fs_path is transformed during parsing from ./file to absolute path) - Added "Load from server" button for read-only volumes to allow users to refresh content - Changed loadStorageOnServer() authorization from 'update' to 'view' since loading is a read operation - Added helper text to Content field warning users that content may be outdated - Applied fixes to both LocalFileVolume and LocalPersistentVolume models 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-12-11 13:18:58 +00:00			`// Note: We match on mount_path (container path) only, since host paths get transformed`
feat(storage): add read-only volume handling and UI notifications - Introduced `isReadOnlyVolume` method in `LocalFileVolume` and `LocalPersistentVolume` models to determine if a volume is read-only based on Docker Compose configuration. - Updated `FileStorage` and `Show` components to set `isReadOnly` state during mounting. - Enhanced UI to display notifications for read-only volumes, preventing modification actions in the interface. - Refactored file storage and directory management forms to conditionally enable or disable actions based on read-only status. 2025-10-03 14:39:57 +00:00			`foreach ($volumes as $volume) {`
			`// Volume can be string like "host:container:ro" or "host:container"`
			`if (is_string($volume)) {`
			`$parts = explode(':', $volume);`

			`// Check if this volume matches our mount_path`
			`if (count($parts) >= 2) {`
			`$containerPath = $parts[1];`
			`$options = $parts[2] ?? null;`

			`// Match based on mount_path`
			`// Remove leading slash from mount_path if present for comparison`
			`$mountPath = str($this->mount_path)->ltrim('/')->toString();`
			`$containerPathClean = str($containerPath)->ltrim('/')->toString();`

			`if ($mountPath === $containerPathClean \|\| $this->mount_path === $containerPath) {`
			`return $options === 'ro';`
			`}`
			`}`
fix: Detect read-only Docker volumes with long-form syntax and enable refresh - Fixed isReadOnlyVolume() to detect both short-form (:ro) and long-form (read_only: true) Docker Compose volume syntax - Fixed path matching to use mount_path only (fs_path is transformed during parsing from ./file to absolute path) - Added "Load from server" button for read-only volumes to allow users to refresh content - Changed loadStorageOnServer() authorization from 'update' to 'view' since loading is a read operation - Added helper text to Content field warning users that content may be outdated - Applied fixes to both LocalFileVolume and LocalPersistentVolume models 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-12-11 13:18:58 +00:00			`} elseif (is_array($volume)) {`
			`// Long-form syntax: { type: bind/volume, source: ..., target: ..., read_only: true }`
			`$containerPath = data_get($volume, 'target');`
			`$readOnly = data_get($volume, 'read_only', false);`

			`// Match based on mount_path`
			`// Remove leading slash from mount_path if present for comparison`
			`$mountPath = str($this->mount_path)->ltrim('/')->toString();`
			`$containerPathClean = str($containerPath)->ltrim('/')->toString();`

			`if ($mountPath === $containerPathClean \|\| $this->mount_path === $containerPath) {`
			`return $readOnly === true;`
			`}`
feat(storage): add read-only volume handling and UI notifications - Introduced `isReadOnlyVolume` method in `LocalFileVolume` and `LocalPersistentVolume` models to determine if a volume is read-only based on Docker Compose configuration. - Updated `FileStorage` and `Show` components to set `isReadOnly` state during mounting. - Enhanced UI to display notifications for read-only volumes, preventing modification actions in the interface. - Refactored file storage and directory management forms to conditionally enable or disable actions based on read-only status. 2025-10-03 14:39:57 +00:00			`}`
			`}`

			`return false;`
			`} catch (\Throwable $e) {`
			`ray($e->getMessage(), 'Error checking read-only persistent volume');`

			`return false;`
			`}`
			`}`
wip: persisting data 2023-04-03 11:37:53 +00:00			`}`