rosslh/coolify
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
coolify/bootstrap/helpers/proxy.php

476 lines
19 KiB
PHP
Raw Normal View History

a ton 👷‍♂️
2023-05-24 12:26:50 +00:00
<?php
fix(proxy): replace CheckConfiguration with GetProxyConfiguration and SaveConfiguration with SaveProxyConfiguration for improved clarity and consistency in proxy management
2025-09-09 10:52:19 +00:00
use App\Actions\Proxy\SaveProxyConfiguration;
refactor: Import ProxyTypes enum and use TRAEFIK instead of TRAEFIK_V2
2024-08-08 11:20:24 +00:00
use App\Enums\ProxyTypes;
Add Docker Compose based applications and preview deployments to proxy on restart
2023-11-28 11:48:55 +00:00
use App\Models\Application;
a ton 👷‍♂️
2023-05-24 12:26:50 +00:00
use App\Models\Server;
use Symfony\Component\Yaml\Yaml;
Fix: Traefik proxy startup issues - handle null versions and filter predefined networks Fixes two critical issues preventing Traefik proxy startup: 1. TypeError when restarting proxy: Handle null return from get_traefik_versions() - Add null check before dispatching CheckTraefikVersionForServerJob - Log warning when version data is unavailable - Prevents: "Argument #2 must be of type array, null given" 2. Docker network error: Filter out predefined Docker networks - Add isDockerPredefinedNetwork() helper to centralize network filtering - Apply filtering in collectDockerNetworksByServer() before operations - Apply filtering in generateDefaultProxyConfiguration() - Prevents: "operation is not permitted on predefined default network" Also: Move $cachedVersionsFile assignment after null check in Proxy.php Tests: Added 7 new unit tests for network filtering function All existing tests pass with no regressions 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-11-28 16:53:26 +00:00
/**
* Check if a network name is a Docker predefined system network.
* These networks cannot be created, modified, or managed by docker network commands.
*
* @param string $network Network name to check
* @return bool True if it's a predefined network that should be skipped
*/
function isDockerPredefinedNetwork(string $network): bool
{
// Only filter 'default' and 'host' to match existing codebase patterns
// See: bootstrap/helpers/parsers.php:891, bootstrap/helpers/shared.php:689,748
return in_array($network, ['default', 'host'], true);
}
fix: remove networks when deleting a docker compose based app
2024-07-11 08:16:56 +00:00
function collectProxyDockerNetworksByServer(Server $server)
{
if (! $server->isFunctional()) {
return collect();
}
$proxyType = $server->proxyType();
if (is_null($proxyType) || $proxyType === 'NONE') {
return collect();
}
$networks = instant_remote_process(['docker inspect --format="{{json .NetworkSettings.Networks }}" coolify-proxy'], $server, false);
Inline many variables.
2024-10-31 17:20:11 +00:00
return collect($networks)->map(function ($network) {
fix: remove networks when deleting a docker compose based app
2024-07-11 08:16:56 +00:00
return collect(json_decode($network))->keys();
})->flatten()->unique();
}
function collectDockerNetworksByServer(Server $server)
fix: proxy configuration + starter
2023-09-25 07:17:42 +00:00
{
feat: coolify init should cleanup stuck networks in proxy
2024-08-05 11:45:24 +00:00
$allNetworks = collect([]);
wip: swarm
2023-12-15 14:48:01 +00:00
if ($server->isSwarm()) {
$networks = collect($server->swarmDockers)->map(function ($docker) {
return $docker['network'];
});
} else {
// Standalone networks
$networks = collect($server->standaloneDockers)->map(function ($docker) {
return $docker['network'];
});
}
feat: coolify init should cleanup stuck networks in proxy
2024-08-05 11:45:24 +00:00
$allNetworks = $allNetworks->merge($networks);
Fix network connection issues in Server and Service models
2023-11-27 08:58:31 +00:00
// Service networks
Add Docker Compose based applications and preview deployments to proxy on restart
2023-11-28 11:48:55 +00:00
foreach ($server->services()->get() as $service) {
fix: only append docker network if service/app is running
2024-08-01 11:47:58 +00:00
if ($service->isRunning()) {
$networks->push($service->networks());
}
feat: coolify init should cleanup stuck networks in proxy
2024-08-05 11:45:24 +00:00
$allNetworks->push($service->networks());
Fix network connection issues in Server and Service models
2023-11-27 08:58:31 +00:00
}
Add Docker Compose based applications and preview deployments to proxy on restart
2023-11-28 11:48:55 +00:00
// Docker compose based apps
$docker_compose_apps = $server->dockerComposeBasedApplications();
foreach ($docker_compose_apps as $app) {
fix: only append docker network if service/app is running
2024-08-01 11:47:58 +00:00
if ($app->isRunning()) {
$networks->push($app->uuid);
}
feat: coolify init should cleanup stuck networks in proxy
2024-08-05 11:45:24 +00:00
$allNetworks->push($app->uuid);
Add Docker Compose based applications and preview deployments to proxy on restart
2023-11-28 11:48:55 +00:00
}
// Docker compose based preview deployments
$docker_compose_previews = $server->dockerComposeBasedPreviewDeployments();
foreach ($docker_compose_previews as $preview) {
fix: only append docker network if service/app is running
2024-08-01 11:47:58 +00:00
if (! $preview->isRunning()) {
continue;
}
Add Docker Compose based applications and preview deployments to proxy on restart
2023-11-28 11:48:55 +00:00
$pullRequestId = $preview->pull_request_id;
$applicationId = $preview->application_id;
$application = Application::find($applicationId);
Fix styling
2024-06-10 20:43:34 +00:00
if (! $application) {
Add Docker Compose based applications and preview deployments to proxy on restart
2023-11-28 11:48:55 +00:00
continue;
}
$network = "{$application->uuid}-{$pullRequestId}";
$networks->push($network);
feat: coolify init should cleanup stuck networks in proxy
2024-08-05 11:45:24 +00:00
$allNetworks->push($network);
Add Docker Compose based applications and preview deployments to proxy on restart
2023-11-28 11:48:55 +00:00
}
Fix: Traefik proxy startup issues - handle null versions and filter predefined networks Fixes two critical issues preventing Traefik proxy startup: 1. TypeError when restarting proxy: Handle null return from get_traefik_versions() - Add null check before dispatching CheckTraefikVersionForServerJob - Log warning when version data is unavailable - Prevents: "Argument #2 must be of type array, null given" 2. Docker network error: Filter out predefined Docker networks - Add isDockerPredefinedNetwork() helper to centralize network filtering - Apply filtering in collectDockerNetworksByServer() before operations - Apply filtering in generateDefaultProxyConfiguration() - Prevents: "operation is not permitted on predefined default network" Also: Move $cachedVersionsFile assignment after null check in Proxy.php Tests: Added 7 new unit tests for network filtering function All existing tests pass with no regressions 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-11-28 16:53:26 +00:00
$networks = collect($networks)->flatten()->unique()->filter(function ($network) {
return ! isDockerPredefinedNetwork($network);
});
$allNetworks = $allNetworks->flatten()->unique()->filter(function ($network) {
return ! isDockerPredefinedNetwork($network);
});
wip: swarm
2023-12-15 14:48:01 +00:00
if ($server->isSwarm()) {
if ($networks->count() === 0) {
$networks = collect(['coolify-overlay']);
feat: coolify init should cleanup stuck networks in proxy
2024-08-05 11:45:24 +00:00
$allNetworks = collect(['coolify-overlay']);
wip: swarm
2023-12-15 14:48:01 +00:00
}
fix: remove networks when deleting a docker compose based app
2024-07-11 08:16:56 +00:00
} else {
if ($networks->count() === 0) {
$networks = collect(['coolify']);
feat: coolify init should cleanup stuck networks in proxy
2024-08-05 11:45:24 +00:00
$allNetworks = collect(['coolify']);
fix: remove networks when deleting a docker compose based app
2024-07-11 08:16:56 +00:00
}
}
feat: coolify init should cleanup stuck networks in proxy
2024-08-05 11:45:24 +00:00
return [
'networks' => $networks,
'allNetworks' => $allNetworks,
];
fix: remove networks when deleting a docker compose based app
2024-07-11 08:16:56 +00:00
}
function connectProxyToNetworks(Server $server)
{
feat: coolify init should cleanup stuck networks in proxy
2024-08-05 11:45:24 +00:00
['networks' => $networks] = collectDockerNetworksByServer($server);
fix: remove networks when deleting a docker compose based app
2024-07-11 08:16:56 +00:00
if ($server->isSwarm()) {
wip: swarm
2023-12-15 14:48:01 +00:00
$commands = $networks->map(function ($network) {
return [
"docker network ls --format '{{.Name}}' | grep '^$network$' >/dev/null || docker network create --driver overlay --attachable $network >/dev/null",
"docker network connect $network coolify-proxy >/dev/null 2>&1 || true",
fix: proxy fixes
2024-09-27 13:36:51 +00:00
"echo 'Successfully connected coolify-proxy to $network network.'",
wip: swarm
2023-12-15 14:48:01 +00:00
];
});
} else {
$commands = $networks->map(function ($network) {
return [
"docker network ls --format '{{.Name}}' | grep '^$network$' >/dev/null || docker network create --attachable $network >/dev/null",
"docker network connect $network coolify-proxy >/dev/null 2>&1 || true",
fix: proxy fixes
2024-09-27 13:36:51 +00:00
"echo 'Successfully connected coolify-proxy to $network network.'",
wip: swarm
2023-12-15 14:48:01 +00:00
];
});
fix: add proxy to network with periodic check
2023-09-22 06:42:27 +00:00
}
wip: swarm
2023-12-15 14:48:01 +00:00
fix: add proxy to network with periodic check
2023-09-22 06:42:27 +00:00
return $commands->flatten();
}
fix: resolve Docker validation race conditions and sudo prefix bug - Fix sudo prefix bug: Use word boundary matching to prevent 'do' keyword from matching 'docker' commands - Add ensureProxyNetworksExist() helper to create networks before docker compose up - Ensure networks exist synchronously before dispatching async proxy startup to prevent race conditions - Update comprehensive unit tests for sudo parsing (50 tests passing) This resolves issues where Docker commands failed to execute with sudo on non-root servers and where proxy networks were not created before the proxy container started. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-11-27 08:04:42 +00:00
/**
* Ensures all required networks exist before docker compose up.
* This must be called BEFORE docker compose up since the compose file declares networks as external.
*
* @param Server $server The server to ensure networks on
* @return \Illuminate\Support\Collection Commands to create networks if they don't exist
*/
function ensureProxyNetworksExist(Server $server)
{
['allNetworks' => $networks] = collectDockerNetworksByServer($server);
if ($server->isSwarm()) {
$commands = $networks->map(function ($network) {
fix(proxy): remove ipv6 cidr network remediation stop explicitly re-creating networks while ensuring them since the previous IPv6 CIDR gateway workaround is no longer needed and was duplicating effort.
2026-03-04 10:36:52 +00:00
return [
"echo 'Ensuring network $network exists...'",
"docker network ls --format '{{.Name}}' | grep -q '^{$network}$' || docker network create --driver overlay --attachable $network",
];
fix: resolve Docker validation race conditions and sudo prefix bug - Fix sudo prefix bug: Use word boundary matching to prevent 'do' keyword from matching 'docker' commands - Add ensureProxyNetworksExist() helper to create networks before docker compose up - Ensure networks exist synchronously before dispatching async proxy startup to prevent race conditions - Update comprehensive unit tests for sudo parsing (50 tests passing) This resolves issues where Docker commands failed to execute with sudo on non-root servers and where proxy networks were not created before the proxy container started. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-11-27 08:04:42 +00:00
});
} else {
$commands = $networks->map(function ($network) {
fix(proxy): remove ipv6 cidr network remediation stop explicitly re-creating networks while ensuring them since the previous IPv6 CIDR gateway workaround is no longer needed and was duplicating effort.
2026-03-04 10:36:52 +00:00
return [
"echo 'Ensuring network $network exists...'",
"docker network ls --format '{{.Name}}' | grep -q '^{$network}$' || docker network create --attachable $network",
];
fix: resolve Docker validation race conditions and sudo prefix bug - Fix sudo prefix bug: Use word boundary matching to prevent 'do' keyword from matching 'docker' commands - Add ensureProxyNetworksExist() helper to create networks before docker compose up - Ensure networks exist synchronously before dispatching async proxy startup to prevent race conditions - Update comprehensive unit tests for sudo parsing (50 tests passing) This resolves issues where Docker commands failed to execute with sudo on non-root servers and where proxy networks were not created before the proxy container started. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-11-27 08:04:42 +00:00
});
}
return $commands->flatten();
}
feat(proxy): enhance proxy configuration regeneration by extracting custom commands - Added a new function to extract custom proxy commands from existing Traefik configurations before regenerating the proxy configuration. - Updated the proxy configuration generation logic to include these custom commands, ensuring they are preserved during regeneration. - Introduced unit tests to validate the extraction of custom commands and handle various scenarios, including invalid YAML and different proxy types.
2025-10-07 09:11:13 +00:00
function extractCustomProxyCommands(Server $server, string $existing_config): array
{
$custom_commands = [];
$proxy_type = $server->proxyType();
if ($proxy_type !== ProxyTypes::TRAEFIK->value || empty($existing_config)) {
return $custom_commands;
}
try {
$yaml = Yaml::parse($existing_config);
$existing_commands = data_get($yaml, 'services.traefik.command', []);
if (empty($existing_commands)) {
return $custom_commands;
}
// Define default commands that Coolify generates
$default_command_prefixes = [
'--ping=',
'--api.',
'--entrypoints.http.address=',
'--entrypoints.https.address=',
'--entrypoints.http.http.encodequerysemicolons=',
'--entryPoints.http.http2.maxConcurrentStreams=',
'--entrypoints.https.http.encodequerysemicolons=',
'--entryPoints.https.http2.maxConcurrentStreams=',
'--entrypoints.https.http3',
'--providers.file.',
'--certificatesresolvers.',
'--providers.docker',
'--providers.swarm',
'--log.level=',
'--accesslog.',
];
// Extract commands that don't match default prefixes (these are custom)
foreach ($existing_commands as $command) {
$is_default = false;
foreach ($default_command_prefixes as $prefix) {
if (str_starts_with($command, $prefix)) {
$is_default = true;
break;
}
}
if (! $is_default) {
$custom_commands[] = $command;
}
}
} catch (\Exception $e) {
// If we can't parse the config, return empty array
// Silently fail to avoid breaking the proxy regeneration
}
return $custom_commands;
}
function generateDefaultProxyConfiguration(Server $server, array $custom_commands = [])
wip
2023-06-22 12:18:17 +00:00
{
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
$proxy_path = $server->proxyPath();
$proxy_type = $server->proxyType();
wip: swarm
2023-11-29 09:06:52 +00:00
if ($server->isSwarm()) {
$networks = collect($server->swarmDockers)->map(function ($docker) {
return $docker['network'];
})->unique();
wip: swarm
2023-12-18 13:01:25 +00:00
if ($networks->count() === 0) {
$networks = collect(['coolify-overlay']);
}
wip: swarm
2023-11-29 09:06:52 +00:00
} else {
$networks = collect($server->standaloneDockers)->map(function ($docker) {
return $docker['network'];
})->unique();
wip: swarm
2023-12-18 13:01:25 +00:00
if ($networks->count() === 0) {
$networks = collect(['coolify']);
}
wip: swarm
2023-11-29 09:06:52 +00:00
}
wip: swarm
2023-12-18 13:01:25 +00:00
wip
2023-06-22 12:18:17 +00:00
$array_of_networks = collect([]);
fix(proxy): filter host network from default proxy (#6383)
2025-08-18 15:48:24 +00:00
$filtered_networks = collect([]);
$networks->map(function ($network) use ($array_of_networks, $filtered_networks) {
Fix: Traefik proxy startup issues - handle null versions and filter predefined networks Fixes two critical issues preventing Traefik proxy startup: 1. TypeError when restarting proxy: Handle null return from get_traefik_versions() - Add null check before dispatching CheckTraefikVersionForServerJob - Log warning when version data is unavailable - Prevents: "Argument #2 must be of type array, null given" 2. Docker network error: Filter out predefined Docker networks - Add isDockerPredefinedNetwork() helper to centralize network filtering - Apply filtering in collectDockerNetworksByServer() before operations - Apply filtering in generateDefaultProxyConfiguration() - Prevents: "operation is not permitted on predefined default network" Also: Move $cachedVersionsFile assignment after null check in Proxy.php Tests: Added 7 new unit tests for network filtering function All existing tests pass with no regressions 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-11-28 16:53:26 +00:00
if (isDockerPredefinedNetwork($network)) {
return; // Predefined networks cannot be used in network configuration
fix(proxy): filter host network from default proxy (#6383)
2025-08-18 15:48:24 +00:00
}
wip
2023-06-22 12:18:17 +00:00
$array_of_networks[$network] = [
Fix styling
2024-06-10 20:43:34 +00:00
'external' => true,
wip
2023-06-22 12:18:17 +00:00
];
fix(proxy): filter host network from default proxy (#6383)
2025-08-18 15:48:24 +00:00
$filtered_networks->push($network);
wip
2023-06-22 12:18:17 +00:00
});
refactor: Update ProxyTypes enum values to use TRAEFIK instead of TRAEFIK_V2
2024-08-07 15:52:51 +00:00
if ($proxy_type === ProxyTypes::TRAEFIK->value) {
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
$labels = [
Fix styling
2024-06-10 20:43:34 +00:00
'traefik.enable=true',
'traefik.http.routers.traefik.entrypoints=http',
'traefik.http.routers.traefik.service=api@internal',
'traefik.http.services.traefik.loadbalancer.server.port=8080',
'coolify.managed=true',
fix: proxy
2024-09-28 09:14:14 +00:00
'coolify.proxy=true',
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
];
$config = [
feat(core): add name to default proxy configuration
2025-02-03 20:24:01 +00:00
'name' => 'coolify-proxy',
Fix styling
2024-06-10 20:43:34 +00:00
'networks' => $array_of_networks->toArray(),
'services' => [
'traefik' => [
'container_name' => 'coolify-proxy',
feat(proxy): upgrade Traefik image to v3.6 Upgrade default Traefik proxy configuration from v3.5 to v3.6, with Coolify version bump to beta.444. 🤖 Generated with Claude Code Co-Authored-By: Claude <noreply@anthropic.com>
2025-11-14 08:31:07 +00:00
'image' => 'traefik:v3.6',
Fix styling
2024-06-10 20:43:34 +00:00
'restart' => RESTART_MODE,
'extra_hosts' => [
'host.docker.internal:host-gateway',
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
],
fix(proxy): filter host network from default proxy (#6383)
2025-08-18 15:48:24 +00:00
'networks' => $filtered_networks->toArray(),
Fix styling
2024-06-10 20:43:34 +00:00
'ports' => [
'80:80',
'443:443',
add https3 support to traefik and fix 404 redirect for traefik3
2024-10-10 17:47:01 +00:00
'443:443/udp',
Fix styling
2024-06-10 20:43:34 +00:00
'8080:8080',
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
],
Fix styling
2024-06-10 20:43:34 +00:00
'healthcheck' => [
'test' => 'wget -qO- http://localhost:80/ping || exit 1',
'interval' => '4s',
'timeout' => '2s',
'retries' => 5,
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
],
Fix styling
2024-06-10 20:43:34 +00:00
'volumes' => [
'/var/run/docker.sock:/var/run/docker.sock:ro',
refactor: update Traefik configuration for improved security and logging - Removed unnecessary volume mapping for production environment. - Added insecure API access and debug logging for development environment. - Ensured consistent handling of Docker provider exposure settings. - Updated certificate resolver storage path for clarity.
2024-12-06 12:07:56 +00:00
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
],
Fix styling
2024-06-10 20:43:34 +00:00
'command' => [
'--ping=true',
'--ping.entrypoint=http',
'--api.dashboard=true',
'--entrypoints.http.address=:80',
'--entrypoints.https.address=:443',
'--entrypoints.http.http.encodequerysemicolons=true',
fix(core): increase HTTP/2 max concurrent streams to 250 (default)
2025-02-02 13:03:18 +00:00
'--entryPoints.http.http2.maxConcurrentStreams=250',
Fix styling
2024-06-10 20:43:34 +00:00
'--entrypoints.https.http.encodequerysemicolons=true',
fix(core): increase HTTP/2 max concurrent streams to 250 (default)
2025-02-02 13:03:18 +00:00
'--entryPoints.https.http2.maxConcurrentStreams=250',
add https3 support to traefik and fix 404 redirect for traefik3
2024-10-10 17:47:01 +00:00
'--entrypoints.https.http3',
Fix styling
2024-06-10 20:43:34 +00:00
'--providers.file.directory=/traefik/dynamic/',
'--providers.file.watch=true',
'--certificatesresolvers.letsencrypt.acme.httpchallenge=true',
'--certificatesresolvers.letsencrypt.acme.httpchallenge.entrypoint=http',
refactor: update Traefik configuration for improved security and logging - Removed unnecessary volume mapping for production environment. - Added insecure API access and debug logging for development environment. - Ensured consistent handling of Docker provider exposure settings. - Updated certificate resolver storage path for clarity.
2024-12-06 12:07:56 +00:00
'--certificatesresolvers.letsencrypt.acme.storage=/traefik/acme.json',
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
],
Fix styling
2024-06-10 20:43:34 +00:00
'labels' => $labels,
wip
2023-06-22 12:18:17 +00:00
],
],
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
];
if (isDev()) {
refactor: update Traefik configuration for improved security and logging - Removed unnecessary volume mapping for production environment. - Added insecure API access and debug logging for development environment. - Ensured consistent handling of Docker provider exposure settings. - Updated certificate resolver storage path for clarity.
2024-12-06 12:07:56 +00:00
$config['services']['traefik']['command'][] = '--api.insecure=true';
$config['services']['traefik']['command'][] = '--log.level=debug';
Fix styling
2024-06-10 20:43:34 +00:00
$config['services']['traefik']['command'][] = '--accesslog.filepath=/traefik/access.log';
$config['services']['traefik']['command'][] = '--accesslog.bufferingsize=100';
Revert "fix(dev): mount points?!" This reverts commit 365bf3cbf0e5aa21a2ccb12fe6ec333b93e404da.
2025-05-05 06:55:44 +00:00
$config['services']['traefik']['volumes'][] = '/var/lib/docker/volumes/coolify_dev_coolify_data/_data/proxy/:/traefik';
refactor: update Traefik configuration for improved security and logging - Removed unnecessary volume mapping for production environment. - Added insecure API access and debug logging for development environment. - Ensured consistent handling of Docker provider exposure settings. - Updated certificate resolver storage path for clarity.
2024-12-06 12:07:56 +00:00
} else {
$config['services']['traefik']['command'][] = '--api.insecure=false';
$config['services']['traefik']['volumes'][] = "{$proxy_path}:/traefik";
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
}
if ($server->isSwarm()) {
data_forget($config, 'services.traefik.container_name');
data_forget($config, 'services.traefik.restart');
data_forget($config, 'services.traefik.labels');
wip: swarm
2023-11-29 09:06:52 +00:00
fix(proxy) update traefik proxy config for docker swarm
2025-01-23 14:57:34 +00:00
$config['services']['traefik']['command'][] = '--providers.swarm.endpoint=unix:///var/run/docker.sock';
$config['services']['traefik']['command'][] = '--providers.swarm.exposedbydefault=false';
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
$config['services']['traefik']['deploy'] = [
Fix styling
2024-06-10 20:43:34 +00:00
'labels' => $labels,
'placement' => [
'constraints' => [
'node.role==manager',
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
],
],
];
} else {
Fix styling
2024-06-10 20:43:34 +00:00
$config['services']['traefik']['command'][] = '--providers.docker=true';
fix(proxy) update traefik proxy config for docker swarm
2025-01-23 14:57:34 +00:00
$config['services']['traefik']['command'][] = '--providers.docker.exposedbydefault=false';
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
}
feat(proxy): enhance proxy configuration regeneration by extracting custom commands - Added a new function to extract custom proxy commands from existing Traefik configurations before regenerating the proxy configuration. - Updated the proxy configuration generation logic to include these custom commands, ensuring they are preserved during regeneration. - Introduced unit tests to validate the extraction of custom commands and handle various scenarios, including invalid YAML and different proxy types.
2025-10-07 09:11:13 +00:00
// Append custom commands (e.g., trustedIPs for Cloudflare)
if (! empty($custom_commands)) {
foreach ($custom_commands as $custom_command) {
$config['services']['traefik']['command'][] = $custom_command;
}
}
Fix styling
2024-06-10 20:43:34 +00:00
} elseif ($proxy_type === 'CADDY') {
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
$config = [
Fix styling
2024-06-10 20:43:34 +00:00
'networks' => $array_of_networks->toArray(),
'services' => [
'caddy' => [
'container_name' => 'coolify-proxy',
'image' => 'lucaslorentz/caddy-docker-proxy:2.8-alpine',
'restart' => RESTART_MODE,
'extra_hosts' => [
'host.docker.internal:host-gateway',
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
],
Fix styling
2024-06-10 20:43:34 +00:00
'environment' => [
'CADDY_DOCKER_POLLING_INTERVAL=5s',
'CADDY_DOCKER_CADDYFILE_PATH=/dynamic/Caddyfile',
Add CADDY_DOCKER_POLLING_INTERVAL environment variable
2024-03-11 14:36:45 +00:00
],
fix(proxy): filter host network from default proxy (#6383)
2025-08-18 15:48:24 +00:00
'networks' => $filtered_networks->toArray(),
Fix styling
2024-06-10 20:43:34 +00:00
'ports' => [
'80:80',
'443:443',
Expose port 443/udp with Caddy proxy
2024-10-09 16:34:17 +00:00
'443:443/udp',
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
],
fix: proxy fixes
2024-09-27 13:36:51 +00:00
'labels' => [
'coolify.managed=true',
fix: make sure caddy is not removed by cleanup
2024-10-14 19:35:20 +00:00
'coolify.proxy=true',
fix: proxy fixes
2024-09-27 13:36:51 +00:00
],
Fix styling
2024-06-10 20:43:34 +00:00
'volumes' => [
'/var/run/docker.sock:/var/run/docker.sock:ro',
feat caddy dynamic configurations
2024-03-11 16:17:34 +00:00
"{$proxy_path}/dynamic:/dynamic",
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
"{$proxy_path}/config:/config",
"{$proxy_path}/data:/data",
],
wip: swarm
2023-11-28 17:42:09 +00:00
],
],
];
} else {
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
return null;
wip: swarm
2023-11-28 17:42:09 +00:00
}
feat: experimental caddy support
2024-03-11 14:08:05 +00:00
wip: swarm
2023-11-29 09:06:52 +00:00
$config = Yaml::dump($config, 12, 2);
fix(proxy): replace CheckConfiguration with GetProxyConfiguration and SaveConfiguration with SaveProxyConfiguration for improved clarity and consistency in proxy management
2025-09-09 10:52:19 +00:00
SaveProxyConfiguration::run($server, $config);
Fix styling
2024-06-10 20:43:34 +00:00
fix: proxy configuration + starter
2023-09-25 07:17:42 +00:00
return $config;
wip
2023-06-22 12:18:17 +00:00
}
feat(proxy): add Traefik version tracking with notifications and dismissible UI warnings - Add automated Traefik version checking job running weekly on Sundays - Implement version detection from running containers and comparison with versions.json - Add notifications across all channels (Email, Discord, Slack, Telegram, Pushover, Webhook) for outdated versions - Create dismissible callout component with localStorage persistence - Display cross-branch upgrade warnings (e.g., v3.5 -> v3.6) with changelog links - Show patch update notifications within same branch - Add warning icon that appears when callouts are dismissed - Prevent duplicate notifications during proxy restart by adding restarting parameter - Fix notification spam with transition-based logic for status changes - Enable system email settings by default in development mode - Track last saved/applied proxy settings to detect configuration drift
2025-11-13 12:38:57 +00:00
function getExactTraefikVersionFromContainer(Server $server): ?string
{
try {
Log::debug("getExactTraefikVersionFromContainer: Server '{$server->name}' (ID: {$server->id}) - Checking for exact version");
// Method A: Execute traefik version command (most reliable)
$versionCommand = "docker exec coolify-proxy traefik version 2>/dev/null | grep -oP 'Version:\s+\K\d+\.\d+\.\d+'";
Log::debug("getExactTraefikVersionFromContainer: Server '{$server->name}' (ID: {$server->id}) - Running: {$versionCommand}");
$output = instant_remote_process([$versionCommand], $server, false);
if (! empty(trim($output))) {
$version = trim($output);
Log::debug("getExactTraefikVersionFromContainer: Server '{$server->name}' (ID: {$server->id}) - Detected exact version from command: {$version}");
return $version;
}
// Method B: Try OCI label as fallback
$labelCommand = "docker inspect coolify-proxy --format '{{index .Config.Labels \"org.opencontainers.image.version\"}}' 2>/dev/null";
Log::debug("getExactTraefikVersionFromContainer: Server '{$server->name}' (ID: {$server->id}) - Trying OCI label");
$label = instant_remote_process([$labelCommand], $server, false);
if (! empty(trim($label))) {
// Extract version number from label (might have 'v' prefix)
if (preg_match('/(\d+\.\d+\.\d+)/', trim($label), $matches)) {
Log::debug("getExactTraefikVersionFromContainer: Server '{$server->name}' (ID: {$server->id}) - Detected from OCI label: {$matches[1]}");
return $matches[1];
}
}
Log::debug("getExactTraefikVersionFromContainer: Server '{$server->name}' (ID: {$server->id}) - Could not detect exact version");
return null;
} catch (\Exception $e) {
Log::error("getExactTraefikVersionFromContainer: Server '{$server->name}' (ID: {$server->id}) - Error: ".$e->getMessage());
return null;
}
}
function getTraefikVersionFromDockerCompose(Server $server): ?string
{
try {
Log::debug("getTraefikVersionFromDockerCompose: Server '{$server->name}' (ID: {$server->id}) - Starting version detection");
// Try to get exact version from running container (e.g., "3.6.0")
$exactVersion = getExactTraefikVersionFromContainer($server);
if ($exactVersion) {
Log::debug("getTraefikVersionFromDockerCompose: Server '{$server->name}' (ID: {$server->id}) - Using exact version: {$exactVersion}");
return $exactVersion;
}
// Fallback: Check image tag (current method)
Log::debug("getTraefikVersionFromDockerCompose: Server '{$server->name}' (ID: {$server->id}) - Falling back to image tag detection");
$containerName = 'coolify-proxy';
$inspectCommand = "docker inspect {$containerName} --format '{{.Config.Image}}' 2>/dev/null";
$image = instant_remote_process([$inspectCommand], $server, false);
if (empty(trim($image))) {
Log::debug("getTraefikVersionFromDockerCompose: Server '{$server->name}' (ID: {$server->id}) - Container '{$containerName}' not found or not running");
return null;
}
$image = trim($image);
Log::debug("getTraefikVersionFromDockerCompose: Server '{$server->name}' (ID: {$server->id}) - Running container image: {$image}");
// Extract version from image string (e.g., "traefik:v3.6" or "traefik:3.6.0" or "traefik:latest")
if (preg_match('/traefik:(v?\d+\.\d+(?:\.\d+)?|latest)/i', $image, $matches)) {
Log::debug("getTraefikVersionFromDockerCompose: Server '{$server->name}' (ID: {$server->id}) - Extracted version from image tag: {$matches[1]}");
return $matches[1];
}
Log::debug("getTraefikVersionFromDockerCompose: Server '{$server->name}' (ID: {$server->id}) - Image format doesn't match expected pattern: {$image}");
return null;
} catch (\Exception $e) {
Log::error("getTraefikVersionFromDockerCompose: Server '{$server->name}' (ID: {$server->id}) - Error: ".$e->getMessage());
return null;
}
}
Reference in a new issue Copy permalink