rosslh/coolify
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
11096 commits 1 branch 0 tags 76 MiB
Commit graph

3746 commits

Author SHA1 Message Date
Andras Bacsai
65b925252c feat(core): prevent using servers with existing resources as build servers 2025-02-18 16:44:16 +01:00
Andras Bacsai
372b064dba fix(core): improve server selection error handling in Docker component 2025-02-18 16:44:05 +01:00
Andras Bacsai
6e802f43ba fix(core): update service status refresh event handling 2025-02-17 09:52:18 +01:00
Mike M
4a0cab8be3 Added support for passing hd parameter to Google via existing tenant column in oauth_settings 2025-02-16 16:44:22 -08:00
Andras Bacsai
694b0ac249 feat(core): add error logging and cron parsing to docker/server schedules 2025-02-15 13:21:23 +01:00
Andras Bacsai
b53e289bcd fix(core): improve connection testing with dynamic disk configuration for s3 backups 2025-02-13 10:07:58 +01:00
Andras Bacsai
be1742a85c fix(s3-storage): optimize team admin notification query 2025-02-13 09:55:24 +01:00
Andras Bacsai
a25e2072d3 fix(deployment): improve server selection for deployment cancellation 
- Add fallback for build server and deployment server selection
- Use `ownedByCurrentTeam()` scope when finding servers
- Handle cases where server IDs might be null
 2025-02-12 10:51:26 +01:00
Andras Bacsai
619a42b11a
Merge pull request #4771 from lucienbl/next 
fix: pull latest image from registry when using build server
 2025-02-12 10:31:38 +01:00
peaklabs-dev
f288852753
fix(notification): always send SSL notifications 2025-02-11 20:55:33 +01:00
peaklabs-dev
d74c578a4a
fix(ssl): add --tls arg to DrangflyDB 2025-02-11 20:34:45 +01:00
peaklabs-dev
4fdd5679c9
fix(ui): enable SSL is not working correctly for KeyDB 2025-02-11 20:18:42 +01:00
peaklabs-dev
0a738e6bff
fix(ssl): KeyDB port and caCert args are missing 2025-02-11 20:18:19 +01:00
🏔️ Peak
43adb74755
Merge branch 'next' into feat-db-ssl 2025-02-11 17:41:45 +01:00
🏔️ Peak
e73c9b5f98
fix: system-wide GitHub apps (#5114) 
- fix(ui): system-wide GitHub Apps are not shown in the create a new Application dialog
- fix: query logic error that shows all system-wide apps, regardless of whether they are public or private.
- fix: clicking on a system-wide GitHub app from a team other than the one that created it resulted in a 404 error.
 2025-02-11 17:07:57 +01:00
Gary Tou
9f61672cb3
feat(slack): Show message title in notification previews (#5063) 2025-02-11 16:31:37 +01:00
Gary Tou
5528212b41
fix(slack): Notification settings URL in HighDiskUsage message (#5071) 2025-02-11 16:27:48 +01:00
peaklabs-dev
268fca3477
feat: SSL notification 2025-02-10 21:31:31 +01:00
peaklabs-dev
3e95387e10
Full: SSL Support for KeyDB 2025-02-10 21:29:45 +01:00
peaklabs-dev
90e681e24b
feat: Full SSL support for DrangonflyDB 2025-02-10 21:29:20 +01:00
peaklabs-dev
4547647e98
feat(ssl): improve Redis and remove modes 2025-02-10 19:23:39 +01:00
peaklabs-dev
6b6a9f57f3
fix(ui): remove unused mode for MongoDB 2025-02-10 15:26:05 +01:00
peaklabs-dev
5c12f7273e
feat: New mode implementation for MongoDB 2025-02-10 15:18:29 +01:00
peaklabs-dev
484fc5140b
fix(ssl): rename Redis mode to verify-ca as it is not verify-full 2025-02-08 16:43:15 +01:00
🏔️ Peak
c7840bdf1b
Merge branch 'next' into feat-db-ssl 2025-02-07 23:01:46 +01:00
peaklabs-dev
7b30b1aff1
feat(ssl): Full SSL support for Redis 2025-02-07 22:36:36 +01:00
peaklabs-dev
aad717d22f
fix(ssl): permission issue with MariDB cert and key and paths 2025-02-07 21:08:14 +01:00
peaklabs-dev
5b347f3d0f
fix(ssl): remove mode selection for MariaDB as it is not supported 2025-02-07 21:07:40 +01:00
peaklabs-dev
c1e7a5721e
fix(ssl): adjust ca paths for MySQL 2025-02-07 20:09:11 +01:00
peaklabs-dev
cd63760770
fix(ssl): when regenerating SSL certs the cert is not singed with the new CN 2025-02-07 19:36:52 +01:00
peaklabs-dev
a539bfd765
fix(ssl): server id 2025-02-07 18:45:12 +01:00
peaklabs-dev
bd33f65c0a
feat(ssl): new modes for MongoDB and get caCert and mountPath correctly 2025-02-07 18:31:41 +01:00
peaklabs-dev
62fb2c2877
fix(ssl): ger caCert and mountPath correctly 2025-02-07 18:30:07 +01:00
peaklabs-dev
836006798f
fix(ssl): remove caCert even if it is a folder by accident 2025-02-07 18:28:58 +01:00
peaklabs-dev
6a52f51851
fix(ssl): get caCert correctly 2025-02-07 18:27:30 +01:00
peaklabs-dev
69a6010839
fix(ssl): fix SSL regeneration to sign with CA cert and use mount path 2025-02-07 18:12:55 +01:00
peaklabs-dev
35cd9573ab
fix(ssl): add mount path to DB to fix regeneration of certs 2025-02-07 18:11:26 +01:00
peaklabs-dev
f92c170db1
feat(ssl): ability to create .pem certs and add clientAuth to extendedKeyUsage 2025-02-07 18:07:55 +01:00
peaklabs-dev
1a4c2c3dc9
fix(ssl): fix MariaDB and MySQL need CA cert 2025-02-06 15:14:57 +01:00
peaklabs-dev
6eabfd5c8e
feat/fix(ssl): fix some issues and improve ssl generation helper 
- set default country to XX
- fix array handling of the subjectAlternativeNames so that no indexes are added or skipped
- add extendedKeyUsage to server certs to make them more secure
- add keyAgreement to server certs
- remove authorityKeyIdentifier as it caused the following issue: unable to get local issuer certificate
- removed duplicated distinguished_name entries
- improved formatting
 2025-02-06 15:13:08 +01:00
peaklabs-dev
367eebc9fc
feat: Add full SSL support to MongoDB 2025-02-05 22:56:29 +01:00
peaklabs-dev
844f40188a
feat(ssl): Add SSL relationships to all DBs 2025-02-05 22:19:13 +01:00
peaklabs-dev
852be5fd93
feat(ssl): check for SSL renewal twice daily 2025-02-05 22:11:10 +01:00
peaklabs-dev
806d9af569
feat(ssl): improve SSL generation and security a lot 
- rename some variables for better clarity
- format subjectAltNames correctly
- setup extensions more securely and improve them a lot
- use finally block to remove tempConfig
 2025-02-05 22:09:37 +01:00
peaklabs-dev
951a454cbc
fix(ssl): regenerating certs for a specific DB 
- fix: add mount path to make file mounts work correctly
- fix: get CA cert of the server not some random cert
 2025-02-05 21:22:54 +01:00
peaklabs-dev
ba24630c28
fix(ssl): make sure when regenerating the CA cert it is not overwritten with a server cert 2025-02-05 21:13:30 +01:00
peaklabs-dev
7666cec462
fix(ssl): wrong ssl cert is loaded to the server and UI error when regenerating SSL 2025-02-05 21:10:37 +01:00
peaklabs-dev
1003858632
feat(ssl): Add openssl.conf to configure SSL extension properly 2025-02-05 18:06:38 +01:00
peaklabs-dev
a3c4f86e80
fix(ssl): do not remove SSL directory 2025-02-05 18:03:55 +01:00
peaklabs-dev
e81ed1aad8
feat(ssl): Add full MariaDB SSL support 2025-02-04 21:08:20 +01:00
peaklabs-dev
8f2b45c8b5
fix(ssl): use 1 instead of on for mysql 2025-02-04 20:52:23 +01:00
peaklabs-dev
80fc7c7b97
fix(ssl): use mountPath parameter not a hardcoded path 2025-02-04 18:31:09 +01:00
peaklabs-dev
3f857c6dac
feat(ssl): Add full MySQL SSL Support 2025-02-04 18:29:35 +01:00
peaklabs-dev
d6a39f2ed3
fix(ssl): always create ca crt on disk even if it is already there 2025-02-04 16:57:40 +01:00
peaklabs-dev
da148f93a6
feat(ssl): regenerate CA cert and all other certs logic 2025-02-04 16:55:36 +01:00
peaklabs-dev
3c62130e86
fix(ssl): improve SSL cert file mounts 
- If SSL is disabled, delete the SSL crt and file mounts in the DB
- If SSL is disabled, delete the SSL folder
- If SSL is enabled, make sure the file mounts are added inside the helper
- remove old file mounts first to make sure the ssl crt content is always up to date and no duplicates are added
 2025-02-04 16:34:24 +01:00
peaklabs-dev
6de76ca3f8
fix(deletion): fix DB deletion 
- delete file mounts, volume mounts, envs, ssl crts, backups and detach tags correctly when deleting
 2025-02-04 15:32:56 +01:00
Andras Bacsai
1c12cb98d9 feat(deployment): ensure private key is stored in filesystem before deployment 2025-02-04 15:23:28 +01:00
Andras Bacsai
d632eb2be9 refactor: simplify service start and restart workflows 2025-02-04 14:34:34 +01:00
Andras Bacsai
65a7610e48
Merge pull request #5029 from IARayan/IARayan-bitbucket-preview-deployment-fix-pullrequest-update 
fix: Handle pullrequest:updated for reliable preview deployments
 2025-02-04 13:55:16 +01:00
Andras Bacsai
186a3fc75b
Merge pull request #5038 from Vann-Dev/main 
feat(api): add applications logs api
 2025-02-04 13:33:30 +01:00
Andras Bacsai
8033a89dee fix(ui): simplify service templates loading logic 2025-02-04 13:30:27 +01:00
Andras Bacsai
fbb6ce3fce fix(core): enhance Slack deployment success notification formatting 2025-02-04 12:44:31 +01:00
Andras Bacsai
df129b83b3 fix(core): update Slack notification formatting to use bold correctly 2025-02-04 12:40:04 +01:00
Andras Bacsai
3da921e2ac fix(core): improve deployment failure Slack notification formatting 2025-02-04 12:36:39 +01:00
Vann
2e652490c1 chore: add openapi response 2025-02-04 02:56:15 +00:00
peaklabs-dev
fd5b7492f8
chore(ui): improve valid until handling 2025-02-03 23:21:09 +01:00
peaklabs-dev
53510928d2
feat(ssl): regenerate certificate and valid until UI 2025-02-03 22:54:31 +01:00
peaklabs-dev
cd335e9e00
fix(ssl): make sure the subjectAlternativeNames are unique and stored correctly 2025-02-03 22:42:15 +01:00
peaklabs-dev
2fbb898c89
feat(ssl): regenerate SSL certs job 2025-02-03 22:37:12 +01:00
peaklabs-dev
fba95c3729
fix(migration): store subjectAlternativeNames as a json array in the db 2025-02-03 22:35:00 +01:00
🏔️ Peak
f871c1067b
Merge branch 'next' into feat-db-ssl 2025-02-03 22:20:51 +01:00
peaklabs-dev
72a2f79d88
feat(ssl): improve ssl generation 
- add default state and country
- rename parameters for more clarity
- set subjectAltName
- delete old certificate before creating new one
- Set CN and subjectAltNames in DB for automatic renewal
 2025-02-03 22:11:29 +01:00
peaklabs-dev
9d9fbd6859
feat(databases): add CA SSL crt location to Postgres URLs 2025-02-03 22:06:53 +01:00
peaklabs-dev
498bf04559
feat(migration): add CN and alternative names to DB 2025-02-03 22:05:32 +01:00
peaklabs-dev
5f357e3d92
fix(database): fix volume and file mounts and naming 
- fix: Volume and file mounts are unmounted if there are more than 1
- rename the crt and key to server key and crt to follow best practices
- move crt and key to a more standardized location
 2025-02-03 22:03:45 +01:00
Andras Bacsai
f4575e531f fix(backup): escape special characters in database backup commands 2025-02-03 21:49:13 +01:00
peaklabs-dev
a1e650e699
chore: rename ca crt folder to ssl 2025-02-03 21:42:28 +01:00
Andras Bacsai
c45c64a1a1 fix(ui): always redirect to dashboard after team switch 2025-02-03 21:38:40 +01:00
Andras Bacsai
035db67180
Merge pull request #5036 from sistracia/next 
fix(api): domain check when updating domain
 2025-02-03 21:28:42 +01:00
Andras Bacsai
1e9a4aa5b6 fix(core): remove --remove-orphans flag from proxy startup command to prevent other proxy deletions (db) 2025-02-03 21:24:27 +01:00
Andras Bacsai
2a03544593 fix(core): stopping database is not disabling db proxy 2025-02-03 21:23:43 +01:00
Andras Bacsai
0ff7c468c8 fix(ui): skip SERVICE_FQDN and SERVICE_URL variables during update 2025-02-03 15:44:15 +01:00
Vann
11a5ec7c38 feat: add lines query parameter 2025-02-02 13:43:31 +00:00
Vann
7b60d76b77 feat: remove ansi color from log 2025-02-02 10:01:01 +00:00
sistracia
43e8d17197 fix(api): domain check when updating domain 2025-02-02 14:52:05 +07:00
Vann
e7988fc295 feat: container logs 2025-02-01 17:21:38 +00:00
Van-Dev
b1d6167e89
feat: add application api route 2025-02-01 22:09:59 +07:00
Islam Adel
2c80595e45
Merge branch 'next' into IARayan-bitbucket-preview-deployment-fix-pullrequest-update 2025-02-01 16:59:08 +02:00
Islam Adel
672a5d0bc5
fix: Handle pullrequest:updated for reliable preview deployments 
The repo:push payload lacks the destination branch name, using push.changes.0.new.name instead. While sufficient for updates, this causes failures in preview deployments when a PR receives new commits—Coolify looks for git_branch in the applications table but finds the source branch instead.

By also processing pullrequest:updated, we ensure preview deployments remain in sync. However, this event triggers on various actions (e.g., PR title changes, reviewer updates), causing extra redeploys. Since Coolify doesn’t store commit hashes for preview deployments, handling these extra redeploys is our best workaround for Bitbucket.
 2025-02-01 12:24:23 +02:00
peaklabs-dev
7406ee67c2
chore(ssl): rename CA cert to coolify-ca.crt because of conflicts 2025-01-31 18:27:20 +01:00
Andras Bacsai
83f0f9fca4 fix(core): improve public repository URL parsing for branch and base directory 2025-01-31 18:17:00 +01:00
peaklabs-dev
85c777d2a4
feat(ssl): use new improved helper for SSL generation 
- use CA cert and key for SSL cert generation
- remove unused parameters
- add a few more echo with log output
 2025-01-31 13:56:20 +01:00
peaklabs-dev
02475c5232
feat(ssl): improve SSL helper 
- improve function parameters
- set default validity to 1 year as resources need to be manually restarted to use the new certificates
- use the CA cert to sign certificates
 2025-01-31 13:37:34 +01:00
peaklabs-dev
34216af497
fix(db): SSL certificates table and model 
- server_id is a foreign id
- server_id must be unique as each server can only have 1 CA cert
- resource_id must be unique as each resource can only have 1 SSL cert
 2025-01-31 12:35:34 +01:00
peaklabs-dev
0915303769
feat(ssl): Add Coolify CA Certificate when adding a new server 2025-01-31 12:27:29 +01:00
peaklabs-dev
e1245f49f1
fix(ui): select component should not always uses title case 2025-01-31 11:57:30 +01:00
peaklabs-dev
34188450eb
feat(ssl): improve SSL helper 
- improve security by making certificates valid for only 90 days instead of 10 years
- add SubjectAltName
- remove unnecessary parameters
- use carbon immutable to make sure expiration date stays the same
 2025-01-30 19:52:21 +01:00
peaklabs-dev
d280f11b6b
feat(ssl): migrate to ECCcertificates using secp521r1 
- Replace RSA 4096 with ECDSA secp521r1 for stronger security (256-bit vs 112-bit)
- Faster certificate generation (3-4x speed improvement)
- 75% smaller key sizes (0.8KB vs 3.2KB) improves storage and transmission
 2025-01-30 19:21:18 +01:00
peaklabs-dev
546001890c
chore(ssl): improve code in ssl helper 2025-01-30 14:37:12 +01:00