upaas

Author	SHA1	Message	Date
user	d89424b62a	fix: pin Docker images to sha256 digests and go install to commit SHAs (closes #118 ) - Pin golang base image to sha256 digest (was golang:1.25-alpine) - Pin alpine base image to sha256 digest (was alpine:3.19) - Pin golangci-lint go install to commit SHA (was @latest) - Pin goimports go install to commit SHA (was @latest) This eliminates RCE risk from tag-based references that could be poisoned to run arbitrary code during docker build.	2026-02-21 00:49:09 -08:00
sneak	cc6dee9fd8	Install golangci-lint v2 in Docker build	2025-12-29 16:29:16 +07:00
sneak	3eb15839c8	Use Go 1.25 (latest stable release)	2025-12-29 16:23:57 +07:00
sneak	e59b3a0ee4	Update to Go 1.24 for golang.org/x/tools compatibility	2025-12-29 16:21:46 +07:00
sneak	219a561473	Use PORT instead of UPAAS_PORT for listen port	2025-12-29 16:15:05 +07:00
sneak	dce898bbdb	Auto-generate and persist session secret on first startup - Generate random 32-byte session secret if not set via env var - Persist to $UPAAS_DATA_DIR/session.key for container restarts - Load existing secret from file on subsequent startups - Change container data directory to /var/lib/upaas	2025-12-29 16:12:30 +07:00
sneak	3f9d83c436	Initial commit with server startup infrastructure Core infrastructure: - Uber fx dependency injection - Chi router with middleware stack - SQLite database with embedded migrations - Embedded templates and static assets - Structured logging with slog Features implemented: - Authentication (login, logout, session management, argon2id hashing) - App management (create, edit, delete, list) - Deployment pipeline (clone, build, deploy, health check) - Webhook processing for Gitea - Notifications (ntfy, Slack) - Environment variables, labels, volumes per app - SSH key generation for deploy keys Server startup: - Server.Run() starts HTTP server on configured port - Server.Shutdown() for graceful shutdown - SetupRoutes() wires all handlers with chi router	2025-12-29 15:46:03 +07:00

7 Commits