StuMason
diff --git a/‎.dockerignore‎
Lines changed: 60 additions & 0 deletions b/‎.dockerignore‎
Lines changed: 60 additions & 0 deletions
diff --git a/‎.github/workflows/publish.yml‎
Lines changed: 47 additions & 0 deletions b/‎.github/workflows/publish.yml‎
Lines changed: 47 additions & 0 deletions
diff --git a/‎Dockerfile‎
Lines changed: 5 additions & 0 deletions b/‎Dockerfile‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 47 additions & 16 deletions b/‎README.md‎
Lines changed: 47 additions & 16 deletions
diff --git a/‎alembic.ini‎
Lines changed: 150 additions & 0 deletions b/‎alembic.ini‎
Lines changed: 150 additions & 0 deletions
diff --git a/‎alembic/README‎
Lines changed: 1 addition & 0 deletions b/‎alembic/README‎
Lines changed: 1 addition & 0 deletions
@@ -0,0 +1,60 @@
+# Git
+.git
+.github
+.gitignore
+
+# Python
+.venv
+__pycache__
+*.pyc
+*.pyo
+*.pyd
+.Python
+*.egg-info
+dist
+build
+eggs
+*.egg
+.eggs
+
+# Testing and linting
+.pytest_cache
+.mypy_cache
+.ruff_cache
+.coverage
+htmlcov
+coverage.xml
+*.cover
+
+# Documentation (built by mkdocs)
+site/
+
+# IDE
+.idea
+.vscode
+*.swp
+*.swo
+
+# Environment
+.env
+.env.*
+!.env.example
+
+# Local development
+*.db
+*.sqlite
+data/
+
+# Tests
+tests/
+
+# Documentation source (keep docs/ for reference, but site/ is built output)
+# docs/
+
+# Misc
+*.md
+!README.md
+!CHANGELOG.md
+*.log
+.DS_Store
+Thumbs.db
@@ -0,0 +1,47 @@
+name: Publish Docker Image
+
+on:
+  push:
+    branches: [main]
+
+env:
+  REGISTRY: docker.io
+  IMAGE_NAME: stumason/polar-flow-server
+
+jobs:
+  build-and-push:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Get version from pyproject.toml
+        id: version
+        run: |
+          VERSION=$(grep -m1 'version = ' pyproject.toml | cut -d'"' -f2)
+          echo "version=$VERSION" >> $GITHUB_OUTPUT
+          echo "Version: $VERSION"
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Log in to Docker Hub
+        uses: docker/login-action@v3
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+
+      - name: Build and push
+        uses: docker/build-push-action@v5
+        with:
+          context: .
+          push: true
+          tags: |
+            ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:latest
+            ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ steps.version.outputs.version }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
@@ -1,5 +1,10 @@
 FROM python:3.12-slim
 
+# Install system dependencies (curl for health checks, psycopg dependencies)
+RUN apt-get update && apt-get install -y --no-install-recommends \
+    curl \
+    && rm -rf /var/lib/apt/lists/*
+
 # Install uv
 COPY --from=ghcr.io/astral-sh/uv:latest /uv /usr/local/bin/uv
 
 
@@ -33,26 +33,29 @@ Polar API → polar-flow SDK → Sync Service → PostgreSQL
 
 ## Quick Start
 
-### 1. Get Polar API Credentials
+### Option 1: Docker (Recommended)
 
-1. Go to [admin.polaraccesslink.com](https://admin.polaraccesslink.com)
-2. Create a new client
-3. Set redirect URI to `http://localhost:8000/admin/oauth/callback`
-4. Note your `CLIENT_ID` and `CLIENT_SECRET`
+```bash
+# Pull and run
+curl -O https://raw.githubusercontent.com/StuMason/polar-flow-server/main/docker-compose.prod.yml
+docker-compose -f docker-compose.prod.yml up -d
+
+# That's it. Open http://localhost:8000/admin
+```
 
-### 2. Start with Docker Compose
+### Option 2: From Source
 
 ```bash
 git clone https://github.com/StuMason/polar-flow-server.git
 cd polar-flow-server
 docker-compose up -d
 ```
 
-### 3. Connect Your Polar Account
+### Setup
 
 1. Open http://localhost:8000/admin
-2. Enter your Polar OAuth credentials
-3. Click "Connect with Polar" to authorize
+2. Get Polar credentials from [admin.polaraccesslink.com](https://admin.polaraccesslink.com) (set redirect URI to `http://localhost:8000/admin/oauth/callback`)
+3. Enter credentials and click "Connect with Polar"
 4. Hit "Sync Now" to pull your data
 
 The server syncs data every hour automatically.
@@ -109,15 +112,23 @@ SYNC_DAYS_LOOKBACK=28
 curl http://localhost:8000/health
 
 # Get sleep data (last 7 days)
-curl "http://localhost:8000/api/users/{user_id}/sleep?days=7"
+curl "http://localhost:8000/users/{user_id}/sleep?days=7"
+
+# Get activity data
+curl "http://localhost:8000/users/{user_id}/activity?days=7"
 
-# Get sleep for specific date
-curl "http://localhost:8000/api/users/{user_id}/sleep/2026-01-10"
+# Get nightly recharge (HRV)
+curl "http://localhost:8000/users/{user_id}/recharge?days=7"
 
-# Trigger manual sync (via admin panel recommended)
-curl -X POST http://localhost:8000/admin/sync
+# Get exercises
+curl "http://localhost:8000/users/{user_id}/exercises?days=30"
+
+# Export summary
+curl "http://localhost:8000/users/{user_id}/export/summary?days=30"
 ```
 
+**Optional Authentication:** Set `API_KEY` environment variable to require `X-API-Key` header on all data endpoints. If not set, endpoints are open.
+
 ## Development
 
 ```bash
@@ -140,6 +151,28 @@ uv run mypy src/polar_flow_server
 uv run ruff check src/
 ```
 
+## Production Deployment
+
+Deploy anywhere that runs Docker:
+
+```bash
+# Download and run
+curl -O https://raw.githubusercontent.com/StuMason/polar-flow-server/main/docker-compose.prod.yml
+docker-compose -f docker-compose.prod.yml up -d
+```
+
+**Coolify, Railway, Render, etc.** - Point at the GitHub repo, it builds from the Dockerfile.
+
+**Database migrations** run automatically on startup.
+
+### Optional Environment Variables
+
+| Variable | Description | Default |
+|----------|-------------|---------|
+| `API_KEY` | Require authentication on data endpoints | None (open) |
+| `SYNC_INTERVAL_HOURS` | Auto-sync frequency | 1 |
+| `LOG_LEVEL` | Logging verbosity | INFO |
+
 ## Multi-Tenancy
 
 The server supports multiple users out of the box:
@@ -149,8 +182,6 @@ The server supports multiple users out of the box:
 - Self-hosted: typically one user
 - SaaS: many users, same codebase
 
-For SaaS deployment, set `DEPLOYMENT_MODE=saas` and provide `ENCRYPTION_KEY`.
-
 ## Built With
 
 - [polar-flow](https://github.com/StuMason/polar-flow) - Python SDK for Polar AccessLink API
 
@@ -0,0 +1,150 @@
+# A generic, single database configuration.
+
+[alembic]
+# path to migration scripts.
+# this is typically a path given in POSIX (e.g. forward slashes)
+# format, relative to the token %(here)s which refers to the location of this
+# ini file
+script_location = %(here)s/alembic
+
+# template used to generate migration file names; The default value is %%(rev)s_%%(slug)s
+# Uncomment the line below if you want the files to be prepended with date and time
+# see https://alembic.sqlalchemy.org/en/latest/tutorial.html#editing-the-ini-file
+# for all available tokens
+# file_template = %%(year)d_%%(month).2d_%%(day).2d_%%(hour).2d%%(minute).2d-%%(rev)s_%%(slug)s
+# Or organize into date-based subdirectories (requires recursive_version_locations = true)
+# file_template = %%(year)d/%%(month).2d/%%(day).2d_%%(hour).2d%%(minute).2d_%%(second).2d_%%(rev)s_%%(slug)s
+
+# sys.path path, will be prepended to sys.path if present.
+# defaults to the current working directory.  for multiple paths, the path separator
+# is defined by "path_separator" below.
+prepend_sys_path = .
+
+
+# timezone to use when rendering the date within the migration file
+# as well as the filename.
+# If specified, requires the tzdata library which can be installed by adding
+# `alembic[tz]` to the pip requirements.
+# string value is passed to ZoneInfo()
+# leave blank for localtime
+# timezone =
+
+# max length of characters to apply to the "slug" field
+# truncate_slug_length = 40
+
+# set to 'true' to run the environment during
+# the 'revision' command, regardless of autogenerate
+# revision_environment = false
+
+# set to 'true' to allow .pyc and .pyo files without
+# a source .py file to be detected as revisions in the
+# versions/ directory
+# sourceless = false
+
+# version location specification; This defaults
+# to <script_location>/versions.  When using multiple version
+# directories, initial revisions must be specified with --version-path.
+# The path separator used here should be the separator specified by "path_separator"
+# below.
+# version_locations = %(here)s/bar:%(here)s/bat:%(here)s/alembic/versions
+
+# path_separator; This indicates what character is used to split lists of file
+# paths, including version_locations and prepend_sys_path within configparser
+# files such as alembic.ini.
+# The default rendered in new alembic.ini files is "os", which uses os.pathsep
+# to provide os-dependent path splitting.
+#
+# Note that in order to support legacy alembic.ini files, this default does NOT
+# take place if path_separator is not present in alembic.ini.  If this
+# option is omitted entirely, fallback logic is as follows:
+#
+# 1. Parsing of the version_locations option falls back to using the legacy
+#    "version_path_separator" key, which if absent then falls back to the legacy
+#    behavior of splitting on spaces and/or commas.
+# 2. Parsing of the prepend_sys_path option falls back to the legacy
+#    behavior of splitting on spaces, commas, or colons.
+#
+# Valid values for path_separator are:
+#
+# path_separator = :
+# path_separator = ;
+# path_separator = space
+# path_separator = newline
+#
+# Use os.pathsep. Default configuration used for new projects.
+path_separator = os
+
+# set to 'true' to search source files recursively
+# in each "version_locations" directory
+# new in Alembic version 1.10
+# recursive_version_locations = false
+
+# the output encoding used when revision files
+# are written from script.py.mako
+# output_encoding = utf-8
+
+# database URL.  This is consumed by the user-maintained env.py script only.
+# other means of configuring database URLs may be customized within the env.py
+# file.
+# Database URL loaded from settings in env.py
+sqlalchemy.url =
+
+
+[post_write_hooks]
+# post_write_hooks defines scripts or Python functions that are run
+# on newly generated revision scripts.  See the documentation for further
+# detail and examples
+
+# format using "black" - use the console_scripts runner, against the "black" entrypoint
+# hooks = black
+# black.type = console_scripts
+# black.entrypoint = black
+# black.options = -l 79 REVISION_SCRIPT_FILENAME
+
+# lint with attempts to fix using "ruff" - use the module runner, against the "ruff" module
+# hooks = ruff
+# ruff.type = module
+# ruff.module = ruff
+# ruff.options = check --fix REVISION_SCRIPT_FILENAME
+
+# Alternatively, use the exec runner to execute a binary found on your PATH
+# hooks = ruff
+# ruff.type = exec
+# ruff.executable = ruff
+# ruff.options = check --fix REVISION_SCRIPT_FILENAME
+
+# Logging configuration.  This is also consumed by the user-maintained
+# env.py script only.
+[loggers]
+keys = root,sqlalchemy,alembic
+
+[handlers]
+keys = console
+
+[formatters]
+keys = generic
+
+[logger_root]
+level = WARNING
+handlers = console
+qualname =
+
+[logger_sqlalchemy]
+level = WARNING
+handlers =
+qualname = sqlalchemy.engine
+
+[logger_alembic]
+level = INFO
+handlers =
+qualname = alembic
+
+[handler_console]
+class = StreamHandler
+args = (sys.stderr,)
+level = NOTSET
+formatter = generic
+
+[formatter_generic]
+format = %(levelname)-5.5s [%(name)s] %(message)s
+datefmt = %H:%M:%S
@@ -0,0 +1 @@
+Generic single-database configuration.