Firewall handling with multi-app deployment with no custom domain

theognis1002 · theognis1002 · commit 1818c3ce794b · 2025-10-19T09:41:39.000-04:00
diff --git a/cmd/common_test.go b/cmd/common_test.go
@@ -60,11 +60,10 @@ func TestResolveBuilder_AutoSelect_Dockerfile(t *testing.T) {
 		t.Fatalf("Failed to create Dockerfile: %v", err)
 	}
 
-	// Test: Should fallback to nixpacks since dockerfile builder is not yet implemented
-	// TODO: When dockerfile builder is implemented, this should expect 'dockerfile'
+	// Test: Should select dockerfile builder since it's now implemented
 	builderName := resolveBuilder(target, tmpDir, detection, "")
-	if builderName != "nixpacks" && builderName != "native" {
-		t.Errorf("Expected auto-select 'nixpacks' or 'native' (fallback from dockerfile), got '%s'", builderName)
+	if builderName != "dockerfile" {
+		t.Errorf("Expected auto-select 'dockerfile', got '%s'", builderName)
 	}
 }
 
diff --git a/cmd/deploy.go b/cmd/deploy.go
@@ -120,18 +120,7 @@ Examples:
 
 		builderName := resolveBuilder(target, projectPath, &detection, deployBuilderFlag)
 
-		dockerfilePath := filepath.Join(projectPath, "Dockerfile")
-		_, dockerfileExists := os.Stat(dockerfilePath)
-		showFallback := dockerfileExists == nil && builderName != "dockerfile"
-
-		if showFallback {
-			fmt.Printf("  %s %s %s\n",
-				deployMutedStyle.Render("Builder:"),
-				deployMutedStyle.Render(builderName),
-				deployMutedStyle.Render("(dockerfile not implemented yet)"))
-		} else {
-			fmt.Printf("  %s %s\n", deployMutedStyle.Render("Builder:"), deployMutedStyle.Render(builderName))
-		}
+		fmt.Printf("  %s %s\n", deployMutedStyle.Render("Builder:"), deployMutedStyle.Render(builderName))
 
 		if target.Builder != builderName {
 			target.Builder = builderName
diff --git a/pkg/builders/dockerfile/builder.go b/pkg/builders/dockerfile/builder.go
@@ -4,8 +4,11 @@ import (
 	"context"
 	"fmt"
 	"lightfold/pkg/builders"
+	"lightfold/pkg/config"
 	"os"
+	"os/exec"
 	"path/filepath"
+	"strings"
 )
 
 // DockerfileBuilder uses an existing Dockerfile for building
@@ -22,32 +25,222 @@ func (d *DockerfileBuilder) Name() string {
 }
 
 func (d *DockerfileBuilder) IsAvailable() bool {
-	// TODO: Implement Dockerfile builder - check for Docker daemon availability
-	// Dockerfile builder is not yet implemented
-	return false
+	// Check if docker command exists
+	_, err := exec.LookPath("docker")
+	if err != nil {
+		return false
+	}
+
+	// Check if Docker daemon is accessible
+	cmd := exec.Command("docker", "info")
+	if err := cmd.Run(); err != nil {
+		return false
+	}
+
+	return true
 }
 
 func (d *DockerfileBuilder) NeedsNginx() bool {
+	// Assume Dockerfile includes its own web server
+	// User can configure nginx separately if needed
 	return false
 }
 
 func (d *DockerfileBuilder) Build(ctx context.Context, opts *builders.BuildOptions) (*builders.BuildResult, error) {
+	// Verify Dockerfile exists
 	dockerfilePath := filepath.Join(opts.ProjectPath, "Dockerfile")
 	if _, err := os.Stat(dockerfilePath); os.IsNotExist(err) {
 		return &builders.BuildResult{
 			Success: false,
 		}, fmt.Errorf("Dockerfile not found at %s", dockerfilePath)
 	}
 
-	// TODO: Implement dockerfile builder
-	// - Build image: docker build -t <app>:latest .
-	// - Export as tarball: docker save <app>:latest -o /tmp/image.tar
-	// - Transfer to server via SSH
-	// - Load and run: docker load < image.tar && docker run ...
+	// Extract app name from release path
+	appName := extractAppName(opts.ReleasePath)
+	if appName == "" {
+		return &builders.BuildResult{
+			Success: false,
+		}, fmt.Errorf("failed to extract app name from release path: %s", opts.ReleasePath)
+	}
+
+	imageName := fmt.Sprintf("lightfold-%s:latest", appName)
+	tarballPath := filepath.Join(os.TempDir(), fmt.Sprintf("lightfold-%s-image.tar", appName))
+
+	var buildLog strings.Builder
+
+	// Step 1: Build Docker image locally
+	buildLog.WriteString(fmt.Sprintf("Building Docker image: %s\n", imageName))
+	buildCmd := exec.CommandContext(ctx, "docker", "build", "-t", imageName, opts.ProjectPath)
+	buildCmd.Dir = opts.ProjectPath
+
+	buildOutput, err := buildCmd.CombinedOutput()
+	buildLog.Write(buildOutput)
+
+	if err != nil {
+		return &builders.BuildResult{
+			Success:  false,
+			BuildLog: buildLog.String(),
+		}, fmt.Errorf("docker build failed: %w\nOutput: %s", err, buildOutput)
+	}
+
+	// Step 2: Export image as tarball
+	buildLog.WriteString(fmt.Sprintf("\nExporting image to tarball: %s\n", tarballPath))
+	saveCmd := exec.CommandContext(ctx, "docker", "save", "-o", tarballPath, imageName)
+
+	saveOutput, err := saveCmd.CombinedOutput()
+	buildLog.Write(saveOutput)
+
+	if err != nil {
+		return &builders.BuildResult{
+			Success:  false,
+			BuildLog: buildLog.String(),
+		}, fmt.Errorf("docker save failed: %w\nOutput: %s", err, saveOutput)
+	}
+
+	// Ensure cleanup of tarball
+	defer os.Remove(tarballPath)
+
+	// Step 3: Ensure Docker is installed on remote server
+	buildLog.WriteString("\nChecking Docker on remote server...\n")
+	ssh := opts.SSHExecutor
+
+	dockerCheck := ssh.Execute("which docker")
+	if dockerCheck.ExitCode != 0 {
+		buildLog.WriteString("Installing Docker on remote server...\n")
+
+		// Install Docker using official script
+		installCmds := []string{
+			"curl -fsSL https://get.docker.com -o /tmp/get-docker.sh",
+			"sudo sh /tmp/get-docker.sh",
+			"sudo usermod -aG docker deploy",
+			"rm /tmp/get-docker.sh",
+		}
+
+		for _, cmd := range installCmds {
+			result := ssh.ExecuteSudo(cmd)
+			buildLog.WriteString(result.Stdout)
+			buildLog.WriteString(result.Stderr)
+
+			if result.ExitCode != 0 {
+				return &builders.BuildResult{
+					Success:  false,
+					BuildLog: buildLog.String(),
+				}, fmt.Errorf("failed to install Docker on remote server: %s", result.Stderr)
+			}
+		}
+
+		buildLog.WriteString("Docker installed successfully\n")
+	}
+
+	// Step 4: Transfer tarball to remote server
+	remoteTarballPath := fmt.Sprintf("/tmp/lightfold-%s-image.tar", appName)
+	buildLog.WriteString(fmt.Sprintf("\nTransferring image to server: %s\n", remoteTarballPath))
+
+	if err := ssh.UploadFile(tarballPath, remoteTarballPath); err != nil {
+		return &builders.BuildResult{
+			Success:  false,
+			BuildLog: buildLog.String(),
+		}, fmt.Errorf("failed to transfer image tarball: %w", err)
+	}
+
+	// Step 5: Load Docker image on remote server
+	buildLog.WriteString("\nLoading Docker image on remote server...\n")
+	loadResult := ssh.Execute(fmt.Sprintf("docker load -i %s", remoteTarballPath))
+	buildLog.WriteString(loadResult.Stdout)
+	buildLog.WriteString(loadResult.Stderr)
+
+	if loadResult.ExitCode != 0 {
+		ssh.Execute(fmt.Sprintf("rm %s", remoteTarballPath))
+		return &builders.BuildResult{
+			Success:  false,
+			BuildLog: buildLog.String(),
+		}, fmt.Errorf("docker load failed: %s", loadResult.Stderr)
+	}
+
+	// Cleanup remote tarball
+	ssh.Execute(fmt.Sprintf("rm %s", remoteTarballPath))
+
+	// Step 6: Write environment variables to .env file if provided
+	if len(opts.EnvVars) > 0 {
+		var envContent strings.Builder
+		for key, value := range opts.EnvVars {
+			envContent.WriteString(fmt.Sprintf("%s=%s\n", key, value))
+		}
+
+		envPath := fmt.Sprintf("%s/.env", opts.ReleasePath)
+		if err := ssh.WriteRemoteFile(envPath, envContent.String(), config.PermEnvFile); err != nil {
+			return &builders.BuildResult{
+				Success:  false,
+				BuildLog: buildLog.String(),
+			}, fmt.Errorf("failed to write .env file: %w", err)
+		}
+
+		ssh.ExecuteSudo(fmt.Sprintf("chown deploy:deploy %s", envPath))
+		buildLog.WriteString(fmt.Sprintf("\nWrote environment variables to %s\n", envPath))
+	}
+
+	// Step 7: Create docker-compose.yml or docker run script
+	// We'll create a simple run script that can be used by systemd
+	port := extractPortFromEnv(opts.EnvVars)
+	if port == "" {
+		port = "3000" // Default port
+	}
+
+	runScript := fmt.Sprintf(`#!/bin/bash
+# Lightfold Docker container run script
+CONTAINER_NAME="lightfold-%s"
+IMAGE_NAME="%s"
+RELEASE_PATH="%s"
+
+# Stop and remove existing container if running
+docker stop $CONTAINER_NAME 2>/dev/null || true
+docker rm $CONTAINER_NAME 2>/dev/null || true
+
+# Run new container
+docker run -d \
+  --name $CONTAINER_NAME \
+  --restart unless-stopped \
+  -p %s:3000 \
+  --env-file $RELEASE_PATH/.env \
+  $IMAGE_NAME
+`, appName, imageName, opts.ReleasePath, port)
+
+	runScriptPath := fmt.Sprintf("%s/docker-run.sh", opts.ReleasePath)
+	if err := ssh.WriteRemoteFile(runScriptPath, runScript, 0755); err != nil {
+		return &builders.BuildResult{
+			Success:  false,
+			BuildLog: buildLog.String(),
+		}, fmt.Errorf("failed to write docker run script: %w", err)
+	}
+
+	ssh.ExecuteSudo(fmt.Sprintf("chown deploy:deploy %s", runScriptPath))
+	buildLog.WriteString(fmt.Sprintf("\nCreated Docker run script at %s\n", runScriptPath))
+
+	buildLog.WriteString("\n✓ Docker build completed successfully\n")
 
 	return &builders.BuildResult{
-		Success:       false,
-		BuildLog:      "",
-		IncludesNginx: true,
-	}, fmt.Errorf("dockerfile builder not yet implemented - requires container runtime support")
+		Success:       true,
+		BuildLog:      buildLog.String(),
+		IncludesNginx: false, // Docker containers typically include their own web server
+		StartCommand:  fmt.Sprintf("bash %s/docker-run.sh", opts.ReleasePath),
+	}, nil
+}
+
+// extractAppName extracts the app name from the release path
+// Example: /srv/myapp/releases/20240101120000 -> myapp
+func extractAppName(releasePath string) string {
+	parts := strings.Split(releasePath, "/")
+	if len(parts) >= 3 {
+		// Path format: /srv/{appname}/releases/{timestamp}
+		return parts[2]
+	}
+	return ""
+}
+
+// extractPortFromEnv tries to find PORT env var, defaults to ""
+func extractPortFromEnv(envVars map[string]string) string {
+	if port, ok := envVars["PORT"]; ok {
+		return port
+	}
+	return ""
 }
diff --git a/pkg/builders/dockerfile/builder_test.go b/pkg/builders/dockerfile/builder_test.go
@@ -2,8 +2,6 @@ package dockerfile
 
 import (
 	"context"
-	"os"
-	"path/filepath"
 	"testing"
 
 	"lightfold/pkg/builders"
@@ -18,10 +16,11 @@ func TestDockerfileBuilder_Name(t *testing.T) {
 
 func TestDockerfileBuilder_IsAvailable(t *testing.T) {
 	builder := &DockerfileBuilder{}
-	// TODO: When Dockerfile builder is implemented, this should return true
-	if builder.IsAvailable() {
-		t.Error("Dockerfile builder should return false until implemented")
-	}
+	// IsAvailable() checks if Docker daemon is accessible
+	// This will return true if Docker is installed and running
+	available := builder.IsAvailable()
+	t.Logf("Docker available: %v", available)
+	// We don't assert a specific value since it depends on the test environment
 }
 
 func TestDockerfileBuilder_NeedsNginx(t *testing.T) {
@@ -40,21 +39,17 @@ func TestDockerfileBuilder_Build_NotImplemented(t *testing.T) {
 		ProjectPath: tmpDir,
 	})
 
+	// Now that it's implemented, it should error because Dockerfile is missing
 	if err == nil {
-		t.Error("Expected error for not implemented builder")
+		t.Error("Expected error when Dockerfile is missing")
 	}
 
 	if result == nil {
 		t.Fatal("Expected non-nil result even on error")
 	}
 
 	if result.Success {
-		t.Error("Expected success=false for not implemented builder")
-	}
-
-	// Verify error message mentions not implemented
-	if err.Error() == "" {
-		t.Error("Expected non-empty error message")
+		t.Error("Expected success=false when Dockerfile is missing")
 	}
 }
 
@@ -82,25 +77,8 @@ func TestDockerfileBuilder_Build_MissingDockerfile(t *testing.T) {
 }
 
 func TestDockerfileBuilder_Build_DockerfileExists(t *testing.T) {
-	builder := &DockerfileBuilder{}
-
-	tmpDir := t.TempDir()
-	dockerfilePath := filepath.Join(tmpDir, "Dockerfile")
-	if err := os.WriteFile(dockerfilePath, []byte("FROM node:18\nCOPY . .\n"), 0644); err != nil {
-		t.Fatalf("Failed to create test Dockerfile: %v", err)
-	}
+	t.Skip("Skipping full build test - requires Docker daemon and SSH executor")
 
-	result, err := builder.Build(context.Background(), &builders.BuildOptions{
-		ProjectPath: tmpDir,
-	})
-
-	// Should still error because not implemented, but should pass Dockerfile check
-	if err == nil {
-		t.Error("Expected error for not implemented builder")
-	}
-
-	// Error should be about not implemented, not missing Dockerfile
-	if result == nil {
-		t.Fatal("Expected non-nil result")
-	}
+	// Note: Full integration testing is covered by end-to-end tests
+	// Unit test just verifies Dockerfile existence checking in TestDockerfileBuilder_Build_MissingDockerfile
 }
diff --git a/pkg/builders/registry_test.go b/pkg/builders/registry_test.go

Original file line number	Diff line number	Diff line change
`@@ -60,11 +60,10 @@ func TestResolveBuilder_AutoSelect_Dockerfile(t *testing.T) {`
`60`	`60`	`t.Fatalf("Failed to create Dockerfile: %v", err)`
`61`	`61`	`}`
`62`	`62`
`63`		`- // Test: Should fallback to nixpacks since dockerfile builder is not yet implemented`
`64`		`- // TODO: When dockerfile builder is implemented, this should expect 'dockerfile'`
	`63`	`+ // Test: Should select dockerfile builder since it's now implemented`
`65`	`64`	`builderName := resolveBuilder(target, tmpDir, detection, "")`
`66`		`- if builderName != "nixpacks" && builderName != "native" {`
`67`		`- t.Errorf("Expected auto-select 'nixpacks' or 'native' (fallback from dockerfile), got '%s'", builderName)`
	`65`	`+ if builderName != "dockerfile" {`
	`66`	`+ t.Errorf("Expected auto-select 'dockerfile', got '%s'", builderName)`
`68`	`67`	`}`
`69`	`68`	`}`
`70`	`69`