jbrueckner/GhostGrid
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(caddy): auto-import Caddyfile on first enable; seed default admin user

Browse Source 
When Caddy is enabled for the first time (caddy routes table empty),
importCaddyfileRoutes() reads /etc/caddy/Caddyfile and seeds all
hostname/upstream blocks as custom routes — no manual entry needed after deploy.

On first startup with an empty users table, a default admin user is created
(admin@ghostgrid.local / admin) so the system is immediately usable.
This commit is contained in:
Brückner
2026-06-08 10:09:26 +02:00
parent 47e7b65613
commit 00cf5dd02d
2 changed files with 68 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
ARCHITECTURE.md
View File

@ -11,6 +11,7 @@
| Version | Date | Changes |
|---------|------|---------|
| 1.3 | Jun 8, 2026 | Auto-import Caddyfile on first Caddy enable; default admin user on first start |
| 1.2 | Jun 8, 2026 | Removed `caddy_prod_domain` / `caddy_dev_domain` settings; Caddy now routes only custom entries |
| 1.1 | Jun 8, 2026 | Dropped the migration layer (fresh-install schema); renamed the `caddy_routes` table to `caddy` |
| 1.0 | Jun 8, 2026 | Initial architecture reference generated from the codebase |
@ -474,6 +475,10 @@ buildCaddyfile():
{ local_certs } # global block
per custom route { [encode] [tls internal] reverse_proxy <upstream> }
importCaddyfileRoutes(): reads /etc/caddy/Caddyfile on first Caddy enable
parses hostname/upstream blocks → seeds caddy table as custom routes
(no-op if caddy table already has entries or file not found)
pushCaddyConfig(): POST <caddy_admin_url>/load (Content-Type: text/caddyfile)
called on startup, after settings save, after route add/delete
(failures logged as warnings, non-fatal; skipped if caddy_enabled !== 'true')
@ -481,6 +486,24 @@ pushCaddyConfig(): POST <caddy_admin_url>/load (Content-Type: text/caddyfile)
---
### 6.4 First-start Initialization
Runs in `startServer()` before any routes are registered, every startup — both operations
are idempotent and only fire once on a blank database.
```
Default admin user:
if users table is empty:
INSERT user (name='Admin', role='Admin', email='admin@ghostgrid.local', password=bcrypt('admin'))
→ log "[Init] Default admin user created"
Default settings:
INSERT OR IGNORE all DEFAULT_SETTINGS keys from server-db.ts
→ existing values in the settings table are never overwritten
```
---
## 7. Frontend Architecture
### 7.1 Application Structure
@ -560,7 +583,8 @@ Settings
+-- Microsoft Entra ID (OAuth SSO, redirect-URI helper, allowed group)
+-- CheckMK (API URL/user/secret, sync interval, "Run sync now")
+-- Ansible Semaphore (API URL/token/project, "Test connection")
+-- Caddy (admin URL, custom route management)
+-- Caddy (admin URL, custom route management;
auto-seeded from /etc/caddy/Caddyfile on first enable)
+-- Secret inputs use the __SET__ sentinel (blank = keep existing)
```