Forward/ballistic-builder-spring
2
0
Fork 0
mirror of https://gitea.gofwd.group/Forward_Group/ballistic-builder-spring.git synced 2026-03-06 22:37:58 -05:00
Code Issues Packages Projects Releases Wiki Activity

updated cors and security because slave created one too many

Browse Source
This commit is contained in:
Don Strawsburg
2026-01-23 21:38:37 -05:00
parent a579ceab41
commit 5ea775d465
3 changed files with 29 additions and 26 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
docker/docker-compose.yaml
View File

@@ -1,8 +1,8 @@
services: services:
# --- 1. Spring API Service (Backend) --- # --- 1. Spring API Service (Backend) ---
battlbuilder_api: battlbuilder-api:
container_name: battlbuilder_api container_name: battlbuilder-api
hostname: battlbuilder_api hostname: battlbuilder-api
image: gitea.gofwd.group/forward_group/ballistic-builder-spring/spring-api:latest image: gitea.gofwd.group/forward_group/ballistic-builder-spring/spring-api:latest
ports: ports:
- "8080:8080" # Map host port 8080 to container port 8080 - "8080:8080" # Map host port 8080 to container port 8080
@@ -11,31 +11,35 @@ services:
- SPRING_DATASOURCE_URL=jdbc:postgresql://ash.gofwd.group:5433/ss_builder - SPRING_DATASOURCE_URL=jdbc:postgresql://ash.gofwd.group:5433/ss_builder
- SPRING_DATASOURCE_USERNAME=dba - SPRING_DATASOURCE_USERNAME=dba
- SPRING_DATASOURCE_PASSWORD=!@#Qwerty - SPRING_DATASOURCE_PASSWORD=!@#Qwerty
- SPRING_PROFILES_ACTIVE=openai,prod - SPRING_PROFILES_ACTIVE=openai
- AI_ENRICHMENT_PROVIDER=openai - AI_ENRICHMENT_PROVIDER=openai
networks: networks:
- app-network - app-network
# --- 2. Next.js App Service (Frontend) --- # --- 2. Next.js App Service (Frontend) ---
bb_web_app: bb-web-app:
hostname: bb_web_app hostname: bb-web-app
container_name: bb_web_app container_name: bb-web-app
image: gitea.gofwd.group/sean/shadow-gunbuilder-ai-proto/webui:latest image: gitea.gofwd.group/sean/shadow-gunbuilder-ai-proto/webui:latest
ports: ports:
- "3000:3000" # Map host port 3000 to container port 3000 - "3001:3000" # Map host port 3000 to container port 3000
environment: environment:
# This variable is crucial: Next.js needs the URL for the Spring API # This variable is crucial: Next.js needs the URL for the Spring API
# Use the Docker internal service name 'spring-api' and its port 8080 # Use the Docker internal service name 'spring-api' and its port 8080
- NEXT_PUBLIC_API_URL=http://ss_builder-api:8080 - NEXT_PUBLIC_API_BASE_URL=https://battl.builders
- API_INTERNAL_BASE_URL=http://battlbuilder-api:8080 # optional, for server-side-only calls
# For local testing, you might need the host IP for Next.js to call back # For local testing, you might need the host IP for Next.js to call back
# - NEXT_PUBLIC_API_URL_LOCAL=http://localhost:8080 # - NEXT_PUBLIC_API_URL_LOCAL=http://localhost:8080
depends_on: depends_on:
- battlbuilder_api - battlbuilder-api
networks: networks:
- app-network - app-network
- nginx_nginx
# --- Docker Network for Inter-Container Communication --- # --- Docker Network for Inter-Container Communication ---
networks: networks:
app-network: app-network:
driver: bridge external: false
nginx_nginx:
external: true

21
src/main/java/group/goforward/battlbuilder/config/CorsConfig.java
View File

@@ -22,20 +22,13 @@ public class CorsConfig {
// Allow Angular development server // Allow Angular development server
config.setAllowedOrigins(Arrays.asList( config.setAllowedOrigins(Arrays.asList(
"http://localhost:4200", "http://localhost:3000", // local dev
"http://localhost:4201", "https://localhost:3000", // local https dev (if used)
"http://localhost:8070", "https://battl.builders",
"https://localhost:8070", "http://bb-web-app:3001",
"http://localhost:8080", "http://bb-web-app:3000"
"https://localhost:8080", )); // production frontend));
"http://localhost:3000",
"https://localhost:3000",
"https://localhost:3000/gunbuilder",
"http://localhost:3000/gunbuilder",
"https://localhost:3000/builder",
"http://localhost:3000/builder",
"https://battl.builders"
));
// Allow all headers // Allow all headers
config.addAllowedHeader("*"); config.addAllowedHeader("*");

8
src/main/java/group/goforward/battlbuilder/config/SecurityConfig.java
View File

@@ -18,6 +18,7 @@ import org.springframework.web.cors.CorsConfiguration;
import org.springframework.web.cors.CorsConfigurationSource; import org.springframework.web.cors.CorsConfigurationSource;
import org.springframework.web.cors.UrlBasedCorsConfigurationSource; import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
import java.util.Arrays;
import java.util.List; import java.util.List;
@Configuration @Configuration
@@ -77,7 +78,12 @@ public class SecurityConfig {
@Bean @Bean
public CorsConfigurationSource corsConfigurationSource() { public CorsConfigurationSource corsConfigurationSource() {
CorsConfiguration cfg = new CorsConfiguration(); CorsConfiguration cfg = new CorsConfiguration();
cfg.setAllowedOrigins(List.of("http://localhost:3000", "https://battl.builders")); cfg.setAllowedOrigins(Arrays.asList(
"http://localhost:3000", // local dev
"https://localhost:3000", // local https dev (if used)
"https://battl.builders",
"http://bb-web-app:3001",
"http://bb-web-app:3000")); // production frontend));
cfg.setAllowedMethods(List.of("GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS")); cfg.setAllowedMethods(List.of("GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS"));
cfg.setAllowedHeaders(List.of("Authorization", "Content-Type")); cfg.setAllowedHeaders(List.of("Authorization", "Content-Type"));
cfg.setExposedHeaders(List.of("Authorization")); cfg.setExposedHeaders(List.of("Authorization"));