vibn-frontend

mark/vibn-frontend

Fork 0

Commit Graph

Author	SHA1	Message	Date
Mark Henderson	d6b8ba4d67	fix(mcp v2.4.4): only attach traefik-enabled containers to coolify proxy net v2.4.3 attached every stack container to the `coolify` network so Traefik could reach the public container. But that network also hosts coolify-db (alias `postgres`) and coolify-redis (alias `redis`). Docker's embedded DNS resolves unqualified hostnames to the first container with that name on the network, so once Twenty's `postgres-<uuid>` joined the coolify network, Twenty's connection string `postgres://postgres:5432/...` started resolving to coolify-db and auth-failing in a tight restart loop. Coolify's own pipeline only attaches the proxied container — filter by the `traefik.enable=true` label so internal stack members (db, redis, worker) stay isolated on the project network. Made-with: Cursor	2026-04-27 12:36:44 -07:00
Mark Henderson	8b5c876f91	fix(mcp v2.4.3): attach stack containers to coolify proxy network The Twenty (and any service-template) stack was reachable on its private project network but invisible to coolify-proxy/Traefik because no container was joined to the `coolify` network. Public URLs like crm.mark.vibnai.com returned 503 "no available server" even though the underlying app was healthy. Coolify's UI deploy attaches the proxy network as a post-step after the full stack is up. When a sidecar (e.g. Twenty's worker, which waits ~3 min on twenty's healthcheck) fails its depends_on gate, that post-step can be skipped and the stack is left isolated. composeUp now calls attachToCoolifyProxyNetwork() after compose finishes (best-effort, idempotent), and ensureServiceUp does the same on the Coolify-queue happy path. Single apps.create call should now result in a publicly reachable app. Made-with: Cursor	2026-04-27 12:08:27 -07:00
Mark Henderson	62cb77b5a7	feat(mcp v2.4.1): apps.containers.{up,ps} + auto-fallback for queued-start Coolify's POST /services/{uuid}/start writes the rendered compose files but its Laravel queue worker routinely fails to actually invoke `docker compose up -d`. Until now agents had to SSH to recover. For an MVP that promises "tell vibn what app you want, get a URL", that's unacceptable. - lib/coolify-compose.ts: composeUp/composeDown/composePs over SSH via a one-shot docker:cli container that bind-mounts the rendered compose dir (works around vibn-logs being in docker group but not having read access to /data/coolify/services). - apps.create (template + composeRaw pathways) now uses ensureServiceUp which probes whether Coolify's queue actually spawned containers and falls back to direct docker compose up -d if not. Result includes startMethod for visibility. - apps.containers.up / apps.containers.ps exposed as MCP tools for recovery scenarios and post-env-change recreations. - Tenant safety: resolveAppOrService validates uuid against the caller's project before touching anything on the host. Made-with: Cursor	2026-04-23 18:41:42 -07:00

Author

SHA1

Message

Date

Mark Henderson

d6b8ba4d67

fix(mcp v2.4.4): only attach traefik-enabled containers to coolify proxy net

v2.4.3 attached every stack container to the `coolify` network so
Traefik could reach the public container. But that network also hosts
coolify-db (alias `postgres`) and coolify-redis (alias `redis`).
Docker's embedded DNS resolves unqualified hostnames to the first
container with that name on the network, so once Twenty's
`postgres-<uuid>` joined the coolify network, Twenty's connection
string `postgres://postgres:5432/...` started resolving to coolify-db
and auth-failing in a tight restart loop.

Coolify's own pipeline only attaches the proxied container — filter
by the `traefik.enable=true` label so internal stack members (db,
redis, worker) stay isolated on the project network.

Made-with: Cursor

2026-04-27 12:36:44 -07:00

Mark Henderson

8b5c876f91

fix(mcp v2.4.3): attach stack containers to coolify proxy network

The Twenty (and any service-template) stack was reachable on its private
project network but invisible to coolify-proxy/Traefik because no
container was joined to the `coolify` network. Public URLs like
crm.mark.vibnai.com returned 503 "no available server" even though the
underlying app was healthy.

Coolify's UI deploy attaches the proxy network as a post-step after the
full stack is up. When a sidecar (e.g. Twenty's worker, which waits ~3
min on twenty's healthcheck) fails its depends_on gate, that post-step
can be skipped and the stack is left isolated.

composeUp now calls attachToCoolifyProxyNetwork() after compose
finishes (best-effort, idempotent), and ensureServiceUp does the same
on the Coolify-queue happy path. Single apps.create call should now
result in a publicly reachable app.

Made-with: Cursor

2026-04-27 12:08:27 -07:00

Mark Henderson

62cb77b5a7

feat(mcp v2.4.1): apps.containers.{up,ps} + auto-fallback for queued-start

Coolify's POST /services/{uuid}/start writes the rendered compose
files but its Laravel queue worker routinely fails to actually
invoke `docker compose up -d`. Until now agents had to SSH to
recover. For an MVP that promises "tell vibn what app you want,
get a URL", that's unacceptable.

- lib/coolify-compose.ts: composeUp/composeDown/composePs over SSH
  via a one-shot docker:cli container that bind-mounts the rendered
  compose dir (works around vibn-logs being in docker group but not
  having read access to /data/coolify/services).
- apps.create (template + composeRaw pathways) now uses
  ensureServiceUp which probes whether Coolify's queue actually
  spawned containers and falls back to direct docker compose up -d
  if not. Result includes startMethod for visibility.
- apps.containers.up / apps.containers.ps exposed as MCP tools for
  recovery scenarios and post-env-change recreations.
- Tenant safety: resolveAppOrService validates uuid against the
  caller's project before touching anything on the host.

Made-with: Cursor

2026-04-23 18:41:42 -07:00

3 Commits