eliott/openwork
1
0
Fork 0
mirror of https://github.com/different-ai/openwork synced 2026-04-25 17:15:34 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
4285a97a3f9ecb08bba7fb0de232d9c571b69ef0
openwork/packaging/docker/docker-compose.yml
ben f3da381606 feat: minimal container sandbox + server tokens + toy UI (#494) 
* feat(server): add scoped tokens, inbox/outbox, toy UI, and auth hardening

- TokenService with file-based persistence (tokens.json)
- /tokens CRUD (host auth), /whoami (client auth)
- Bearer token auth accepting OPENWORK_TOKEN or scoped tokens
- POST /workspace/:id/inbox (multipart upload)
- GET /workspace/:id/artifacts, /workspace/:id/artifacts/:id
- Toy UI at /ui with SSE, prompt send, inbox upload, outbox download
- Extended GET /capabilities with schemaVersion, serverVersion, approvals info
- Updated README with all new endpoints and auth model

* feat(headless): add sandbox runtime with Docker and Apple container backends

- --sandbox none|auto|docker|container CLI flag
- --sandbox-image, --sandbox-persist-dir, --sandbox-mount options
- Mount security: allowlist, blocked patterns, symlink resolution
- Docker backend: workspace/persist volumes, sidecar staging, entrypoint
- Apple container backend: --mount type=bind for ro mounts
- Sandbox mode proxies all OpenCode access through openwork-server
- Proxy health check (waitForHealthyViaProxy) avoids SDK auth issues
- Sandbox-specific check suite (runSandboxChecks) for --check mode
- Non-fatal verifyOpenworkServer in sandbox mode for version mismatches
- Updated README with sandbox docs and mount security

* feat(packaging): add Docker/docker-compose PaaS packaging

- Dockerfile (node:22-bookworm-slim, installs openwrk via npm)
- docker-compose.yml with workspace and data volumes
- README with usage instructions

* fix(headless): define sandbox owpenbot internal health port
2026-02-07 13:01:15 -08:00

24 lines
756 B
YAML
Raw Blame History

services:
openwork-host:
build:
context: .
dockerfile: Dockerfile
args:
# Keep this in sync with packages/headless/package.json if you want a pinned release.
OPENWRK_VERSION: 0.11.22
ports:
- "8787:8787"
environment:
# Set these explicitly for stable sharing.
# OPENWORK_TOKEN: "..."
# OPENWORK_HOST_TOKEN: "..."
# Optional: OPENWORK_APPROVAL_MODE: "auto"
# Optional: OPENWORK_APPROVAL_TIMEOUT_MS: "30000"
OPENWRK_DATA_DIR: /data/openwrk
OPENWRK_SIDECAR_DIR: /data/sidecars
volumes:
# Mount an existing project/workspace here.
- ./workspace:/workspace
# Persistent host data (OpenCode caches, server config, tokens).
- ./data:/data
Reference in New Issue View Git Blame Copy Permalink