paperclip/docker/ecs-task-definition.json

{
  "family": "paperclip-server",
  "networkMode": "awsvpc",
  "requiresCompatibilities": ["FARGATE"],
  "cpu": "2048",
  "memory": "4096",
  "executionRoleArn": "arn:aws:iam::<ACCOUNT_ID>:role/paperclip-ecs-execution",
  "taskRoleArn": "arn:aws:iam::<ACCOUNT_ID>:role/paperclip-ecs-task",
  "containerDefinitions": [
    {
      "name": "paperclip-server",
      "image": "<ACCOUNT_ID>.dkr.ecr.<REGION>.amazonaws.com/paperclip-server:latest",
      "essential": true,
      "portMappings": [
        {
          "containerPort": 3100,
          "protocol": "tcp"
        }
      ],
      "environment": [
        { "name": "NODE_ENV", "value": "production" },
        { "name": "HOST", "value": "0.0.0.0" },
        { "name": "PORT", "value": "3100" },
        { "name": "SERVE_UI", "value": "true" },
        { "name": "PAPERCLIP_HOME", "value": "/paperclip" },
        { "name": "PAPERCLIP_INSTANCE_ID", "value": "default" },
        { "name": "PAPERCLIP_CONFIG", "value": "/paperclip/instances/default/config.json" },
        { "name": "PAPERCLIP_DEPLOYMENT_MODE", "value": "authenticated" },
        { "name": "PAPERCLIP_DEPLOYMENT_EXPOSURE", "value": "public" },
        { "name": "PAPERCLIP_PUBLIC_URL", "value": "https://<DOMAIN>" },
        { "name": "PAPERCLIP_MIGRATION_AUTO_APPLY", "value": "true" },
        { "name": "HEARTBEAT_SCHEDULER_ENABLED", "value": "true" }
      ],
      "secrets": [
        {
          "name": "DATABASE_URL",
          "valueFrom": "arn:aws:secretsmanager:<REGION>:<ACCOUNT_ID>:secret:paperclip/database-url"
        },
        {
          "name": "BETTER_AUTH_SECRET",
          "valueFrom": "arn:aws:secretsmanager:<REGION>:<ACCOUNT_ID>:secret:paperclip/better-auth-secret"
        },
        {
          "name": "ANTHROPIC_API_KEY",
          "valueFrom": "arn:aws:secretsmanager:<REGION>:<ACCOUNT_ID>:secret:paperclip/anthropic-api-key"
        },
        {
          "name": "OPENAI_API_KEY",
          "valueFrom": "arn:aws:secretsmanager:<REGION>:<ACCOUNT_ID>:secret:paperclip/openai-api-key"
        },
        {
          "name": "GITHUB_TOKEN",
          "valueFrom": "arn:aws:secretsmanager:<REGION>:<ACCOUNT_ID>:secret:paperclip/github-token"
        }
      ],
      "mountPoints": [
        {
          "sourceVolume": "paperclip-data",
          "containerPath": "/paperclip",
          "readOnly": false
        }
      ],
      "healthCheck": {
        "command": ["CMD-SHELL", "curl -f http://localhost:3100/api/health || exit 1"],
        "interval": 30,
        "timeout": 5,
        "retries": 3,
        "startPeriod": 60
      },
      "logConfiguration": {
        "logDriver": "awslogs",
        "options": {
          "awslogs-group": "/ecs/paperclip",
          "awslogs-region": "<REGION>",
          "awslogs-stream-prefix": "server"
        }
      }
    }
  ],
  "volumes": [
    {
      "name": "paperclip-data",
      "efsVolumeConfiguration": {
        "fileSystemId": "<EFS_ID>",
        "rootDirectory": "/",
        "transitEncryption": "ENABLED"
      }
    }
  ]
}