mirror of
https://github.com/rcourtman/Pulse.git
synced 2026-05-19 07:54:10 +00:00
ec1d8b3303
Additional safeguards to prevent dev/production config conflicts: 1. **hot-dev.sh**: Explicitly export PULSE_DATA_DIR before starting backend - Ensures backend always uses /opt/pulse/tmp/dev-config in dev mode - Prevents accidental fallback to /etc/pulse - Adds logging to show which config directory is being used 2. **sync-production-config.sh**: Smart encryption key handling - Never overwrites existing dev encryption key - Warns if production key is newer (unusual scenario) - Keeps dev key to avoid breaking encrypted configs - Adds detailed logging of sync decisions These changes ensure that when Vite restarts: - Backend always uses the correct dev-config directory - Sync script never breaks working dev configuration - All decisions are logged clearly for debugging Related to previous commit fixing nodes.enc corruption. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
109 lines
No EOL
3.9 KiB
Bash
Executable file
109 lines
No EOL
3.9 KiB
Bash
Executable file
#!/bin/bash
|
|
# Sync production config to dev environment
|
|
# This ensures dev mode has access to production nodes when mock is disabled
|
|
|
|
set -euo pipefail
|
|
|
|
PROD_DIR="/etc/pulse"
|
|
DEV_DIR="/opt/pulse/tmp/dev-config"
|
|
|
|
# Ensure dev config directory exists
|
|
mkdir -p "$DEV_DIR"
|
|
chmod 700 "$DEV_DIR"
|
|
|
|
# Copy essential production config files to dev
|
|
# Skip session/csrf/alert files which are runtime-specific
|
|
echo "Syncing production config to dev environment..."
|
|
echo " Source: $PROD_DIR"
|
|
echo " Target: $DEV_DIR"
|
|
echo ""
|
|
|
|
# Copy encryption key if it exists AND dev doesn't have a key yet
|
|
if [ -f "$PROD_DIR/.encryption.key" ]; then
|
|
if [ ! -f "$DEV_DIR/.encryption.key" ]; then
|
|
cp -f "$PROD_DIR/.encryption.key" "$DEV_DIR/.encryption.key"
|
|
chmod 600 "$DEV_DIR/.encryption.key"
|
|
echo "✓ Synced encryption key (dev didn't have one)"
|
|
else
|
|
# Dev already has a key - compare ages
|
|
if [ "$PROD_DIR/.encryption.key" -nt "$DEV_DIR/.encryption.key" ]; then
|
|
echo "⚠ Production encryption key is newer than dev key"
|
|
echo " This is unusual - dev key is usually created first"
|
|
echo " Keeping existing dev key to avoid breaking encrypted configs"
|
|
else
|
|
echo "✓ Dev encryption key already exists and is current"
|
|
fi
|
|
fi
|
|
fi
|
|
|
|
# Copy nodes configuration - WITH VALIDATION
|
|
if [ -f "$PROD_DIR/nodes.enc" ]; then
|
|
# Check if production nodes.enc is valid (not corrupted)
|
|
# Only sync if destination doesn't exist OR production file is newer
|
|
SHOULD_SYNC=false
|
|
|
|
if [ ! -f "$DEV_DIR/nodes.enc" ]; then
|
|
# Destination doesn't exist, safe to sync
|
|
SHOULD_SYNC=true
|
|
echo " → Dev nodes.enc doesn't exist, will sync from production"
|
|
elif [ "$PROD_DIR/nodes.enc" -nt "$DEV_DIR/nodes.enc" ]; then
|
|
# Production is newer
|
|
echo " → Production nodes.enc is newer than dev copy"
|
|
SHOULD_SYNC=true
|
|
else
|
|
# Dev is newer or same age - KEEP THE DEV COPY
|
|
echo " → Dev nodes.enc is current, keeping existing copy"
|
|
echo " → (Production: $(stat -c %y "$PROD_DIR/nodes.enc" 2>/dev/null | cut -d' ' -f1-2))"
|
|
echo " → (Dev: $(stat -c %y "$DEV_DIR/nodes.enc" 2>/dev/null | cut -d' ' -f1-2))"
|
|
fi
|
|
|
|
if [ "$SHOULD_SYNC" = true ]; then
|
|
cp -f "$PROD_DIR/nodes.enc" "$DEV_DIR/nodes.enc"
|
|
chmod 600 "$DEV_DIR/nodes.enc"
|
|
echo "✓ Synced nodes configuration"
|
|
fi
|
|
elif [ -f "$PROD_DIR/nodes.json" ]; then
|
|
cp -f "$PROD_DIR/nodes.json" "$DEV_DIR/nodes.json"
|
|
chmod 600 "$DEV_DIR/nodes.json"
|
|
echo "✓ Synced nodes configuration (unencrypted)"
|
|
fi
|
|
|
|
# Copy system settings (but keep dev-specific log level)
|
|
if [ -f "$PROD_DIR/system.json" ]; then
|
|
cp -f "$PROD_DIR/system.json" "$DEV_DIR/system.json"
|
|
echo "✓ Synced system settings"
|
|
fi
|
|
|
|
# Copy guest metadata if it exists
|
|
if [ -f "$PROD_DIR/guest_metadata.json" ]; then
|
|
cp -f "$PROD_DIR/guest_metadata.json" "$DEV_DIR/guest_metadata.json"
|
|
echo "✓ Synced guest metadata"
|
|
fi
|
|
|
|
# Copy email config if it exists
|
|
if [ -f "$PROD_DIR/email.enc" ]; then
|
|
cp -f "$PROD_DIR/email.enc" "$DEV_DIR/email.enc"
|
|
chmod 600 "$DEV_DIR/email.enc"
|
|
echo "✓ Synced email configuration"
|
|
fi
|
|
|
|
# Copy webhook config if it exists
|
|
if [ -f "$PROD_DIR/webhooks.enc" ]; then
|
|
cp -f "$PROD_DIR/webhooks.enc" "$DEV_DIR/webhooks.enc"
|
|
chmod 600 "$DEV_DIR/webhooks.enc"
|
|
echo "✓ Synced webhook configuration"
|
|
fi
|
|
|
|
# Initialize empty runtime files if they don't exist
|
|
touch "$DEV_DIR/sessions.json" "$DEV_DIR/csrf_tokens.json" 2>/dev/null || true
|
|
echo "[]" > "$DEV_DIR/sessions.json" 2>/dev/null || true
|
|
echo "[]" > "$DEV_DIR/csrf_tokens.json" 2>/dev/null || true
|
|
chmod 600 "$DEV_DIR/sessions.json" "$DEV_DIR/csrf_tokens.json" 2>/dev/null || true
|
|
|
|
# Create alerts directory if it doesn't exist
|
|
mkdir -p "$DEV_DIR/alerts" 2>/dev/null || true
|
|
|
|
echo ""
|
|
echo "✓ Production config synced to dev environment"
|
|
echo " Source: $PROD_DIR"
|
|
echo " Target: $DEV_DIR" |