customable/claude-mem
2
0
Fork 0
Code Issues 28 Pull requests Projects Releases 163 Packages 2 Wiki Activity Actions

Production: Docker Compose production-ready configuration #330

New issue
Closed
opened 2026-03-02 12:32:32 +00:00 by jack · 0 comments
jack commented 2026-03-02 12:32:32 +00:00
Owner
Copy link

Problem

Aktuelle Docker-Setup ist für Development optimiert → nicht production-ready.

Fehlende Production-Features:

  • Keine Health-Checks
  • Keine Restart-Policy
  • Keine Resource-Limits
  • Keine Secrets-Management
  • SQLite-DB nicht persistent (Volume fehlt?)

Gewünschte Änderungen

docker-compose.prod.yml erstellen

# docker-compose.prod.yml
version: '3.8'

services:
  backend:
    image: claude-mem-backend:latest
    restart: unless-stopped
    ports:
      - "37777:37777"
    environment:
      NODE_ENV: production
      LOG_LEVEL: info
      DATABASE_URL: ${DATABASE_URL:-sqlite:///data/claude-mem.db}
      API_KEY: ${API_KEY:?API_KEY required}
    volumes:
      - claude-mem-data:/data
      - ./settings.json:/app/settings.json:ro
    healthcheck:
      test: ["CMD", "curl", "-f", "http://localhost:37777/health"]
      interval: 30s
      timeout: 5s
      retries: 3
      start_period: 40s
    deploy:
      resources:
        limits:
          cpus: '2.0'
          memory: 2G
        reservations:
          cpus: '1.0'
          memory: 512M
    logging:
      driver: json-file
      options:
        max-size: "10m"
        max-file: "3"
  
  worker:
    image: claude-mem-worker:latest
    restart: unless-stopped
    environment:
      NODE_ENV: production
      LOG_LEVEL: info
      DATABASE_URL: ${DATABASE_URL}
      ANTHROPIC_API_KEY: ${ANTHROPIC_API_KEY:?ANTHROPIC_API_KEY required}
    volumes:
      - claude-mem-data:/data
    depends_on:
      backend:
        condition: service_healthy
    deploy:
      resources:
        limits:
          cpus: '4.0'
          memory: 4G
  
  ui:
    image: nginx:alpine
    restart: unless-stopped
    ports:
      - "8080:80"
    volumes:
      - ./packages/ui/dist:/usr/share/nginx/html:ro
      - ./nginx.conf:/etc/nginx/nginx.conf:ro
    depends_on:
      - backend
    healthcheck:
      test: ["CMD", "wget", "--quiet", "--tries=1", "--spider", "http://localhost/"]
      interval: 30s
  
  # Optional: PostgreSQL statt SQLite
  postgres:
    image: postgres:16-alpine
    restart: unless-stopped
    environment:
      POSTGRES_DB: claudemem
      POSTGRES_USER: ${POSTGRES_USER:-claudemem}
      POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:?POSTGRES_PASSWORD required}
    volumes:
      - postgres-data:/var/lib/postgresql/data
    healthcheck:
      test: ["CMD-SHELL", "pg_isready -U claudemem"]
      interval: 10s

volumes:
  claude-mem-data:
  postgres-data:

Health-Check Endpoint

// packages/backend/src/routes/health.ts
app.get('/health', async (req, res) => {
  try {
    // DB-Check
    await em.getConnection().execute('SELECT 1');
    
    res.json({
      status: 'healthy',
      uptime: process.uptime(),
      database: 'connected',
      version: process.env.npm_package_version
    });
  } catch (e) {
    res.status(503).json({
      status: 'unhealthy',
      error: e.message
    });
  }
});

nginx.conf (Reverse Proxy für UI)

events {
  worker_connections 1024;
}

http {
  include mime.types;
  
  server {
    listen 80;
    server_name _;
    
    # UI (Static Files)
    location / {
      root /usr/share/nginx/html;
      try_files $uri $uri/ /index.html;
    }
    
    # API Proxy
    location /api/ {
      proxy_pass http://backend:37777/api/;
      proxy_http_version 1.1;
      proxy_set_header Upgrade $http_upgrade;
      proxy_set_header Connection 'upgrade';
      proxy_set_header Host $host;
      proxy_cache_bypass $http_upgrade;
    }
    
    # SSE Proxy
    location /api/stream {
      proxy_pass http://backend:37777/api/stream;
      proxy_http_version 1.1;
      proxy_set_header Connection '';
      proxy_buffering off;
      proxy_cache off;
      chunked_transfer_encoding off;
    }
  }
}

.env.example (Production)

# .env.prod.example
NODE_ENV=production
DATABASE_URL=postgres://user:pass@postgres:5432/claudemem
API_KEY=generated-secure-key-here
ANTHROPIC_API_KEY=sk-ant-...
LOG_LEVEL=info
BACKEND_PORT=37777

Deployment-Script

#!/bin/bash
# scripts/deploy.sh

set -e

echo "Building images..."
docker compose -f docker-compose.prod.yml build

echo "Pulling latest images..."
docker compose -f docker-compose.prod.yml pull

echo "Starting services..."
docker compose -f docker-compose.prod.yml up -d

echo "Waiting for health checks..."
sleep 10

echo "Checking health..."
curl -f http://localhost:37777/health || exit 1

echo "✅ Deployment successful"

Secrets-Management

Option 1: Docker Secrets (Swarm)

secrets:
  api_key:
    external: true

services:
  backend:
    secrets:
      - api_key

Option 2: .env File (einfacher)

# Nicht committen!
cp .env.prod.example .env.prod
# API-Keys eintragen
docker compose --env-file .env.prod -f docker-compose.prod.yml up -d

Monitoring

Prometheus + Grafana (optional):

services:
  prometheus:
    image: prom/prometheus
    volumes:
      - ./prometheus.yml:/etc/prometheus/prometheus.yml
  
  grafana:
    image: grafana/grafana
    ports:
      - "3000:3000"

Acceptance Criteria

  • docker-compose.prod.yml erstellt
  • Health-Check Endpoints
  • Restart-Policy (unless-stopped)
  • Resource-Limits
  • Persistent Volumes
  • nginx Reverse-Proxy
  • Secrets via .env oder Docker Secrets
  • Deploy-Script
  • Dokumentation (README.md)

Priority

High - Wichtig für Production-Deployment.

Related

CI/CD Pipeline und Backup-Strategie werden in separaten Issues behandelt.

## Problem Aktuelle Docker-Setup ist für **Development** optimiert → nicht production-ready. **Fehlende Production-Features:** - Keine Health-Checks - Keine Restart-Policy - Keine Resource-Limits - Keine Secrets-Management - SQLite-DB nicht persistent (Volume fehlt?) ## Gewünschte Änderungen ### docker-compose.prod.yml erstellen ```yaml # docker-compose.prod.yml version: '3.8' services: backend: image: claude-mem-backend:latest restart: unless-stopped ports: - "37777:37777" environment: NODE_ENV: production LOG_LEVEL: info DATABASE_URL: ${DATABASE_URL:-sqlite:///data/claude-mem.db} API_KEY: ${API_KEY:?API_KEY required} volumes: - claude-mem-data:/data - ./settings.json:/app/settings.json:ro healthcheck: test: ["CMD", "curl", "-f", "http://localhost:37777/health"] interval: 30s timeout: 5s retries: 3 start_period: 40s deploy: resources: limits: cpus: '2.0' memory: 2G reservations: cpus: '1.0' memory: 512M logging: driver: json-file options: max-size: "10m" max-file: "3" worker: image: claude-mem-worker:latest restart: unless-stopped environment: NODE_ENV: production LOG_LEVEL: info DATABASE_URL: ${DATABASE_URL} ANTHROPIC_API_KEY: ${ANTHROPIC_API_KEY:?ANTHROPIC_API_KEY required} volumes: - claude-mem-data:/data depends_on: backend: condition: service_healthy deploy: resources: limits: cpus: '4.0' memory: 4G ui: image: nginx:alpine restart: unless-stopped ports: - "8080:80" volumes: - ./packages/ui/dist:/usr/share/nginx/html:ro - ./nginx.conf:/etc/nginx/nginx.conf:ro depends_on: - backend healthcheck: test: ["CMD", "wget", "--quiet", "--tries=1", "--spider", "http://localhost/"] interval: 30s # Optional: PostgreSQL statt SQLite postgres: image: postgres:16-alpine restart: unless-stopped environment: POSTGRES_DB: claudemem POSTGRES_USER: ${POSTGRES_USER:-claudemem} POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:?POSTGRES_PASSWORD required} volumes: - postgres-data:/var/lib/postgresql/data healthcheck: test: ["CMD-SHELL", "pg_isready -U claudemem"] interval: 10s volumes: claude-mem-data: postgres-data: ``` ### Health-Check Endpoint ```typescript // packages/backend/src/routes/health.ts app.get('/health', async (req, res) => { try { // DB-Check await em.getConnection().execute('SELECT 1'); res.json({ status: 'healthy', uptime: process.uptime(), database: 'connected', version: process.env.npm_package_version }); } catch (e) { res.status(503).json({ status: 'unhealthy', error: e.message }); } }); ``` ### nginx.conf (Reverse Proxy für UI) ```nginx events { worker_connections 1024; } http { include mime.types; server { listen 80; server_name _; # UI (Static Files) location / { root /usr/share/nginx/html; try_files $uri $uri/ /index.html; } # API Proxy location /api/ { proxy_pass http://backend:37777/api/; proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection 'upgrade'; proxy_set_header Host $host; proxy_cache_bypass $http_upgrade; } # SSE Proxy location /api/stream { proxy_pass http://backend:37777/api/stream; proxy_http_version 1.1; proxy_set_header Connection ''; proxy_buffering off; proxy_cache off; chunked_transfer_encoding off; } } } ``` ### .env.example (Production) ```bash # .env.prod.example NODE_ENV=production DATABASE_URL=postgres://user:pass@postgres:5432/claudemem API_KEY=generated-secure-key-here ANTHROPIC_API_KEY=sk-ant-... LOG_LEVEL=info BACKEND_PORT=37777 ``` ### Deployment-Script ```bash #!/bin/bash # scripts/deploy.sh set -e echo "Building images..." docker compose -f docker-compose.prod.yml build echo "Pulling latest images..." docker compose -f docker-compose.prod.yml pull echo "Starting services..." docker compose -f docker-compose.prod.yml up -d echo "Waiting for health checks..." sleep 10 echo "Checking health..." curl -f http://localhost:37777/health || exit 1 echo "✅ Deployment successful" ``` ## Secrets-Management **Option 1: Docker Secrets (Swarm)** ```yaml secrets: api_key: external: true services: backend: secrets: - api_key ``` **Option 2: .env File (einfacher)** ```bash # Nicht committen! cp .env.prod.example .env.prod # API-Keys eintragen docker compose --env-file .env.prod -f docker-compose.prod.yml up -d ``` ## Monitoring **Prometheus + Grafana (optional):** ```yaml services: prometheus: image: prom/prometheus volumes: - ./prometheus.yml:/etc/prometheus/prometheus.yml grafana: image: grafana/grafana ports: - "3000:3000" ``` ## Acceptance Criteria - [x] docker-compose.prod.yml erstellt - [x] Health-Check Endpoints - [x] Restart-Policy (unless-stopped) - [x] Resource-Limits - [x] Persistent Volumes - [x] nginx Reverse-Proxy - [x] Secrets via .env oder Docker Secrets - [x] Deploy-Script - [x] Dokumentation (README.md) ## Priority **High** - Wichtig für Production-Deployment. ## Related CI/CD Pipeline und Backup-Strategie werden in separaten Issues behandelt.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
develop
renovate/all-minor-patch
renovate/vite
renovate/react
renovate/better-sqlite3-12.x
renovate/major-vite
feature/ui-improvements-and-tests
v3.0.4
v3.0.3
v3.0.2
v3.0.1
v3.0.0
v2.49.7
v2.49.6
v2.49.5
v2.49.4
v2.49.3
v2.49.2
v2.49.1
v2.49.0
v2.48.1
v2.48.0
v2.47.2
v2.47.1
v2.47.0
v2.46.0
v2.45.0
v2.44.0
v2.43.2
v2.43.1
v2.43.0
v2.42.0
v2.41.2
v2.41.1
v2.41.0
v2.40.1
v2.40.0
v2.39.0
v2.38.0
v2.37.0
v2.36.0
v2.35.0
v2.34.1
v2.34.0
v2.33.1
v2.33.0
v2.32.0
v2.31.1
v2.31.0
v2.30.0
v2.29.0
v2.28.0
v2.27.0
v2.26.0
v2.25.0
v2.24.0
v2.23.0
v2.22.0
v2.21.0
v2.20.0
v2.19.24
v2.19.23
v2.19.22
v2.19.21
v2.19.20
v2.19.19
v2.19.18
v2.19.17
v2.19.16
v2.19.15
v2.19.14
v2.19.13
v2.19.12
v2.19.11
v2.19.10
v2.19.9
v2.19.8
v2.19.7
v2.19.6
v2.19.5
v2.19.4
v2.19.3
v2.19.2
v2.19.1
v2.19.0
v2.18.2
v2.18.1
v2.18.0
v2.17.3
v2.17.2
v2.17.1
v2.17.0
v2.16.0
v2.15.0
v2.14.2
v2.14.1
v2.14.0
v2.13.2
v2.13.1
v2.13.0
v2.12.0
v2.11.3
v2.11.2
v2.11.1
v2.11.0
v2.10.0
v2.9.0
v2.8.0
v2.7.1
v2.7.0
v2.6.0
v2.5.1
v2.5.0
v2.4.5
v2.4.4
v2.4.3
v2.4.2
v2.4.1
v2.4.0
v2.3.0
v2.2.0
v2.1.0
v2.0.1
v2.0.0
v1.20.4
v1.20.3
v1.20.2
v1.20.1
v1.20.0
v1.19.0
v1.18.4
v1.18.3
v1.18.2
v1.18.1
v1.18.0
v1.17.0
v1.16.2
v1.16.1
v1.16.0
v1.15.1
v1.15.0
v1.14.2
v1.14.1
v1.14.0
v1.13.0
v1.12.0
v1.11.0
v1.10.0
v1.9.0
v1.8.1
v1.8.0
v1.7.0
v1.6.0
v1.5.0
v1.4.0
v1.3.8
v1.3.7
v1.3.6
v1.3.5
v1.3.4
v1.3.3
v1.3.2
v1.3.1
v1.3.0
v1.2.2
v1.2.1
v1.2.0
v1.1.0
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Labels
Clear labels   
auto-merged

Issue is referenced by at least one PR

  
ci
failed
Label created by review.bot

  
component
api
Label created by review.bot

  
good first issue

Good for newcomers

  
has-pr

Issue has an associated pull request

  
help wanted

Community contributions welcome

  
idea

Idea or concept - not yet ready for implementation

  
priority
critical
Urgent issue requiring immediate attention

  
priority
high
High priority issue

  
priority
low
Low priority issue

  
priority
medium
Medium priority issue

  
review
approved
Label created by review.bot

  
review
commented
Label created by review.bot

  
status
blocked
Blocked by external dependency

  
status
in-progress
Currently being worked on

  
status
needs-review
Awaiting code review

  
status
ready
Ready to be worked on

  
type
bug
Something isn't working

  
type
chore
Label created by review.bot

  
type
docs
Documentation improvements

  
type
enhancement
Improvement to existing functionality

  
type
feature
New feature or request

  
type
refactor
Code refactoring without functional changes

No labels
auto-merged
ci
failed
component
api
good first issue
has-pr
help wanted
idea
priority
critical
priority
high
priority
low
priority
medium
review
approved
review
commented
status
blocked
status
in-progress
status
needs-review
status
ready
type
bug
type
chore
type
docs
type
enhancement
type
feature
type
refactor
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
customable/claude-mem#330
No description provided.