Skip to content

v1.0.0 #107

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 100 commits into from
Sep 7, 2025
Merged

v1.0.0 #107

merged 100 commits into from
Sep 7, 2025

Conversation

rtuszik
Copy link
Owner

@rtuszik rtuszik commented Jul 27, 2025
edited
Loading

Versioning Change

The versioning for this Docker image has been decoupled from the upstream Photon version. This allows for more intuitive versioning that reflects changes to the container environment and scripts, rather than centering around changes to the underlying Photon application.

Breaking Changes

  • The data volume path has been changed from /photon/photon_data to /photon/data.

    docker-compose.yml update:

    volumes:
-   - photon_data:/photon/photon_data
+   - photon_data:/photon/data

  • COUNTRY_CODE replaced with REGION system

    Old: COUNTRY_CODE=de
    New: REGION=andorra or REGION=europe

  • Default base URL changed to https://r2.koalasec.org/public (was /public/experimental)

  • Index file naming changed to include OpenSearch version (e.g., photon-db-planet-0.7OS-latest.tar.bz2)

New Features

  • Non-Root User: The container now runs processes as a dedicated non-root user (photon) for improved security. The user and group IDs can be set via PUID and PGID environment variables to manage volume permissions.
  • Notifications: Support for status notifications (e.g., update completion, errors) has been added via Apprise. This can be configured with the APPRISE_URLS environment variable. feat: Add Apprise notifications for update status #100
  • Docker Healthcheck: A HEALTHCHECK instruction has been added to the Dockerfile. The container will show as unhealthy whenever the photon-api is not available.

Improvements

  • Process Management: All startup, update, and monitoring tasks are now managed by a Python application.
  • Atomic Updates: The index update mechanism now performs an atomic move.
  • Download Logic: The index downloader now supports resumable downloads and performs more thorough disk space checks. Closes Suggestion: make Downloads resumable #71
  • Build and Release Pipeline: The CI workflow for building and publishing Docker images has been updated to better handle pre-release (beta) and stable (latest) tags. A workflow for code quality checks using ruff, ty and vulture was added.

@socket-security Socket Security
Copy link

socket-security bot commented Jul 27, 2025
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Addedpsutil@​7.0.072100100100100
Addedapprise@​1.9.374100100100100
Addedurllib3@​2.5.097100100100100
Addedtqdm@​4.67.19810010010070
Addedruff@​0.12.710010010010070
Addedrequests@​2.32.499100100100100
Addedpython-dateutil@​2.9.0.post099100100100100
Addedcertifi@​2025.6.1510010010010070
Addedcharset-normalizer@​3.4.299100100100100
Addedmarkdown@​3.8.2100100100100100
Addedty@​0.0.1a16100100100100100
Addedcolorama@​0.4.6100100100100100
Addedpyyaml@​6.0.2100100100100100
Addedvulture@​2.14100100100100100
Addedsix@​1.17.0100100100100100
Addedschedule@​1.2.2100100100100100
Addedoauthlib@​3.3.1100100100100100
Addedidna@​3.10100100100100100

View full report

sourcery-ai[bot]

This comment was marked as outdated.

Sign in to view

Repository owner deleted a comment from sonarqubecloud bot Aug 5, 2025
@rtuszik rtuszik changed the title v2.0.0 v1.0.0 Aug 5, 2025
@rtuszik rtuszik self-assigned this Aug 5, 2025
@rtuszik rtuszik added this to the v2.0.0 milestone Aug 5, 2025
@rtuszik
Copy link
Owner Author

rtuszik commented Aug 5, 2025

Still needs work on the README.md to reflect changes.

rtuszik added 23 commits August 5, 2025 16:07
@rtuszik
feat(docker): add PUID and PGID arguments to Dockerfile for user/grou…
659e7bc 
…p customization

feat(docker): create 'photon' user and group with specified PUID/PGID in Dockerfile
feat(docker): add gosu to Dockerfile for running commands as specific user
fix(permissions): update ownership and permissions logic to use 'photon' user/group
refactor(start-photon.sh): remove unused ES_UID and ES_GID variables
refactor(start-photon.sh): centralize user/group setup into `setup_user` function
refactor(start-photon.sh): use `gosu` to run photon as the 'photon' user
refactor(start-photon.sh): ensure data directory permissions are set before starting photon
@rtuszik
docs: update README for configuration options
05eb2ac 
Reorganize the "Configuration Options" section to appear after "Example
Docker Compose" for better flow.
Add `PUID` and `PGID` environment variables to the configuration options
table.
@rtuszik
fix typo
1fd3ed6
@rtuszik
fix(Dockerfile): remove redundant chown command
9b11910 
fix(Dockerfile): set correct permissions for photon.jar and /photon directory
refactor(start-photon.sh): remove redundant chmod 755 command
refactor(start-photon.sh): simplify md5sum verification
refactor(start-photon.sh): simplify tar extraction
refactor(start-photon.sh): simplify elasticsearch directory removal
refactor(start-photon.sh): simplify download logic
refactor(start-photon.sh): simplify md5 verification
refactor(start-photon.sh): simplify archive extraction
feat(start-photon.sh): add debug log for current owner
feat(start-photon.sh): add chown for temp directory
@rtuszik
build(Dockerfile): add DEBIAN_FRONTEND=noninteractive to suppress int…
cc71304 
…eractive prompts
@rtuszik
feat(config.sh): add JAVA_PARAMS environment variable
76b9b72 
chore(config.sh): add chown command to ensure correct permissions for /photon directory
@rtuszik
fix(process.sh): run photon service as the 'photon' user instead of root
825bbc5 
The photon service was previously started as the root user, which is not
a good security practice. This commit changes the service to run as the
'photon' user using `gosu`, improving security.
@rtuszik
Remove redundant functions
913b7d7
@rtuszik
fix(process.sh): correctly parse JAVA_PARAMS to allow multiple arguments
864f439
@rtuszik
initial python project structure draft
fa92ba5
@rtuszik
initialize astral-uv
162ab9b
@rtuszik
add logger module
8dc61f6
@rtuszik
refactor(Dockerfile): remove unnecessary package installations
affbd48 
feat(Dockerfile): add python3.12 and uv to the image
refactor(Dockerfile): change entrypoint to use uv run main.py
@rtuszik
add config.py
7a31238
@rtuszik
update pyproject.toml
88644be
@rtuszik
update .gitignore for python
1a8b442
@rtuszik
remove bash files
24c13d9
@rtuszik
draft of config module
b0d487a
@rtuszik
draft of mtime checker
293df99
@rtuszik
draft of download module
97acb48
@rtuszik
draft of fiilesystem module
6c27e55
@rtuszik
draft of process management
0641134
@rtuszik
draft of entypoint script
8e86798
rtuszik added 16 commits August 5, 2025 16:07
@rtuszik
fix: don't restart if up to date
4ee072a
@rtuszik
refactor(logging): simplify logger setup and usage across modules
9dd5740
@rtuszik
refactor(ci): streamline CI workflow by consolidating linting, format…
115962b 
…ting, and type-checking steps
@rtuszik
refactor: improve code formatting and update CI workflow for Python d…
e0f667c 
…ependencies
@rtuszik
ci: set minimum confidence for vulture checks to 100
293af4a
@rtuszik
ci: add sonarqube
8cc4770
@rtuszik
add sonar properties
d1547ae
@rtuszik
refactor(downloader): split download_file into smaller, more manageab…
9956f3d 
…le functions
@rtuszik
feat: implement InsufficientSpaceError for disk space management
8a8c5eb 
refactor: improve disk space checks and logging for sequential updates
@rtuszik
refactor: improve download logging and error handling
c250d95
@rtuszik
feat(pyproject.toml): add ruff configuration for linting and formatting
f529d28
@rtuszik
fix: improve error handling and add timeouts to requests
7fc8f62
@rtuszik
ci: refactor linting workflow into separate jobs for setup, lint, typ…
d9f2e07 
…echeck, and vulture
@rtuszik
refactor: improve code readability and maintainability across multipl…
09145d1 
…e files
@rtuszik
refactor: simplify disk space checks and remove unnecessary file oper…
fa4541b 
…ations
@rtuszik
ci: refactor Docker build and push workflow and remove unused workflows
8ad0787
@rtuszik rtuszik linked an issue Aug 5, 2025 that may be closed by this pull request
Download is being put in the Docker volume, not the mounted filesystem. #101
Closed
rtuszik added 8 commits August 5, 2025 16:51
@rtuszik
ci: add release-drafter.yml workflow to automate release drafting
daa7b87
@rtuszik
fix(process_manager): change method call from private to public for o…
5b4d65e 
…rphaned process cleanup
@rtuszik
refactor(entrypoint): migrate node_1 data to photon_data directory an…
e706375 
…d remove old index
@rtuszik
chore(entrypoint): promote configuration logs to INFO and clarify ini…
79c8d16 
…tial download
@rtuszik
feat: use marker file for index timestamp
9b57fbf 
Now uses a marker file instead of checking the actual index file.
Extracted index directories will not have the same timestamp as the
remote download file.
@rtuszik
refactor: only allow grace period with fallback when marker file is n…
a9f17da 
…ot available
@rtuszik
feat: implement new region-based data download system
5de963e 
Replaces `COUNTRY_CODE` with `REGION` for more flexible data selection, supporting planet, continent, and specific sub-region downloads.
@rtuszik
feat: add release drafter config
f769186
@rtuszik rtuszik linked an issue Sep 7, 2025 that may be closed by this pull request
New layout for the photon download server #116
Closed
@rtuszik rtuszik merged commit 0d1edbc into main Sep 7, 2025
6 of 7 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sourcery-ai sourcery-ai[bot] sourcery-ai[bot] approved these changes

Assignees

@rtuszik rtuszik

Labels
None yet
Projects
None yet
Milestone
v1.0.0
1 participant
@rtuszik