Benjamin_Boenisch/breakpilot-pwa
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
This repository has been archived on 2026-02-15. You can view files and clone it. You cannot open issues or pull requests or push a commit.
Files
00f778ca9b234355a5212a5cd66fe728d4359fb7
breakpilot-pwa/docs-site/development/ci-cd-pipeline/index.html
BreakPilot Dev 557305db5d
Some checks failed
ci/woodpecker/push/integration Pipeline failed
Details
ci/woodpecker/push/main Pipeline failed
Details
CI/CD Pipeline / Go Tests (push) Has been cancelled
Details
CI/CD Pipeline / Python Tests (push) Has been cancelled
Details
CI/CD Pipeline / Website Tests (push) Has been cancelled
Details
CI/CD Pipeline / Linting (push) Has been cancelled
Details
CI/CD Pipeline / Security Scan (push) Has been cancelled
Details
CI/CD Pipeline / Docker Build & Push (push) Has been cancelled
Details
CI/CD Pipeline / Integration Tests (push) Has been cancelled
Details
CI/CD Pipeline / Deploy to Staging (push) Has been cancelled
Details
CI/CD Pipeline / Deploy to Production (push) Has been cancelled
Details
CI/CD Pipeline / CI Summary (push) Has been cancelled
Details
Security Scanning / Secret Scanning (push) Has been cancelled
Details
Security Scanning / Dependency Vulnerability Scan (push) Has been cancelled
Details
Security Scanning / Go Security Scan (push) Has been cancelled
Details
Security Scanning / Python Security Scan (push) Has been cancelled
Details
Security Scanning / Node.js Security Scan (push) Has been cancelled
Details
Security Scanning / Docker Image Security (push) Has been cancelled
Details
Security Scanning / Security Summary (push) Has been cancelled
Details
Tests / Go Tests (push) Has been cancelled
Details
Tests / Python Tests (push) Has been cancelled
Details
Tests / Integration Tests (push) Has been cancelled
Details
Tests / Go Lint (push) Has been cancelled
Details
Tests / Python Lint (push) Has been cancelled
Details
Tests / Security Scan (push) Has been cancelled
Details
Tests / All Checks Passed (push) Has been cancelled
Details
feat: Add Academy, Whistleblower, Incidents SDK modules, pitch-deck, blog and CI/CD config 
- Academy, Whistleblower, Incidents frontend pages with API proxies and types
- Vendor compliance API proxy route
- Go backend handlers and models for all new SDK modules
- Investor pitch-deck app with interactive slides
- Blog section with DSGVO, AI Act, NIS2, glossary articles
- MkDocs documentation site
- CI/CD pipelines (Woodpecker, GitHub Actions), security scanning config
- Planning and implementation documentation

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-13 21:12:16 +01:00

3158 lines
94 KiB
HTML
Raw Blame History

<!doctype html>
<html lang="de" class="no-js">
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width,initial-scale=1">
<link rel="canonical" href="https://macmini:8008/development/ci-cd-pipeline/">
<link rel="prev" href="../documentation/">
<link rel="icon" href="../../assets/images/favicon.png">
<meta name="generator" content="mkdocs-1.6.1, mkdocs-material-9.7.1">
<title>CI/CD Pipeline - Breakpilot Dokumentation</title>
<link rel="stylesheet" href="../../assets/stylesheets/main.484c7ddc.min.css">
<link rel="stylesheet" href="../../assets/stylesheets/palette.ab4e12ef.min.css">
<link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
<link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Roboto:300,300i,400,400i,700,700i%7CRoboto+Mono:400,400i,700,700i&display=fallback">
<style>:root{--md-text-font:"Roboto";--md-code-font:"Roboto Mono"}</style>
<script>__md_scope=new URL("../..",location),__md_hash=e=>[...e].reduce(((e,_)=>(e<<5)-e+_.charCodeAt(0)),0),__md_get=(e,_=localStorage,t=__md_scope)=>JSON.parse(_.getItem(t.pathname+"."+e)),__md_set=(e,_,t=localStorage,a=__md_scope)=>{try{t.setItem(a.pathname+"."+e,JSON.stringify(_))}catch(e){}}</script>
</head>
<body dir="ltr" data-md-color-scheme="default" data-md-color-primary="teal" data-md-color-accent="indigo">
<input class="md-toggle" data-md-toggle="drawer" type="checkbox" id="__drawer" autocomplete="off">
<input class="md-toggle" data-md-toggle="search" type="checkbox" id="__search" autocomplete="off">
<label class="md-overlay" for="__drawer"></label>
<div data-md-component="skip">
<a href="#cicd-pipeline" class="md-skip">
Zum Inhalt
</a>
</div>
<div data-md-component="announce">
</div>
<header class="md-header" data-md-component="header">
<nav class="md-header__inner md-grid" aria-label="Kopfzeile">
<a href="../.." title="Breakpilot Dokumentation" class="md-header__button md-logo" aria-label="Breakpilot Dokumentation" data-md-component="logo">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M12 8a3 3 0 0 0 3-3 3 3 0 0 0-3-3 3 3 0 0 0-3 3 3 3 0 0 0 3 3m0 3.54C9.64 9.35 6.5 8 3 8v11c3.5 0 6.64 1.35 9 3.54 2.36-2.19 5.5-3.54 9-3.54V8c-3.5 0-6.64 1.35-9 3.54"/></svg>
</a>
<label class="md-header__button md-icon" for="__drawer">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M3 6h18v2H3zm0 5h18v2H3zm0 5h18v2H3z"/></svg>
</label>
<div class="md-header__title" data-md-component="header-title">
<div class="md-header__ellipsis">
<div class="md-header__topic">
<span class="md-ellipsis">
Breakpilot Dokumentation
</span>
</div>
<div class="md-header__topic" data-md-component="header-topic">
<span class="md-ellipsis">
CI/CD Pipeline
</span>
</div>
</div>
</div>
<form class="md-header__option" data-md-component="palette">
<input class="md-option" data-md-color-media="" data-md-color-scheme="default" data-md-color-primary="teal" data-md-color-accent="indigo" aria-label="Dark Mode aktivieren" type="radio" name="__palette" id="__palette_0">
<label class="md-header__button md-icon" title="Dark Mode aktivieren" for="__palette_1" hidden>
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M12 8a4 4 0 0 0-4 4 4 4 0 0 0 4 4 4 4 0 0 0 4-4 4 4 0 0 0-4-4m0 10a6 6 0 0 1-6-6 6 6 0 0 1 6-6 6 6 0 0 1 6 6 6 6 0 0 1-6 6m8-9.31V4h-4.69L12 .69 8.69 4H4v4.69L.69 12 4 15.31V20h4.69L12 23.31 15.31 20H20v-4.69L23.31 12z"/></svg>
</label>
<input class="md-option" data-md-color-media="" data-md-color-scheme="slate" data-md-color-primary="teal" data-md-color-accent="indigo" aria-label="Light Mode aktivieren" type="radio" name="__palette" id="__palette_1">
<label class="md-header__button md-icon" title="Light Mode aktivieren" for="__palette_0" hidden>
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M12 18c-.89 0-1.74-.2-2.5-.55C11.56 16.5 13 14.42 13 12s-1.44-4.5-3.5-5.45C10.26 6.2 11.11 6 12 6a6 6 0 0 1 6 6 6 6 0 0 1-6 6m8-9.31V4h-4.69L12 .69 8.69 4H4v4.69L.69 12 4 15.31V20h4.69L12 23.31 15.31 20H20v-4.69L23.31 12z"/></svg>
</label>
</form>
<script>var palette=__md_get("__palette");if(palette&&palette.color){if("(prefers-color-scheme)"===palette.color.media){var media=matchMedia("(prefers-color-scheme: light)"),input=document.querySelector(media.matches?"[data-md-color-media='(prefers-color-scheme: light)']":"[data-md-color-media='(prefers-color-scheme: dark)']");palette.color.media=input.getAttribute("data-md-color-media"),palette.color.scheme=input.getAttribute("data-md-color-scheme"),palette.color.primary=input.getAttribute("data-md-color-primary"),palette.color.accent=input.getAttribute("data-md-color-accent")}for(var[key,value]of Object.entries(palette.color))document.body.setAttribute("data-md-color-"+key,value)}</script>
<label class="md-header__button md-icon" for="__search">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M9.5 3A6.5 6.5 0 0 1 16 9.5c0 1.61-.59 3.09-1.56 4.23l.27.27h.79l5 5-1.5 1.5-5-5v-.79l-.27-.27A6.52 6.52 0 0 1 9.5 16 6.5 6.5 0 0 1 3 9.5 6.5 6.5 0 0 1 9.5 3m0 2C7 5 5 7 5 9.5S7 14 9.5 14 14 12 14 9.5 12 5 9.5 5"/></svg>
</label>
<div class="md-search" data-md-component="search" role="dialog">
<label class="md-search__overlay" for="__search"></label>
<div class="md-search__inner" role="search">
<form class="md-search__form" name="search">
<input type="text" class="md-search__input" name="query" aria-label="Suche" placeholder="Suche" autocapitalize="off" autocorrect="off" autocomplete="off" spellcheck="false" data-md-component="search-query" required>
<label class="md-search__icon md-icon" for="__search">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M9.5 3A6.5 6.5 0 0 1 16 9.5c0 1.61-.59 3.09-1.56 4.23l.27.27h.79l5 5-1.5 1.5-5-5v-.79l-.27-.27A6.52 6.52 0 0 1 9.5 16 6.5 6.5 0 0 1 3 9.5 6.5 6.5 0 0 1 9.5 3m0 2C7 5 5 7 5 9.5S7 14 9.5 14 14 12 14 9.5 12 5 9.5 5"/></svg>
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M20 11v2H8l5.5 5.5-1.42 1.42L4.16 12l7.92-7.92L13.5 5.5 8 11z"/></svg>
</label>
<nav class="md-search__options" aria-label="Suche">
<button type="reset" class="md-search__icon md-icon" title="Zurücksetzen" aria-label="Zurücksetzen" tabindex="-1">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M19 6.41 17.59 5 12 10.59 6.41 5 5 6.41 10.59 12 5 17.59 6.41 19 12 13.41 17.59 19 19 17.59 13.41 12z"/></svg>
</button>
</nav>
<div class="md-search__suggest" data-md-component="search-suggest"></div>
</form>
<div class="md-search__output">
<div class="md-search__scrollwrap" tabindex="0" data-md-scrollfix>
<div class="md-search-result" data-md-component="search-result">
<div class="md-search-result__meta">
Suche wird initialisiert
</div>
<ol class="md-search-result__list" role="presentation"></ol>
</div>
</div>
</div>
</div>
</div>
</nav>
</header>
<div class="md-container" data-md-component="container">
<nav class="md-tabs" aria-label="Hauptnavigation" data-md-component="tabs">
<div class="md-grid">
<ul class="md-tabs__list">
<li class="md-tabs__item">
<a href="../.." class="md-tabs__link">
Start
</a>
</li>
<li class="md-tabs__item">
<a href="../../getting-started/environment-setup/" class="md-tabs__link">
Erste Schritte
</a>
</li>
<li class="md-tabs__item">
<a href="../../architecture/system-architecture/" class="md-tabs__link">
Architektur
</a>
</li>
<li class="md-tabs__item">
<a href="../../services/ki-daten-pipeline/" class="md-tabs__link">
Services
</a>
</li>
<li class="md-tabs__item">
<a href="../../api/backend-api/" class="md-tabs__link">
API
</a>
</li>
<li class="md-tabs__item md-tabs__item--active">
<a href="../testing/" class="md-tabs__link">
Entwicklung
</a>
</li>
</ul>
</div>
</nav>
<main class="md-main" data-md-component="main">
<div class="md-main__inner md-grid">
<div class="md-sidebar md-sidebar--primary" data-md-component="sidebar" data-md-type="navigation" >
<div class="md-sidebar__scrollwrap">
<div class="md-sidebar__inner">
<nav class="md-nav md-nav--primary md-nav--lifted" aria-label="Navigation" data-md-level="0">
<label class="md-nav__title" for="__drawer">
<a href="../.." title="Breakpilot Dokumentation" class="md-nav__button md-logo" aria-label="Breakpilot Dokumentation" data-md-component="logo">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M12 8a3 3 0 0 0 3-3 3 3 0 0 0-3-3 3 3 0 0 0-3 3 3 3 0 0 0 3 3m0 3.54C9.64 9.35 6.5 8 3 8v11c3.5 0 6.64 1.35 9 3.54 2.36-2.19 5.5-3.54 9-3.54V8c-3.5 0-6.64 1.35-9 3.54"/></svg>
</a>
Breakpilot Dokumentation
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../.." class="md-nav__link">
<span class="md-ellipsis">
Start
</span>
</a>
</li>
<li class="md-nav__item md-nav__item--nested">
<input class="md-nav__toggle md-toggle md-toggle--indeterminate" type="checkbox" id="__nav_2" >
<label class="md-nav__link" for="__nav_2" id="__nav_2_label" tabindex="0">
<span class="md-ellipsis">
Erste Schritte
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="1" aria-labelledby="__nav_2_label" aria-expanded="false">
<label class="md-nav__title" for="__nav_2">
<span class="md-nav__icon md-icon"></span>
Erste Schritte
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../../getting-started/environment-setup/" class="md-nav__link">
<span class="md-ellipsis">
Umgebung einrichten
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../getting-started/mac-mini-setup/" class="md-nav__link">
<span class="md-ellipsis">
Mac Mini Setup
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item md-nav__item--nested">
<input class="md-nav__toggle md-toggle md-toggle--indeterminate" type="checkbox" id="__nav_3" >
<label class="md-nav__link" for="__nav_3" id="__nav_3_label" tabindex="0">
<span class="md-ellipsis">
Architektur
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="1" aria-labelledby="__nav_3_label" aria-expanded="false">
<label class="md-nav__title" for="__nav_3">
<span class="md-nav__icon md-icon"></span>
Architektur
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../../architecture/system-architecture/" class="md-nav__link">
<span class="md-ellipsis">
Systemuebersicht
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../architecture/auth-system/" class="md-nav__link">
<span class="md-ellipsis">
Auth-System
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../architecture/mail-rbac-architecture/" class="md-nav__link">
<span class="md-ellipsis">
Mail-RBAC
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../architecture/multi-agent/" class="md-nav__link">
<span class="md-ellipsis">
Multi-Agent
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../architecture/secrets-management/" class="md-nav__link">
<span class="md-ellipsis">
Secrets Management
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../architecture/devsecops/" class="md-nav__link">
<span class="md-ellipsis">
DevSecOps
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../architecture/sdk-protection/" class="md-nav__link">
<span class="md-ellipsis">
SDK Protection
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../architecture/environments/" class="md-nav__link">
<span class="md-ellipsis">
Environments
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../architecture/zeugnis-system/" class="md-nav__link">
<span class="md-ellipsis">
Zeugnis-System
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item md-nav__item--nested">
<input class="md-nav__toggle md-toggle md-toggle--indeterminate" type="checkbox" id="__nav_4" >
<label class="md-nav__link" for="__nav_4" id="__nav_4_label" tabindex="0">
<span class="md-ellipsis">
Services
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="1" aria-labelledby="__nav_4_label" aria-expanded="false">
<label class="md-nav__title" for="__nav_4">
<span class="md-nav__icon md-icon"></span>
Services
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item md-nav__item--nested">
<input class="md-nav__toggle md-toggle md-toggle--indeterminate" type="checkbox" id="__nav_4_1" >
<label class="md-nav__link" for="__nav_4_1" id="__nav_4_1_label" tabindex="0">
<span class="md-ellipsis">
KI-Daten-Pipeline
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="2" aria-labelledby="__nav_4_1_label" aria-expanded="false">
<label class="md-nav__title" for="__nav_4_1">
<span class="md-nav__icon md-icon"></span>
KI-Daten-Pipeline
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../../services/ki-daten-pipeline/" class="md-nav__link">
<span class="md-ellipsis">
Uebersicht
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/ki-daten-pipeline/architecture/" class="md-nav__link">
<span class="md-ellipsis">
Architektur
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item md-nav__item--nested">
<input class="md-nav__toggle md-toggle md-toggle--indeterminate" type="checkbox" id="__nav_4_2" >
<label class="md-nav__link" for="__nav_4_2" id="__nav_4_2_label" tabindex="0">
<span class="md-ellipsis">
Klausur-Service
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="2" aria-labelledby="__nav_4_2_label" aria-expanded="false">
<label class="md-nav__title" for="__nav_4_2">
<span class="md-nav__icon md-icon"></span>
Klausur-Service
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../../services/klausur-service/" class="md-nav__link">
<span class="md-ellipsis">
Uebersicht
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/klausur-service/byoeh-system-erklaerung/" class="md-nav__link">
<span class="md-ellipsis">
BYOEH Systemerklaerung
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/klausur-service/BYOEH-Architecture/" class="md-nav__link">
<span class="md-ellipsis">
BYOEH Architektur
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/klausur-service/BYOEH-Developer-Guide/" class="md-nav__link">
<span class="md-ellipsis">
BYOEH Developer Guide
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/klausur-service/NiBiS-Ingestion-Pipeline/" class="md-nav__link">
<span class="md-ellipsis">
NiBiS Pipeline
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/klausur-service/OCR-Labeling-Spec/" class="md-nav__link">
<span class="md-ellipsis">
OCR Labeling
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/klausur-service/OCR-Compare/" class="md-nav__link">
<span class="md-ellipsis">
OCR Compare
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/klausur-service/RAG-Admin-Spec/" class="md-nav__link">
<span class="md-ellipsis">
RAG Admin
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/klausur-service/Worksheet-Editor-Architecture/" class="md-nav__link">
<span class="md-ellipsis">
Worksheet Editor
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="../../services/voice-service/" class="md-nav__link">
<span class="md-ellipsis">
Voice-Service
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/agent-core/" class="md-nav__link">
<span class="md-ellipsis">
Agent-Core
</span>
</a>
</li>
<li class="md-nav__item md-nav__item--nested">
<input class="md-nav__toggle md-toggle md-toggle--indeterminate" type="checkbox" id="__nav_4_5" >
<label class="md-nav__link" for="__nav_4_5" id="__nav_4_5_label" tabindex="0">
<span class="md-ellipsis">
AI-Compliance-SDK
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="2" aria-labelledby="__nav_4_5_label" aria-expanded="false">
<label class="md-nav__title" for="__nav_4_5">
<span class="md-nav__icon md-icon"></span>
AI-Compliance-SDK
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../../services/ai-compliance-sdk/" class="md-nav__link">
<span class="md-ellipsis">
Uebersicht
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/ai-compliance-sdk/ARCHITECTURE/" class="md-nav__link">
<span class="md-ellipsis">
Architektur
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/ai-compliance-sdk/DEVELOPER/" class="md-nav__link">
<span class="md-ellipsis">
Developer Guide
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/ai-compliance-sdk/AUDITOR_DOCUMENTATION/" class="md-nav__link">
<span class="md-ellipsis">
Auditor Dokumentation
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../../services/ai-compliance-sdk/SBOM/" class="md-nav__link">
<span class="md-ellipsis">
SBOM
</span>
</a>
</li>
</ul>
</nav>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item md-nav__item--nested">
<input class="md-nav__toggle md-toggle md-toggle--indeterminate" type="checkbox" id="__nav_5" >
<label class="md-nav__link" for="__nav_5" id="__nav_5_label" tabindex="0">
<span class="md-ellipsis">
API
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="1" aria-labelledby="__nav_5_label" aria-expanded="false">
<label class="md-nav__title" for="__nav_5">
<span class="md-nav__icon md-icon"></span>
API
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../../api/backend-api/" class="md-nav__link">
<span class="md-ellipsis">
Backend API
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item md-nav__item--active md-nav__item--section md-nav__item--nested">
<input class="md-nav__toggle md-toggle " type="checkbox" id="__nav_6" checked>
<label class="md-nav__link" for="__nav_6" id="__nav_6_label" tabindex="">
<span class="md-ellipsis">
Entwicklung
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<nav class="md-nav" data-md-level="1" aria-labelledby="__nav_6_label" aria-expanded="true">
<label class="md-nav__title" for="__nav_6">
<span class="md-nav__icon md-icon"></span>
Entwicklung
</label>
<ul class="md-nav__list" data-md-scrollfix>
<li class="md-nav__item">
<a href="../testing/" class="md-nav__link">
<span class="md-ellipsis">
Testing
</span>
</a>
</li>
<li class="md-nav__item">
<a href="../documentation/" class="md-nav__link">
<span class="md-ellipsis">
Dokumentation
</span>
</a>
</li>
<li class="md-nav__item md-nav__item--active">
<input class="md-nav__toggle md-toggle" type="checkbox" id="__toc">
<label class="md-nav__link md-nav__link--active" for="__toc">
<span class="md-ellipsis">
CI/CD Pipeline
</span>
<span class="md-nav__icon md-icon"></span>
</label>
<a href="./" class="md-nav__link md-nav__link--active">
<span class="md-ellipsis">
CI/CD Pipeline
</span>
</a>
<nav class="md-nav md-nav--secondary" aria-label="Inhaltsverzeichnis">
<label class="md-nav__title" for="__toc">
<span class="md-nav__icon md-icon"></span>
Inhaltsverzeichnis
</label>
<ul class="md-nav__list" data-md-component="toc" data-md-scrollfix>
<li class="md-nav__item">
<a href="#ubersicht" class="md-nav__link">
<span class="md-ellipsis">
Übersicht
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#deployment-architektur" class="md-nav__link">
<span class="md-ellipsis">
Deployment-Architektur
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#sync-deploy-workflow" class="md-nav__link">
<span class="md-ellipsis">
Sync &amp; Deploy Workflow
</span>
</a>
<nav class="md-nav" aria-label="Sync &amp; Deploy Workflow">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#1-dateien-synchronisieren" class="md-nav__link">
<span class="md-ellipsis">
1. Dateien synchronisieren
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#2-container-bauen" class="md-nav__link">
<span class="md-ellipsis">
2. Container bauen
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#3-container-deployen" class="md-nav__link">
<span class="md-ellipsis">
3. Container deployen
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#4-logs-prufen" class="md-nav__link">
<span class="md-ellipsis">
4. Logs prüfen
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#service-spezifische-deployments" class="md-nav__link">
<span class="md-ellipsis">
Service-spezifische Deployments
</span>
</a>
<nav class="md-nav" aria-label="Service-spezifische Deployments">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#nextjs-frontend-studio-v2-admin-v2-website" class="md-nav__link">
<span class="md-ellipsis">
Next.js Frontend (studio-v2, admin-v2, website)
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#python-services-backend-klausur-service-voice-service" class="md-nav__link">
<span class="md-ellipsis">
Python Services (backend, klausur-service, voice-service)
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#go-services-consent-service-ai-compliance-sdk" class="md-nav__link">
<span class="md-ellipsis">
Go Services (consent-service, ai-compliance-sdk)
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#mkdocs-dokumentation" class="md-nav__link">
<span class="md-ellipsis">
MkDocs Dokumentation
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#health-checks" class="md-nav__link">
<span class="md-ellipsis">
Health Checks
</span>
</a>
<nav class="md-nav" aria-label="Health Checks">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#service-status-prufen" class="md-nav__link">
<span class="md-ellipsis">
Service-Status prüfen
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#logs-analysieren" class="md-nav__link">
<span class="md-ellipsis">
Logs analysieren
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#rollback" class="md-nav__link">
<span class="md-ellipsis">
Rollback
</span>
</a>
<nav class="md-nav" aria-label="Rollback">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#container-auf-vorherige-version-zurucksetzen" class="md-nav__link">
<span class="md-ellipsis">
Container auf vorherige Version zurücksetzen
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#troubleshooting" class="md-nav__link">
<span class="md-ellipsis">
Troubleshooting
</span>
</a>
<nav class="md-nav" aria-label="Troubleshooting">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#container-startet-nicht" class="md-nav__link">
<span class="md-ellipsis">
Container startet nicht
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#port-bereits-belegt" class="md-nav__link">
<span class="md-ellipsis">
Port bereits belegt
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#build-fehler" class="md-nav__link">
<span class="md-ellipsis">
Build-Fehler
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#monitoring" class="md-nav__link">
<span class="md-ellipsis">
Monitoring
</span>
</a>
<nav class="md-nav" aria-label="Monitoring">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#resource-nutzung" class="md-nav__link">
<span class="md-ellipsis">
Resource-Nutzung
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#cleanup" class="md-nav__link">
<span class="md-ellipsis">
Cleanup
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#umgebungsvariablen" class="md-nav__link">
<span class="md-ellipsis">
Umgebungsvariablen
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#woodpecker-ci-automatisierte-oauth-integration" class="md-nav__link">
<span class="md-ellipsis">
Woodpecker CI - Automatisierte OAuth Integration
</span>
</a>
<nav class="md-nav" aria-label="Woodpecker CI - Automatisierte OAuth Integration">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#uberblick" class="md-nav__link">
<span class="md-ellipsis">
Überblick
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#architektur" class="md-nav__link">
<span class="md-ellipsis">
Architektur
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#credentials-speicherorte" class="md-nav__link">
<span class="md-ellipsis">
Credentials-Speicherorte
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#troubleshooting-oauth-fehler" class="md-nav__link">
<span class="md-ellipsis">
Troubleshooting: OAuth Fehler
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#das-sync-script" class="md-nav__link">
<span class="md-ellipsis">
Das Sync-Script
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#vault-zugriff" class="md-nav__link">
<span class="md-ellipsis">
Vault-Zugriff
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#services-neustarten-nach-credentials-anderung" class="md-nav__link">
<span class="md-ellipsis">
Services neustarten nach Credentials-Änderung
</span>
</a>
</li>
</ul>
</nav>
</li>
</ul>
</nav>
</li>
</ul>
</nav>
</li>
</ul>
</nav>
</div>
</div>
</div>
<div class="md-sidebar md-sidebar--secondary" data-md-component="sidebar" data-md-type="toc" >
<div class="md-sidebar__scrollwrap">
<div class="md-sidebar__inner">
<nav class="md-nav md-nav--secondary" aria-label="Inhaltsverzeichnis">
<label class="md-nav__title" for="__toc">
<span class="md-nav__icon md-icon"></span>
Inhaltsverzeichnis
</label>
<ul class="md-nav__list" data-md-component="toc" data-md-scrollfix>
<li class="md-nav__item">
<a href="#ubersicht" class="md-nav__link">
<span class="md-ellipsis">
Übersicht
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#deployment-architektur" class="md-nav__link">
<span class="md-ellipsis">
Deployment-Architektur
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#sync-deploy-workflow" class="md-nav__link">
<span class="md-ellipsis">
Sync &amp; Deploy Workflow
</span>
</a>
<nav class="md-nav" aria-label="Sync &amp; Deploy Workflow">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#1-dateien-synchronisieren" class="md-nav__link">
<span class="md-ellipsis">
1. Dateien synchronisieren
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#2-container-bauen" class="md-nav__link">
<span class="md-ellipsis">
2. Container bauen
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#3-container-deployen" class="md-nav__link">
<span class="md-ellipsis">
3. Container deployen
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#4-logs-prufen" class="md-nav__link">
<span class="md-ellipsis">
4. Logs prüfen
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#service-spezifische-deployments" class="md-nav__link">
<span class="md-ellipsis">
Service-spezifische Deployments
</span>
</a>
<nav class="md-nav" aria-label="Service-spezifische Deployments">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#nextjs-frontend-studio-v2-admin-v2-website" class="md-nav__link">
<span class="md-ellipsis">
Next.js Frontend (studio-v2, admin-v2, website)
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#python-services-backend-klausur-service-voice-service" class="md-nav__link">
<span class="md-ellipsis">
Python Services (backend, klausur-service, voice-service)
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#go-services-consent-service-ai-compliance-sdk" class="md-nav__link">
<span class="md-ellipsis">
Go Services (consent-service, ai-compliance-sdk)
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#mkdocs-dokumentation" class="md-nav__link">
<span class="md-ellipsis">
MkDocs Dokumentation
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#health-checks" class="md-nav__link">
<span class="md-ellipsis">
Health Checks
</span>
</a>
<nav class="md-nav" aria-label="Health Checks">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#service-status-prufen" class="md-nav__link">
<span class="md-ellipsis">
Service-Status prüfen
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#logs-analysieren" class="md-nav__link">
<span class="md-ellipsis">
Logs analysieren
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#rollback" class="md-nav__link">
<span class="md-ellipsis">
Rollback
</span>
</a>
<nav class="md-nav" aria-label="Rollback">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#container-auf-vorherige-version-zurucksetzen" class="md-nav__link">
<span class="md-ellipsis">
Container auf vorherige Version zurücksetzen
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#troubleshooting" class="md-nav__link">
<span class="md-ellipsis">
Troubleshooting
</span>
</a>
<nav class="md-nav" aria-label="Troubleshooting">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#container-startet-nicht" class="md-nav__link">
<span class="md-ellipsis">
Container startet nicht
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#port-bereits-belegt" class="md-nav__link">
<span class="md-ellipsis">
Port bereits belegt
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#build-fehler" class="md-nav__link">
<span class="md-ellipsis">
Build-Fehler
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#monitoring" class="md-nav__link">
<span class="md-ellipsis">
Monitoring
</span>
</a>
<nav class="md-nav" aria-label="Monitoring">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#resource-nutzung" class="md-nav__link">
<span class="md-ellipsis">
Resource-Nutzung
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#cleanup" class="md-nav__link">
<span class="md-ellipsis">
Cleanup
</span>
</a>
</li>
</ul>
</nav>
</li>
<li class="md-nav__item">
<a href="#umgebungsvariablen" class="md-nav__link">
<span class="md-ellipsis">
Umgebungsvariablen
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#woodpecker-ci-automatisierte-oauth-integration" class="md-nav__link">
<span class="md-ellipsis">
Woodpecker CI - Automatisierte OAuth Integration
</span>
</a>
<nav class="md-nav" aria-label="Woodpecker CI - Automatisierte OAuth Integration">
<ul class="md-nav__list">
<li class="md-nav__item">
<a href="#uberblick" class="md-nav__link">
<span class="md-ellipsis">
Überblick
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#architektur" class="md-nav__link">
<span class="md-ellipsis">
Architektur
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#credentials-speicherorte" class="md-nav__link">
<span class="md-ellipsis">
Credentials-Speicherorte
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#troubleshooting-oauth-fehler" class="md-nav__link">
<span class="md-ellipsis">
Troubleshooting: OAuth Fehler
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#das-sync-script" class="md-nav__link">
<span class="md-ellipsis">
Das Sync-Script
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#vault-zugriff" class="md-nav__link">
<span class="md-ellipsis">
Vault-Zugriff
</span>
</a>
</li>
<li class="md-nav__item">
<a href="#services-neustarten-nach-credentials-anderung" class="md-nav__link">
<span class="md-ellipsis">
Services neustarten nach Credentials-Änderung
</span>
</a>
</li>
</ul>
</nav>
</li>
</ul>
</nav>
</div>
</div>
</div>
<div class="md-content" data-md-component="content">
<article class="md-content__inner md-typeset">
<h1 id="cicd-pipeline">CI/CD Pipeline<a class="headerlink" href="#cicd-pipeline" title="Permanent link">&para;</a></h1>
<p>Übersicht über den Deployment-Prozess für Breakpilot.</p>
<h2 id="ubersicht">Übersicht<a class="headerlink" href="#ubersicht" title="Permanent link">&para;</a></h2>
<table>
<thead>
<tr>
<th>Komponente</th>
<th>Build-Tool</th>
<th>Deployment</th>
</tr>
</thead>
<tbody>
<tr>
<td>Frontend (Next.js)</td>
<td>Docker</td>
<td>Mac Mini</td>
</tr>
<tr>
<td>Backend (FastAPI)</td>
<td>Docker</td>
<td>Mac Mini</td>
</tr>
<tr>
<td>Go Services</td>
<td>Docker (Multi-stage)</td>
<td>Mac Mini</td>
</tr>
<tr>
<td>Documentation</td>
<td>MkDocs</td>
<td>Docker (Nginx)</td>
</tr>
</tbody>
</table>
<h2 id="deployment-architektur">Deployment-Architektur<a class="headerlink" href="#deployment-architektur" title="Permanent link">&para;</a></h2>
<div class="highlight"><pre><span></span><code><a id="__codelineno-0-1" name="__codelineno-0-1" href="#__codelineno-0-1"></a>┌─────────────────────────────────────────────────────────────────┐
<a id="__codelineno-0-2" name="__codelineno-0-2" href="#__codelineno-0-2"></a>│ Entwickler-MacBook │
<a id="__codelineno-0-3" name="__codelineno-0-3" href="#__codelineno-0-3"></a>│ │
<a id="__codelineno-0-4" name="__codelineno-0-4" href="#__codelineno-0-4"></a>│ breakpilot-pwa/ │
<a id="__codelineno-0-5" name="__codelineno-0-5" href="#__codelineno-0-5"></a>│ ├── studio-v2/ (Next.js Frontend) │
<a id="__codelineno-0-6" name="__codelineno-0-6" href="#__codelineno-0-6"></a>│ ├── admin-v2/ (Next.js Admin) │
<a id="__codelineno-0-7" name="__codelineno-0-7" href="#__codelineno-0-7"></a>│ ├── backend/ (Python FastAPI) │
<a id="__codelineno-0-8" name="__codelineno-0-8" href="#__codelineno-0-8"></a>│ ├── consent-service/ (Go Service) │
<a id="__codelineno-0-9" name="__codelineno-0-9" href="#__codelineno-0-9"></a>│ ├── klausur-service/ (Python FastAPI) │
<a id="__codelineno-0-10" name="__codelineno-0-10" href="#__codelineno-0-10"></a>│ ├── voice-service/ (Python FastAPI) │
<a id="__codelineno-0-11" name="__codelineno-0-11" href="#__codelineno-0-11"></a>│ ├── ai-compliance-sdk/ (Go Service) │
<a id="__codelineno-0-12" name="__codelineno-0-12" href="#__codelineno-0-12"></a>│ └── docs-src/ (MkDocs) │
<a id="__codelineno-0-13" name="__codelineno-0-13" href="#__codelineno-0-13"></a>│ │
<a id="__codelineno-0-14" name="__codelineno-0-14" href="#__codelineno-0-14"></a>│ $ ./sync-and-deploy.sh │
<a id="__codelineno-0-15" name="__codelineno-0-15" href="#__codelineno-0-15"></a>└───────────────────────────────┬─────────────────────────────────┘
<a id="__codelineno-0-16" name="__codelineno-0-16" href="#__codelineno-0-16"></a>
<a id="__codelineno-0-17" name="__codelineno-0-17" href="#__codelineno-0-17"></a> │ rsync + SSH
<a id="__codelineno-0-18" name="__codelineno-0-18" href="#__codelineno-0-18"></a>
<a id="__codelineno-0-19" name="__codelineno-0-19" href="#__codelineno-0-19"></a>
<a id="__codelineno-0-20" name="__codelineno-0-20" href="#__codelineno-0-20"></a>┌─────────────────────────────────────────────────────────────────┐
<a id="__codelineno-0-21" name="__codelineno-0-21" href="#__codelineno-0-21"></a>│ Mac Mini Server │
<a id="__codelineno-0-22" name="__codelineno-0-22" href="#__codelineno-0-22"></a>│ │
<a id="__codelineno-0-23" name="__codelineno-0-23" href="#__codelineno-0-23"></a>│ Docker Compose │
<a id="__codelineno-0-24" name="__codelineno-0-24" href="#__codelineno-0-24"></a>│ ├── website (Port 3000) │
<a id="__codelineno-0-25" name="__codelineno-0-25" href="#__codelineno-0-25"></a>│ ├── studio-v2 (Port 3001) │
<a id="__codelineno-0-26" name="__codelineno-0-26" href="#__codelineno-0-26"></a>│ ├── admin-v2 (Port 3002) │
<a id="__codelineno-0-27" name="__codelineno-0-27" href="#__codelineno-0-27"></a>│ ├── backend (Port 8000) │
<a id="__codelineno-0-28" name="__codelineno-0-28" href="#__codelineno-0-28"></a>│ ├── consent-service (Port 8081) │
<a id="__codelineno-0-29" name="__codelineno-0-29" href="#__codelineno-0-29"></a>│ ├── klausur-service (Port 8086) │
<a id="__codelineno-0-30" name="__codelineno-0-30" href="#__codelineno-0-30"></a>│ ├── voice-service (Port 8082) │
<a id="__codelineno-0-31" name="__codelineno-0-31" href="#__codelineno-0-31"></a>│ ├── ai-compliance-sdk (Port 8090) │
<a id="__codelineno-0-32" name="__codelineno-0-32" href="#__codelineno-0-32"></a>│ ├── docs (Port 8009) │
<a id="__codelineno-0-33" name="__codelineno-0-33" href="#__codelineno-0-33"></a>│ ├── postgres │
<a id="__codelineno-0-34" name="__codelineno-0-34" href="#__codelineno-0-34"></a>│ ├── valkey (Redis) │
<a id="__codelineno-0-35" name="__codelineno-0-35" href="#__codelineno-0-35"></a>│ ├── qdrant │
<a id="__codelineno-0-36" name="__codelineno-0-36" href="#__codelineno-0-36"></a>│ └── minio │
<a id="__codelineno-0-37" name="__codelineno-0-37" href="#__codelineno-0-37"></a>│ │
<a id="__codelineno-0-38" name="__codelineno-0-38" href="#__codelineno-0-38"></a>└─────────────────────────────────────────────────────────────────┘
</code></pre></div>
<h2 id="sync-deploy-workflow">Sync &amp; Deploy Workflow<a class="headerlink" href="#sync-deploy-workflow" title="Permanent link">&para;</a></h2>
<h3 id="1-dateien-synchronisieren">1. Dateien synchronisieren<a class="headerlink" href="#1-dateien-synchronisieren" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-1-1" name="__codelineno-1-1" href="#__codelineno-1-1"></a><span class="c1"># Sync aller relevanten Verzeichnisse zum Mac Mini</span>
<a id="__codelineno-1-2" name="__codelineno-1-2" href="#__codelineno-1-2"></a>rsync<span class="w"> </span>-avz<span class="w"> </span>--delete<span class="w"> </span><span class="se">\</span>
<a id="__codelineno-1-3" name="__codelineno-1-3" href="#__codelineno-1-3"></a><span class="w"> </span>--exclude<span class="w"> </span><span class="s1">&#39;node_modules&#39;</span><span class="w"> </span><span class="se">\</span>
<a id="__codelineno-1-4" name="__codelineno-1-4" href="#__codelineno-1-4"></a><span class="w"> </span>--exclude<span class="w"> </span><span class="s1">&#39;.next&#39;</span><span class="w"> </span><span class="se">\</span>
<a id="__codelineno-1-5" name="__codelineno-1-5" href="#__codelineno-1-5"></a><span class="w"> </span>--exclude<span class="w"> </span><span class="s1">&#39;.git&#39;</span><span class="w"> </span><span class="se">\</span>
<a id="__codelineno-1-6" name="__codelineno-1-6" href="#__codelineno-1-6"></a><span class="w"> </span>--exclude<span class="w"> </span><span class="s1">&#39;__pycache__&#39;</span><span class="w"> </span><span class="se">\</span>
<a id="__codelineno-1-7" name="__codelineno-1-7" href="#__codelineno-1-7"></a><span class="w"> </span>--exclude<span class="w"> </span><span class="s1">&#39;venv&#39;</span><span class="w"> </span><span class="se">\</span>
<a id="__codelineno-1-8" name="__codelineno-1-8" href="#__codelineno-1-8"></a><span class="w"> </span>--exclude<span class="w"> </span><span class="s1">&#39;.pytest_cache&#39;</span><span class="w"> </span><span class="se">\</span>
<a id="__codelineno-1-9" name="__codelineno-1-9" href="#__codelineno-1-9"></a><span class="w"> </span>/Users/benjaminadmin/Projekte/breakpilot-pwa/<span class="w"> </span><span class="se">\</span>
<a id="__codelineno-1-10" name="__codelineno-1-10" href="#__codelineno-1-10"></a><span class="w"> </span>macmini:/Users/benjaminadmin/Projekte/breakpilot-pwa/
</code></pre></div>
<h3 id="2-container-bauen">2. Container bauen<a class="headerlink" href="#2-container-bauen" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-2-1" name="__codelineno-2-1" href="#__codelineno-2-1"></a><span class="c1"># Einzelnen Service bauen</span>
<a id="__codelineno-2-2" name="__codelineno-2-2" href="#__codelineno-2-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;/usr/local/bin/docker compose \</span>
<a id="__codelineno-2-3" name="__codelineno-2-3" href="#__codelineno-2-3"></a><span class="s2"> -f /Users/benjaminadmin/Projekte/breakpilot-pwa/docker-compose.yml \</span>
<a id="__codelineno-2-4" name="__codelineno-2-4" href="#__codelineno-2-4"></a><span class="s2"> build --no-cache &lt;service-name&gt;&quot;</span>
<a id="__codelineno-2-5" name="__codelineno-2-5" href="#__codelineno-2-5"></a>
<a id="__codelineno-2-6" name="__codelineno-2-6" href="#__codelineno-2-6"></a><span class="c1"># Beispiele:</span>
<a id="__codelineno-2-7" name="__codelineno-2-7" href="#__codelineno-2-7"></a><span class="c1"># studio-v2, admin-v2, website, backend, klausur-service, docs</span>
</code></pre></div>
<h3 id="3-container-deployen">3. Container deployen<a class="headerlink" href="#3-container-deployen" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-3-1" name="__codelineno-3-1" href="#__codelineno-3-1"></a><span class="c1"># Container neu starten</span>
<a id="__codelineno-3-2" name="__codelineno-3-2" href="#__codelineno-3-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;/usr/local/bin/docker compose \</span>
<a id="__codelineno-3-3" name="__codelineno-3-3" href="#__codelineno-3-3"></a><span class="s2"> -f /Users/benjaminadmin/Projekte/breakpilot-pwa/docker-compose.yml \</span>
<a id="__codelineno-3-4" name="__codelineno-3-4" href="#__codelineno-3-4"></a><span class="s2"> up -d &lt;service-name&gt;&quot;</span>
</code></pre></div>
<h3 id="4-logs-prufen">4. Logs prüfen<a class="headerlink" href="#4-logs-prufen" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-4-1" name="__codelineno-4-1" href="#__codelineno-4-1"></a><span class="c1"># Container-Logs anzeigen</span>
<a id="__codelineno-4-2" name="__codelineno-4-2" href="#__codelineno-4-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;/usr/local/bin/docker compose \</span>
<a id="__codelineno-4-3" name="__codelineno-4-3" href="#__codelineno-4-3"></a><span class="s2"> -f /Users/benjaminadmin/Projekte/breakpilot-pwa/docker-compose.yml \</span>
<a id="__codelineno-4-4" name="__codelineno-4-4" href="#__codelineno-4-4"></a><span class="s2"> logs -f &lt;service-name&gt;&quot;</span>
</code></pre></div>
<h2 id="service-spezifische-deployments">Service-spezifische Deployments<a class="headerlink" href="#service-spezifische-deployments" title="Permanent link">&para;</a></h2>
<h3 id="nextjs-frontend-studio-v2-admin-v2-website">Next.js Frontend (studio-v2, admin-v2, website)<a class="headerlink" href="#nextjs-frontend-studio-v2-admin-v2-website" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-5-1" name="__codelineno-5-1" href="#__codelineno-5-1"></a><span class="c1"># 1. Sync</span>
<a id="__codelineno-5-2" name="__codelineno-5-2" href="#__codelineno-5-2"></a>rsync<span class="w"> </span>-avz<span class="w"> </span>--delete<span class="w"> </span><span class="se">\</span>
<a id="__codelineno-5-3" name="__codelineno-5-3" href="#__codelineno-5-3"></a><span class="w"> </span>--exclude<span class="w"> </span><span class="s1">&#39;node_modules&#39;</span><span class="w"> </span>--exclude<span class="w"> </span><span class="s1">&#39;.next&#39;</span><span class="w"> </span>--exclude<span class="w"> </span><span class="s1">&#39;.git&#39;</span><span class="w"> </span><span class="se">\</span>
<a id="__codelineno-5-4" name="__codelineno-5-4" href="#__codelineno-5-4"></a><span class="w"> </span>/Users/benjaminadmin/Projekte/breakpilot-pwa/studio-v2/<span class="w"> </span><span class="se">\</span>
<a id="__codelineno-5-5" name="__codelineno-5-5" href="#__codelineno-5-5"></a><span class="w"> </span>macmini:/Users/benjaminadmin/Projekte/breakpilot-pwa/studio-v2/
<a id="__codelineno-5-6" name="__codelineno-5-6" href="#__codelineno-5-6"></a>
<a id="__codelineno-5-7" name="__codelineno-5-7" href="#__codelineno-5-7"></a><span class="c1"># 2. Build &amp; Deploy</span>
<a id="__codelineno-5-8" name="__codelineno-5-8" href="#__codelineno-5-8"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;/usr/local/bin/docker compose \</span>
<a id="__codelineno-5-9" name="__codelineno-5-9" href="#__codelineno-5-9"></a><span class="s2"> -f /Users/benjaminadmin/Projekte/breakpilot-pwa/docker-compose.yml \</span>
<a id="__codelineno-5-10" name="__codelineno-5-10" href="#__codelineno-5-10"></a><span class="s2"> build --no-cache studio-v2 &amp;&amp; \</span>
<a id="__codelineno-5-11" name="__codelineno-5-11" href="#__codelineno-5-11"></a><span class="s2"> /usr/local/bin/docker compose \</span>
<a id="__codelineno-5-12" name="__codelineno-5-12" href="#__codelineno-5-12"></a><span class="s2"> -f /Users/benjaminadmin/Projekte/breakpilot-pwa/docker-compose.yml \</span>
<a id="__codelineno-5-13" name="__codelineno-5-13" href="#__codelineno-5-13"></a><span class="s2"> up -d studio-v2&quot;</span>
</code></pre></div>
<h3 id="python-services-backend-klausur-service-voice-service">Python Services (backend, klausur-service, voice-service)<a class="headerlink" href="#python-services-backend-klausur-service-voice-service" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-6-1" name="__codelineno-6-1" href="#__codelineno-6-1"></a><span class="c1"># Build mit requirements.txt</span>
<a id="__codelineno-6-2" name="__codelineno-6-2" href="#__codelineno-6-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;/usr/local/bin/docker compose \</span>
<a id="__codelineno-6-3" name="__codelineno-6-3" href="#__codelineno-6-3"></a><span class="s2"> -f /Users/benjaminadmin/Projekte/breakpilot-pwa/docker-compose.yml \</span>
<a id="__codelineno-6-4" name="__codelineno-6-4" href="#__codelineno-6-4"></a><span class="s2"> build klausur-service &amp;&amp; \</span>
<a id="__codelineno-6-5" name="__codelineno-6-5" href="#__codelineno-6-5"></a><span class="s2"> /usr/local/bin/docker compose \</span>
<a id="__codelineno-6-6" name="__codelineno-6-6" href="#__codelineno-6-6"></a><span class="s2"> -f /Users/benjaminadmin/Projekte/breakpilot-pwa/docker-compose.yml \</span>
<a id="__codelineno-6-7" name="__codelineno-6-7" href="#__codelineno-6-7"></a><span class="s2"> up -d klausur-service&quot;</span>
</code></pre></div>
<h3 id="go-services-consent-service-ai-compliance-sdk">Go Services (consent-service, ai-compliance-sdk)<a class="headerlink" href="#go-services-consent-service-ai-compliance-sdk" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-7-1" name="__codelineno-7-1" href="#__codelineno-7-1"></a><span class="c1"># Multi-stage Build (Go → Alpine)</span>
<a id="__codelineno-7-2" name="__codelineno-7-2" href="#__codelineno-7-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;/usr/local/bin/docker compose \</span>
<a id="__codelineno-7-3" name="__codelineno-7-3" href="#__codelineno-7-3"></a><span class="s2"> -f /Users/benjaminadmin/Projekte/breakpilot-pwa/docker-compose.yml \</span>
<a id="__codelineno-7-4" name="__codelineno-7-4" href="#__codelineno-7-4"></a><span class="s2"> build --no-cache consent-service &amp;&amp; \</span>
<a id="__codelineno-7-5" name="__codelineno-7-5" href="#__codelineno-7-5"></a><span class="s2"> /usr/local/bin/docker compose \</span>
<a id="__codelineno-7-6" name="__codelineno-7-6" href="#__codelineno-7-6"></a><span class="s2"> -f /Users/benjaminadmin/Projekte/breakpilot-pwa/docker-compose.yml \</span>
<a id="__codelineno-7-7" name="__codelineno-7-7" href="#__codelineno-7-7"></a><span class="s2"> up -d consent-service&quot;</span>
</code></pre></div>
<h3 id="mkdocs-dokumentation">MkDocs Dokumentation<a class="headerlink" href="#mkdocs-dokumentation" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-8-1" name="__codelineno-8-1" href="#__codelineno-8-1"></a><span class="c1"># Build &amp; Deploy</span>
<a id="__codelineno-8-2" name="__codelineno-8-2" href="#__codelineno-8-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;/usr/local/bin/docker compose \</span>
<a id="__codelineno-8-3" name="__codelineno-8-3" href="#__codelineno-8-3"></a><span class="s2"> -f /Users/benjaminadmin/Projekte/breakpilot-pwa/docker-compose.yml \</span>
<a id="__codelineno-8-4" name="__codelineno-8-4" href="#__codelineno-8-4"></a><span class="s2"> build --no-cache docs &amp;&amp; \</span>
<a id="__codelineno-8-5" name="__codelineno-8-5" href="#__codelineno-8-5"></a><span class="s2"> /usr/local/bin/docker compose \</span>
<a id="__codelineno-8-6" name="__codelineno-8-6" href="#__codelineno-8-6"></a><span class="s2"> -f /Users/benjaminadmin/Projekte/breakpilot-pwa/docker-compose.yml \</span>
<a id="__codelineno-8-7" name="__codelineno-8-7" href="#__codelineno-8-7"></a><span class="s2"> up -d docs&quot;</span>
<a id="__codelineno-8-8" name="__codelineno-8-8" href="#__codelineno-8-8"></a>
<a id="__codelineno-8-9" name="__codelineno-8-9" href="#__codelineno-8-9"></a><span class="c1"># Verfügbar unter: http://macmini:8009</span>
</code></pre></div>
<h2 id="health-checks">Health Checks<a class="headerlink" href="#health-checks" title="Permanent link">&para;</a></h2>
<h3 id="service-status-prufen">Service-Status prüfen<a class="headerlink" href="#service-status-prufen" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-9-1" name="__codelineno-9-1" href="#__codelineno-9-1"></a><span class="c1"># Alle Container-Status</span>
<a id="__codelineno-9-2" name="__codelineno-9-2" href="#__codelineno-9-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker ps --format &#39;table {{.Names}}\t{{.Status}}\t{{.Ports}}&#39;&quot;</span>
<a id="__codelineno-9-3" name="__codelineno-9-3" href="#__codelineno-9-3"></a>
<a id="__codelineno-9-4" name="__codelineno-9-4" href="#__codelineno-9-4"></a><span class="c1"># Health-Endpoints prüfen</span>
<a id="__codelineno-9-5" name="__codelineno-9-5" href="#__codelineno-9-5"></a>curl<span class="w"> </span>-s<span class="w"> </span>http://macmini:8000/health
<a id="__codelineno-9-6" name="__codelineno-9-6" href="#__codelineno-9-6"></a>curl<span class="w"> </span>-s<span class="w"> </span>http://macmini:8081/health
<a id="__codelineno-9-7" name="__codelineno-9-7" href="#__codelineno-9-7"></a>curl<span class="w"> </span>-s<span class="w"> </span>http://macmini:8086/health
<a id="__codelineno-9-8" name="__codelineno-9-8" href="#__codelineno-9-8"></a>curl<span class="w"> </span>-s<span class="w"> </span>http://macmini:8090/health
</code></pre></div>
<h3 id="logs-analysieren">Logs analysieren<a class="headerlink" href="#logs-analysieren" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-10-1" name="__codelineno-10-1" href="#__codelineno-10-1"></a><span class="c1"># Letzte 100 Zeilen</span>
<a id="__codelineno-10-2" name="__codelineno-10-2" href="#__codelineno-10-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker logs --tail 100 breakpilot-pwa-backend-1&quot;</span>
<a id="__codelineno-10-3" name="__codelineno-10-3" href="#__codelineno-10-3"></a>
<a id="__codelineno-10-4" name="__codelineno-10-4" href="#__codelineno-10-4"></a><span class="c1"># Live-Logs folgen</span>
<a id="__codelineno-10-5" name="__codelineno-10-5" href="#__codelineno-10-5"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker logs -f breakpilot-pwa-backend-1&quot;</span>
</code></pre></div>
<h2 id="rollback">Rollback<a class="headerlink" href="#rollback" title="Permanent link">&para;</a></h2>
<h3 id="container-auf-vorherige-version-zurucksetzen">Container auf vorherige Version zurücksetzen<a class="headerlink" href="#container-auf-vorherige-version-zurucksetzen" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-11-1" name="__codelineno-11-1" href="#__codelineno-11-1"></a><span class="c1"># 1. Aktuelles Image taggen</span>
<a id="__codelineno-11-2" name="__codelineno-11-2" href="#__codelineno-11-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker tag breakpilot-pwa-backend:latest breakpilot-pwa-backend:backup&quot;</span>
<a id="__codelineno-11-3" name="__codelineno-11-3" href="#__codelineno-11-3"></a>
<a id="__codelineno-11-4" name="__codelineno-11-4" href="#__codelineno-11-4"></a><span class="c1"># 2. Altes Image deployen</span>
<a id="__codelineno-11-5" name="__codelineno-11-5" href="#__codelineno-11-5"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;/usr/local/bin/docker compose \</span>
<a id="__codelineno-11-6" name="__codelineno-11-6" href="#__codelineno-11-6"></a><span class="s2"> -f /Users/benjaminadmin/Projekte/breakpilot-pwa/docker-compose.yml \</span>
<a id="__codelineno-11-7" name="__codelineno-11-7" href="#__codelineno-11-7"></a><span class="s2"> up -d backend&quot;</span>
<a id="__codelineno-11-8" name="__codelineno-11-8" href="#__codelineno-11-8"></a>
<a id="__codelineno-11-9" name="__codelineno-11-9" href="#__codelineno-11-9"></a><span class="c1"># 3. Bei Problemen: Backup wiederherstellen</span>
<a id="__codelineno-11-10" name="__codelineno-11-10" href="#__codelineno-11-10"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker tag breakpilot-pwa-backend:backup breakpilot-pwa-backend:latest&quot;</span>
</code></pre></div>
<h2 id="troubleshooting">Troubleshooting<a class="headerlink" href="#troubleshooting" title="Permanent link">&para;</a></h2>
<h3 id="container-startet-nicht">Container startet nicht<a class="headerlink" href="#container-startet-nicht" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-12-1" name="__codelineno-12-1" href="#__codelineno-12-1"></a><span class="c1"># 1. Logs prüfen</span>
<a id="__codelineno-12-2" name="__codelineno-12-2" href="#__codelineno-12-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker logs breakpilot-pwa-&lt;service&gt;-1&quot;</span>
<a id="__codelineno-12-3" name="__codelineno-12-3" href="#__codelineno-12-3"></a>
<a id="__codelineno-12-4" name="__codelineno-12-4" href="#__codelineno-12-4"></a><span class="c1"># 2. Container manuell starten für Debug-Output</span>
<a id="__codelineno-12-5" name="__codelineno-12-5" href="#__codelineno-12-5"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker compose -f .../docker-compose.yml run --rm &lt;service&gt;&quot;</span>
<a id="__codelineno-12-6" name="__codelineno-12-6" href="#__codelineno-12-6"></a>
<a id="__codelineno-12-7" name="__codelineno-12-7" href="#__codelineno-12-7"></a><span class="c1"># 3. In Container einloggen</span>
<a id="__codelineno-12-8" name="__codelineno-12-8" href="#__codelineno-12-8"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker exec -it breakpilot-pwa-&lt;service&gt;-1 /bin/sh&quot;</span>
</code></pre></div>
<h3 id="port-bereits-belegt">Port bereits belegt<a class="headerlink" href="#port-bereits-belegt" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-13-1" name="__codelineno-13-1" href="#__codelineno-13-1"></a><span class="c1"># Port-Belegung prüfen</span>
<a id="__codelineno-13-2" name="__codelineno-13-2" href="#__codelineno-13-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;lsof -i :8000&quot;</span>
<a id="__codelineno-13-3" name="__codelineno-13-3" href="#__codelineno-13-3"></a>
<a id="__codelineno-13-4" name="__codelineno-13-4" href="#__codelineno-13-4"></a><span class="c1"># Container mit dem Port finden</span>
<a id="__codelineno-13-5" name="__codelineno-13-5" href="#__codelineno-13-5"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker ps --filter publish=8000&quot;</span>
</code></pre></div>
<h3 id="build-fehler">Build-Fehler<a class="headerlink" href="#build-fehler" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-14-1" name="__codelineno-14-1" href="#__codelineno-14-1"></a><span class="c1"># Cache komplett leeren</span>
<a id="__codelineno-14-2" name="__codelineno-14-2" href="#__codelineno-14-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker builder prune -a&quot;</span>
<a id="__codelineno-14-3" name="__codelineno-14-3" href="#__codelineno-14-3"></a>
<a id="__codelineno-14-4" name="__codelineno-14-4" href="#__codelineno-14-4"></a><span class="c1"># Ohne Cache bauen</span>
<a id="__codelineno-14-5" name="__codelineno-14-5" href="#__codelineno-14-5"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker compose build --no-cache &lt;service&gt;&quot;</span>
</code></pre></div>
<h2 id="monitoring">Monitoring<a class="headerlink" href="#monitoring" title="Permanent link">&para;</a></h2>
<h3 id="resource-nutzung">Resource-Nutzung<a class="headerlink" href="#resource-nutzung" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-15-1" name="__codelineno-15-1" href="#__codelineno-15-1"></a><span class="c1"># CPU/Memory aller Container</span>
<a id="__codelineno-15-2" name="__codelineno-15-2" href="#__codelineno-15-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker stats --no-stream&quot;</span>
<a id="__codelineno-15-3" name="__codelineno-15-3" href="#__codelineno-15-3"></a>
<a id="__codelineno-15-4" name="__codelineno-15-4" href="#__codelineno-15-4"></a><span class="c1"># Disk-Nutzung</span>
<a id="__codelineno-15-5" name="__codelineno-15-5" href="#__codelineno-15-5"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker system df&quot;</span>
</code></pre></div>
<h3 id="cleanup">Cleanup<a class="headerlink" href="#cleanup" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-16-1" name="__codelineno-16-1" href="#__codelineno-16-1"></a><span class="c1"># Ungenutzte Images/Container entfernen</span>
<a id="__codelineno-16-2" name="__codelineno-16-2" href="#__codelineno-16-2"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker system prune -a --volumes&quot;</span>
<a id="__codelineno-16-3" name="__codelineno-16-3" href="#__codelineno-16-3"></a>
<a id="__codelineno-16-4" name="__codelineno-16-4" href="#__codelineno-16-4"></a><span class="c1"># Nur dangling Images</span>
<a id="__codelineno-16-5" name="__codelineno-16-5" href="#__codelineno-16-5"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;docker image prune&quot;</span>
</code></pre></div>
<h2 id="umgebungsvariablen">Umgebungsvariablen<a class="headerlink" href="#umgebungsvariablen" title="Permanent link">&para;</a></h2>
<p>Umgebungsvariablen werden über <code>.env</code> Dateien und docker-compose.yml verwaltet:</p>
<div class="highlight"><pre><span></span><code><a id="__codelineno-17-1" name="__codelineno-17-1" href="#__codelineno-17-1"></a><span class="c1"># docker-compose.yml</span>
<a id="__codelineno-17-2" name="__codelineno-17-2" href="#__codelineno-17-2"></a><span class="nt">services</span><span class="p">:</span>
<a id="__codelineno-17-3" name="__codelineno-17-3" href="#__codelineno-17-3"></a><span class="w"> </span><span class="nt">backend</span><span class="p">:</span>
<a id="__codelineno-17-4" name="__codelineno-17-4" href="#__codelineno-17-4"></a><span class="w"> </span><span class="nt">environment</span><span class="p">:</span>
<a id="__codelineno-17-5" name="__codelineno-17-5" href="#__codelineno-17-5"></a><span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">DATABASE_URL=postgresql://...</span>
<a id="__codelineno-17-6" name="__codelineno-17-6" href="#__codelineno-17-6"></a><span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">REDIS_URL=redis://valkey:6379</span>
<a id="__codelineno-17-7" name="__codelineno-17-7" href="#__codelineno-17-7"></a><span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">SECRET_KEY=${SECRET_KEY}</span>
</code></pre></div>
<p><strong>Wichtig</strong>: Sensible Werte niemals in Git committen. Stattdessen:
- <code>.env</code> Datei auf dem Server pflegen
- Secrets über HashiCorp Vault (siehe unten)</p>
<h2 id="woodpecker-ci-automatisierte-oauth-integration">Woodpecker CI - Automatisierte OAuth Integration<a class="headerlink" href="#woodpecker-ci-automatisierte-oauth-integration" title="Permanent link">&para;</a></h2>
<h3 id="uberblick">Überblick<a class="headerlink" href="#uberblick" title="Permanent link">&para;</a></h3>
<p>Die OAuth-Integration zwischen Woodpecker CI und Gitea ist <strong>vollständig automatisiert</strong>. Credentials werden in HashiCorp Vault gespeichert und bei Bedarf automatisch regeneriert.</p>
<div class="admonition info">
<p class="admonition-title">Warum automatisiert?</p>
<p>Diese Automatisierung ist eine DevSecOps Best Practice:</p>
<ul>
<li><strong>Infrastructure-as-Code</strong>: Alles ist reproduzierbar</li>
<li><strong>Disaster Recovery</strong>: Verlorene Credentials können automatisch regeneriert werden</li>
<li><strong>Security</strong>: Secrets werden zentral in Vault verwaltet</li>
<li><strong>Onboarding</strong>: Neue Entwickler müssen nichts manuell konfigurieren</li>
</ul>
</div>
<h3 id="architektur">Architektur<a class="headerlink" href="#architektur" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-18-1" name="__codelineno-18-1" href="#__codelineno-18-1"></a>┌─────────────────────────────────────────────────────────────────┐
<a id="__codelineno-18-2" name="__codelineno-18-2" href="#__codelineno-18-2"></a>│ Mac Mini Server │
<a id="__codelineno-18-3" name="__codelineno-18-3" href="#__codelineno-18-3"></a>│ │
<a id="__codelineno-18-4" name="__codelineno-18-4" href="#__codelineno-18-4"></a>│ ┌───────────────┐ OAuth 2.0 ┌───────────────┐ │
<a id="__codelineno-18-5" name="__codelineno-18-5" href="#__codelineno-18-5"></a>│ │ Gitea │ ←─────────────────────────→│ Woodpecker │ │
<a id="__codelineno-18-6" name="__codelineno-18-6" href="#__codelineno-18-6"></a>│ │ (Port 3003) │ Client ID + Secret │ (Port 8090) │ │
<a id="__codelineno-18-7" name="__codelineno-18-7" href="#__codelineno-18-7"></a>│ └───────────────┘ └───────────────┘ │
<a id="__codelineno-18-8" name="__codelineno-18-8" href="#__codelineno-18-8"></a>│ │ │ │
<a id="__codelineno-18-9" name="__codelineno-18-9" href="#__codelineno-18-9"></a>│ │ OAuth App │ Env Vars│
<a id="__codelineno-18-10" name="__codelineno-18-10" href="#__codelineno-18-10"></a>│ │ (DB: oauth2_application) │ │
<a id="__codelineno-18-11" name="__codelineno-18-11" href="#__codelineno-18-11"></a>│ │ │ │
<a id="__codelineno-18-12" name="__codelineno-18-12" href="#__codelineno-18-12"></a>│ ▼ ▼ │
<a id="__codelineno-18-13" name="__codelineno-18-13" href="#__codelineno-18-13"></a>│ ┌───────────────────────────────────────────────────────────┐ │
<a id="__codelineno-18-14" name="__codelineno-18-14" href="#__codelineno-18-14"></a>│ │ HashiCorp Vault (Port 8200) │ │
<a id="__codelineno-18-15" name="__codelineno-18-15" href="#__codelineno-18-15"></a>│ │ │ │
<a id="__codelineno-18-16" name="__codelineno-18-16" href="#__codelineno-18-16"></a>│ │ secret/cicd/woodpecker: │ │
<a id="__codelineno-18-17" name="__codelineno-18-17" href="#__codelineno-18-17"></a>│ │ - gitea_client_id │ │
<a id="__codelineno-18-18" name="__codelineno-18-18" href="#__codelineno-18-18"></a>│ │ - gitea_client_secret │ │
<a id="__codelineno-18-19" name="__codelineno-18-19" href="#__codelineno-18-19"></a>│ │ │ │
<a id="__codelineno-18-20" name="__codelineno-18-20" href="#__codelineno-18-20"></a>│ │ secret/cicd/api-tokens: │ │
<a id="__codelineno-18-21" name="__codelineno-18-21" href="#__codelineno-18-21"></a>│ │ - gitea_token (für API-Zugriff) │ │
<a id="__codelineno-18-22" name="__codelineno-18-22" href="#__codelineno-18-22"></a>│ │ - woodpecker_token (für Pipeline-Trigger) │ │
<a id="__codelineno-18-23" name="__codelineno-18-23" href="#__codelineno-18-23"></a>│ └───────────────────────────────────────────────────────────┘ │
<a id="__codelineno-18-24" name="__codelineno-18-24" href="#__codelineno-18-24"></a>└─────────────────────────────────────────────────────────────────┘
</code></pre></div>
<h3 id="credentials-speicherorte">Credentials-Speicherorte<a class="headerlink" href="#credentials-speicherorte" title="Permanent link">&para;</a></h3>
<table>
<thead>
<tr>
<th>Ort</th>
<th>Pfad</th>
<th>Inhalt</th>
</tr>
</thead>
<tbody>
<tr>
<td><strong>HashiCorp Vault</strong></td>
<td><code>secret/cicd/woodpecker</code></td>
<td>Client ID + Secret (Quelle der Wahrheit)</td>
</tr>
<tr>
<td><strong>.env Datei</strong></td>
<td><code>WOODPECKER_GITEA_CLIENT/SECRET</code></td>
<td>Für Docker Compose (aus Vault geladen)</td>
</tr>
<tr>
<td><strong>Gitea PostgreSQL</strong></td>
<td><code>oauth2_application</code> Tabelle</td>
<td>OAuth App Registration (gehashtes Secret)</td>
</tr>
</tbody>
</table>
<h3 id="troubleshooting-oauth-fehler">Troubleshooting: OAuth Fehler<a class="headerlink" href="#troubleshooting-oauth-fehler" title="Permanent link">&para;</a></h3>
<p>Falls der Fehler "Client ID not registered" oder "user does not exist [uid: 0]" auftritt:</p>
<div class="highlight"><pre><span></span><code><a id="__codelineno-19-1" name="__codelineno-19-1" href="#__codelineno-19-1"></a><span class="c1"># Option 1: Automatisches Regenerieren (empfohlen)</span>
<a id="__codelineno-19-2" name="__codelineno-19-2" href="#__codelineno-19-2"></a>./scripts/sync-woodpecker-credentials.sh<span class="w"> </span>--regenerate
<a id="__codelineno-19-3" name="__codelineno-19-3" href="#__codelineno-19-3"></a>
<a id="__codelineno-19-4" name="__codelineno-19-4" href="#__codelineno-19-4"></a><span class="c1"># Option 2: Manuelles Vorgehen</span>
<a id="__codelineno-19-5" name="__codelineno-19-5" href="#__codelineno-19-5"></a><span class="c1"># 1. Credentials aus Vault laden</span>
<a id="__codelineno-19-6" name="__codelineno-19-6" href="#__codelineno-19-6"></a>vault<span class="w"> </span>kv<span class="w"> </span>get<span class="w"> </span>secret/cicd/woodpecker
<a id="__codelineno-19-7" name="__codelineno-19-7" href="#__codelineno-19-7"></a>
<a id="__codelineno-19-8" name="__codelineno-19-8" href="#__codelineno-19-8"></a><span class="c1"># 2. .env aktualisieren</span>
<a id="__codelineno-19-9" name="__codelineno-19-9" href="#__codelineno-19-9"></a><span class="nv">WOODPECKER_GITEA_CLIENT</span><span class="o">=</span>&lt;client_id&gt;
<a id="__codelineno-19-10" name="__codelineno-19-10" href="#__codelineno-19-10"></a><span class="nv">WOODPECKER_GITEA_SECRET</span><span class="o">=</span>&lt;client_secret&gt;
<a id="__codelineno-19-11" name="__codelineno-19-11" href="#__codelineno-19-11"></a>
<a id="__codelineno-19-12" name="__codelineno-19-12" href="#__codelineno-19-12"></a><span class="c1"># 3. Zu Mac Mini synchronisieren</span>
<a id="__codelineno-19-13" name="__codelineno-19-13" href="#__codelineno-19-13"></a>rsync<span class="w"> </span>.env<span class="w"> </span>macmini:~/Projekte/breakpilot-pwa/
<a id="__codelineno-19-14" name="__codelineno-19-14" href="#__codelineno-19-14"></a>
<a id="__codelineno-19-15" name="__codelineno-19-15" href="#__codelineno-19-15"></a><span class="c1"># 4. Woodpecker neu starten</span>
<a id="__codelineno-19-16" name="__codelineno-19-16" href="#__codelineno-19-16"></a>ssh<span class="w"> </span>macmini<span class="w"> </span><span class="s2">&quot;cd ~/Projekte/breakpilot-pwa &amp;&amp; \</span>
<a id="__codelineno-19-17" name="__codelineno-19-17" href="#__codelineno-19-17"></a><span class="s2"> docker compose up -d --force-recreate woodpecker-server&quot;</span>
</code></pre></div>
<h3 id="das-sync-script">Das Sync-Script<a class="headerlink" href="#das-sync-script" title="Permanent link">&para;</a></h3>
<p>Das Script <code>scripts/sync-woodpecker-credentials.sh</code> automatisiert den gesamten Prozess:</p>
<div class="highlight"><pre><span></span><code><a id="__codelineno-20-1" name="__codelineno-20-1" href="#__codelineno-20-1"></a><span class="c1"># Credentials aus Vault laden und .env aktualisieren</span>
<a id="__codelineno-20-2" name="__codelineno-20-2" href="#__codelineno-20-2"></a>./scripts/sync-woodpecker-credentials.sh
<a id="__codelineno-20-3" name="__codelineno-20-3" href="#__codelineno-20-3"></a>
<a id="__codelineno-20-4" name="__codelineno-20-4" href="#__codelineno-20-4"></a><span class="c1"># Neue Credentials generieren (OAuth App in Gitea + Vault + .env)</span>
<a id="__codelineno-20-5" name="__codelineno-20-5" href="#__codelineno-20-5"></a>./scripts/sync-woodpecker-credentials.sh<span class="w"> </span>--regenerate
</code></pre></div>
<p>Was das Script macht:</p>
<ol>
<li><strong>Liest</strong> die aktuellen Credentials aus Vault</li>
<li><strong>Aktualisiert</strong> die .env Datei automatisch</li>
<li><strong>Bei <code>--regenerate</code></strong>:</li>
<li>Löscht alte OAuth Apps in Gitea</li>
<li>Erstellt neue OAuth App mit neuem Client ID/Secret</li>
<li>Speichert Credentials in Vault</li>
<li>Aktualisiert .env</li>
</ol>
<h3 id="vault-zugriff">Vault-Zugriff<a class="headerlink" href="#vault-zugriff" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-21-1" name="__codelineno-21-1" href="#__codelineno-21-1"></a><span class="c1"># Vault Token (Development)</span>
<a id="__codelineno-21-2" name="__codelineno-21-2" href="#__codelineno-21-2"></a><span class="nb">export</span><span class="w"> </span><span class="nv">VAULT_TOKEN</span><span class="o">=</span>breakpilot-dev-token
<a id="__codelineno-21-3" name="__codelineno-21-3" href="#__codelineno-21-3"></a>
<a id="__codelineno-21-4" name="__codelineno-21-4" href="#__codelineno-21-4"></a><span class="c1"># Credentials lesen</span>
<a id="__codelineno-21-5" name="__codelineno-21-5" href="#__codelineno-21-5"></a>docker<span class="w"> </span><span class="nb">exec</span><span class="w"> </span>-e<span class="w"> </span><span class="nv">VAULT_TOKEN</span><span class="o">=</span><span class="nv">$VAULT_TOKEN</span><span class="w"> </span>breakpilot-pwa-vault<span class="w"> </span><span class="se">\</span>
<a id="__codelineno-21-6" name="__codelineno-21-6" href="#__codelineno-21-6"></a><span class="w"> </span>vault<span class="w"> </span>kv<span class="w"> </span>get<span class="w"> </span>secret/cicd/woodpecker
<a id="__codelineno-21-7" name="__codelineno-21-7" href="#__codelineno-21-7"></a>
<a id="__codelineno-21-8" name="__codelineno-21-8" href="#__codelineno-21-8"></a><span class="c1"># Credentials setzen</span>
<a id="__codelineno-21-9" name="__codelineno-21-9" href="#__codelineno-21-9"></a>docker<span class="w"> </span><span class="nb">exec</span><span class="w"> </span>-e<span class="w"> </span><span class="nv">VAULT_TOKEN</span><span class="o">=</span><span class="nv">$VAULT_TOKEN</span><span class="w"> </span>breakpilot-pwa-vault<span class="w"> </span><span class="se">\</span>
<a id="__codelineno-21-10" name="__codelineno-21-10" href="#__codelineno-21-10"></a><span class="w"> </span>vault<span class="w"> </span>kv<span class="w"> </span>put<span class="w"> </span>secret/cicd/woodpecker<span class="w"> </span><span class="se">\</span>
<a id="__codelineno-21-11" name="__codelineno-21-11" href="#__codelineno-21-11"></a><span class="w"> </span><span class="nv">gitea_client_id</span><span class="o">=</span><span class="s2">&quot;...&quot;</span><span class="w"> </span><span class="se">\</span>
<a id="__codelineno-21-12" name="__codelineno-21-12" href="#__codelineno-21-12"></a><span class="w"> </span><span class="nv">gitea_client_secret</span><span class="o">=</span><span class="s2">&quot;...&quot;</span>
</code></pre></div>
<h3 id="services-neustarten-nach-credentials-anderung">Services neustarten nach Credentials-Änderung<a class="headerlink" href="#services-neustarten-nach-credentials-anderung" title="Permanent link">&para;</a></h3>
<div class="highlight"><pre><span></span><code><a id="__codelineno-22-1" name="__codelineno-22-1" href="#__codelineno-22-1"></a><span class="c1"># Wichtig: --force-recreate um neue Env Vars zu laden</span>
<a id="__codelineno-22-2" name="__codelineno-22-2" href="#__codelineno-22-2"></a><span class="nb">cd</span><span class="w"> </span>/Users/benjaminadmin/Projekte/breakpilot-pwa
<a id="__codelineno-22-3" name="__codelineno-22-3" href="#__codelineno-22-3"></a>docker<span class="w"> </span>compose<span class="w"> </span>up<span class="w"> </span>-d<span class="w"> </span>--force-recreate<span class="w"> </span>woodpecker-server
<a id="__codelineno-22-4" name="__codelineno-22-4" href="#__codelineno-22-4"></a>
<a id="__codelineno-22-5" name="__codelineno-22-5" href="#__codelineno-22-5"></a><span class="c1"># Logs prüfen</span>
<a id="__codelineno-22-6" name="__codelineno-22-6" href="#__codelineno-22-6"></a>docker<span class="w"> </span>logs<span class="w"> </span>breakpilot-pwa-woodpecker-server<span class="w"> </span>--tail<span class="w"> </span><span class="m">50</span>
</code></pre></div>
</article>
</div>
<script>var tabs=__md_get("__tabs");if(Array.isArray(tabs))e:for(var set of document.querySelectorAll(".tabbed-set")){var labels=set.querySelector(".tabbed-labels");for(var tab of tabs)for(var label of labels.getElementsByTagName("label"))if(label.innerText.trim()===tab){var input=document.getElementById(label.htmlFor);input.checked=!0;continue e}}</script>
<script>var target=document.getElementById(location.hash.slice(1));target&&target.name&&(target.checked=target.name.startsWith("__tabbed_"))</script>
</div>
<button type="button" class="md-top md-icon" data-md-component="top" hidden>
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M13 20h-2V8l-5.5 5.5-1.42-1.42L12 4.16l7.92 7.92-1.42 1.42L13 8z"/></svg>
Zurück zum Seitenanfang
</button>
</main>
<footer class="md-footer">
<div class="md-footer-meta md-typeset">
<div class="md-footer-meta__inner md-grid">
<div class="md-copyright">
Made with
<a href="https://squidfunk.github.io/mkdocs-material/" target="_blank" rel="noopener">
Material for MkDocs
</a>
</div>
<div class="md-social">
<a href="http://macmini:3003/breakpilot/breakpilot-pwa" target="_blank" rel="noopener" title="macmini:3003" class="md-social__link">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><!--! Font Awesome Free 7.1.0 by @fontawesome - https://fontawesome.com License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License) Copyright 2025 Fonticons, Inc.--><path d="M173.9 397.4c0 2-2.3 3.6-5.2 3.6-3.3.3-5.6-1.3-5.6-3.6 0-2 2.3-3.6 5.2-3.6 3-.3 5.6 1.3 5.6 3.6m-31.1-4.5c-.7 2 1.3 4.3 4.3 4.9 2.6 1 5.6 0 6.2-2s-1.3-4.3-4.3-5.2c-2.6-.7-5.5.3-6.2 2.3m44.2-1.7c-2.9.7-4.9 2.6-4.6 4.9.3 2 2.9 3.3 5.9 2.6 2.9-.7 4.9-2.6 4.6-4.6-.3-1.9-3-3.2-5.9-2.9M252.8 8C114.1 8 8 113.3 8 252c0 110.9 69.8 205.8 169.5 239.2 12.8 2.3 17.3-5.6 17.3-12.1 0-6.2-.3-40.4-.3-61.4 0 0-70 15-84.7-29.8 0 0-11.4-29.1-27.8-36.6 0 0-22.9-15.7 1.6-15.4 0 0 24.9 2 38.6 25.8 21.9 38.6 58.6 27.5 72.9 20.9 2.3-16 8.8-27.1 16-33.7-55.9-6.2-112.3-14.3-112.3-110.5 0-27.5 7.6-41.3 23.6-58.9-2.6-6.5-11.1-33.3 2.6-67.9 20.9-6.5 69 27 69 27 20-5.6 41.5-8.5 62.8-8.5s42.8 2.9 62.8 8.5c0 0 48.1-33.6 69-27 13.7 34.7 5.2 61.4 2.6 67.9 16 17.7 25.8 31.5 25.8 58.9 0 96.5-58.9 104.2-114.8 110.5 9.2 7.9 17 22.9 17 46.4 0 33.7-.3 75.4-.3 83.6 0 6.5 4.6 14.4 17.3 12.1C436.2 457.8 504 362.9 504 252 504 113.3 391.5 8 252.8 8M105.2 352.9c-1.3 1-1 3.3.7 5.2 1.6 1.6 3.9 2.3 5.2 1 1.3-1 1-3.3-.7-5.2-1.6-1.6-3.9-2.3-5.2-1m-10.8-8.1c-.7 1.3.3 2.9 2.3 3.9 1.6 1 3.6.7 4.3-.7.7-1.3-.3-2.9-2.3-3.9-2-.6-3.6-.3-4.3.7m32.4 35.6c-1.6 1.3-1 4.3 1.3 6.2 2.3 2.3 5.2 2.6 6.5 1 1.3-1.3.7-4.3-1.3-6.2-2.2-2.3-5.2-2.6-6.5-1m-11.4-14.7c-1.6 1-1.6 3.6 0 5.9s4.3 3.3 5.6 2.3c1.6-1.3 1.6-3.9 0-6.2-1.4-2.3-4-3.3-5.6-2"/></svg>
</a>
</div>
</div>
</div>
</footer>
</div>
<div class="md-dialog" data-md-component="dialog">
<div class="md-dialog__inner md-typeset"></div>
</div>
<script id="__config" type="application/json">{"annotate": null, "base": "../..", "features": ["search.highlight", "search.suggest", "navigation.tabs", "navigation.sections", "navigation.expand", "navigation.top", "content.code.copy", "content.tabs.link", "toc.follow"], "search": "../../assets/javascripts/workers/search.2c215733.min.js", "tags": null, "translations": {"clipboard.copied": "In Zwischenablage kopiert", "clipboard.copy": "In Zwischenablage kopieren", "search.result.more.one": "1 weiteres Suchergebnis auf dieser Seite", "search.result.more.other": "# weitere Suchergebnisse auf dieser Seite", "search.result.none": "Keine Suchergebnisse", "search.result.one": "1 Suchergebnis", "search.result.other": "# Suchergebnisse", "search.result.placeholder": "Suchbegriff eingeben", "search.result.term.missing": "Es fehlt", "select.version": "Version ausw\u00e4hlen"}, "version": null}</script>
<script src="../../assets/javascripts/bundle.79ae519e.min.js"></script>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink