f0c6b79d1a
package.stop/start/restart broke ("no containers found" / "no such object
immich_postgres") because the runtime hardcodes the immich stack's container names
as immich_server/immich_postgres/immich_redis (underscore) across 8 files
(lifecycle, health, crash-recovery, ports, config). The migration had named the
containers by app_id (hyphen), mismatching all of it.
Root cause of the earlier failed attempt: container_name was nested under an
`extensions:` block, but `app.extensions` is serde(flatten) — container_name must
be a TOP-LEVEL app key to be read by compute_container_name. Fixed: set
container_name: immich_server / immich_postgres / immich_redis at top level, and
point DB_HOSTNAME/REDIS_HOSTNAME at the underscore aliases. App ids stay hyphen
(immich/immich-postgres/immich-redis) so the catalog identity (title+icon) holds.
Manifest-only change — container names now match existing runtime references, no
code edits to the 8 files. (Deriving stack containers from manifests instead of
hardcoded lists remains a north-star follow-up.)
Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
59 lines
1.7 KiB
YAML
59 lines
1.7 KiB
YAML
app:
|
|
id: immich-postgres
|
|
name: Immich Postgres
|
|
version: "14-vectorchord0.4.3-pgvectors0.2.0"
|
|
description: Postgres (pgvecto.rs / vectorchord) backend for Immich.
|
|
|
|
# Container named immich_postgres (underscore) to match the runtime's existing
|
|
# per-app references (lifecycle/health/crash-recovery/config) and serve as the
|
|
# server's DB_HOSTNAME alias. Top-level key → serde(flatten) → extensions →
|
|
# compute_container_name.
|
|
container_name: immich_postgres
|
|
|
|
container:
|
|
image: 146.59.87.168:3000/lfg2025/immich-postgres:14-vectorchord0.4.3-pgvectors0.2.0
|
|
pull_policy: if-not-present
|
|
network: archy-net
|
|
# postgres drops to its own uid (container 999 → host 100998 under rootless),
|
|
# so the data dir must be owned by that mapped uid — mirrors archy-btcpay-db.
|
|
# Verified on .228: the live immich-db is owned 100998. Without this a FRESH
|
|
# install's dir would be service-user-owned and postgres would EACCES.
|
|
data_uid: "100998:100998"
|
|
generated_secrets:
|
|
- name: immich-db-password
|
|
kind: hex32
|
|
secret_env:
|
|
- key: POSTGRES_PASSWORD
|
|
secret_file: immich-db-password
|
|
|
|
dependencies:
|
|
- storage: 40Gi
|
|
|
|
resources:
|
|
memory_limit: 2Gi
|
|
disk_limit: 40Gi
|
|
|
|
security:
|
|
capabilities: [CHOWN, DAC_OVERRIDE, FOWNER, SETGID, SETUID]
|
|
readonly_root: false
|
|
network_policy: isolated
|
|
|
|
ports: []
|
|
|
|
volumes:
|
|
- type: bind
|
|
source: /var/lib/archipelago/immich-db
|
|
target: /var/lib/postgresql/data
|
|
options: [rw]
|
|
|
|
environment:
|
|
- POSTGRES_USER=postgres
|
|
- POSTGRES_DB=immich
|
|
|
|
health_check:
|
|
type: tcp
|
|
endpoint: localhost:5432
|
|
interval: 30s
|
|
timeout: 5s
|
|
retries: 3
|