No description
6ee4087dfd
Some checks are pending
Build and Push Docker Image / build (push) Waiting to run
- use included docker-compose.yml for setup
- streamline update process with docker-compose pull
♻️ refactor(docker-compose): use prebuilt image and env_file
- switch to prebuilt GHCR image in docker-compose.yml
- utilize env_file for environment variables
- reorder ports configuration for clarity
|
||
|---|---|---|
| .github/workflows | ||
| app | ||
| .env-example | ||
| .gitignore | ||
| docker-compose.yml | ||
| Dockerfile | ||
| README.md | ||
| requirements.txt | ||
FleetLedger
Self-hosted overview for rented servers (VPS, dedicated, storage, managed). Multi-user, dark-mode first, PWA-ready.
Features
- Server CRUD per user with soft delete/archiving
- Dashboard (costs, expiring contracts) and admin-wide overview
- Map view per user (Leaflet) based on location names
- Optional encrypted storage of management passwords (Fernet)
- Session auth with CSRF protection, admin role
- PWA: manifest, service worker, installable
Stack
- FastAPI, SQLModel, Jinja2
- SQLite (default), Passlib (bcrypt), Cryptography (Fernet)
- Tailwind via CDN, Leaflet for maps
- Uvicorn as ASGI server
Containers and Images
- Public repo:
https://github.com/nocci-sl/fleetledger. - Prebuilt image on GHCR:
ghcr.io/nocci-sl/fleetledger:latest(plus commit-taggedghcr.io/nocci-sl/fleetledger:<git-sha>).- Pull directly with
docker pull ghcr.io/nocci-sl/fleetledger:latest.
- Pull directly with
Quickstart with Docker Compose (prebuilt image)
Use the included docker-compose.yml with the published GHCR image; no local build needed.
cp .env-example .env
# set SESSION_SECRET in .env to a strong random value
docker-compose up -d
SQLite will live on the host in ./data/fleetledger.db.
To update, pull the latest image and recreate:
docker-compose pull
docker-compose up -d
Quickstart with Docker (build locally)
cp .env-example .env
# set SESSION_SECRET in .env
docker build -t fleetledger:local .
mkdir -p data
docker run --rm -p 8000:8000 --env-file .env -v $(pwd)/data:/app/data fleetledger:local
Local development (without Docker)
Requirements: Python 3.12, virtualenv recommended.
python -m venv .venv
source .venv/bin/activate
pip install -r requirements.txt
cp .env-example .env
export SESSION_SECRET="long_random_value"
export SESSION_COOKIE_SECURE=0 # only for local HTTP
uvicorn app.main:app --reload --port 8000
Environment variables
SESSION_SECRET(required): long random string for session signing.SESSION_COOKIE_SECURE(default1): set0only for local HTTP; keep1with HTTPS.DATABASE_PATH(default/app/data/fleetledger.db): SQLite file path; locally e.g../data/fleetledger.db.ENCRYPTION_KEY(optional): Fernet key for encrypted management passwords. Leave empty to disable persistence of these passwords.ALLOW_SELF_REGISTRATION(default0):1allows new self-registrations even if an admin exists;0means only admin can create users.
Security notes
- Always use a strong
SESSION_SECRET; the container refuses to start with a placeholder. - Run behind HTTPS (
SESSION_COOKIE_SECURE=1). - Only store management passwords if
ENCRYPTION_KEYis set. - CSRF protection is enabled for form POSTs; service worker caches assets with versioning.
Data
- SQLite stores data in the file at
DATABASE_PATH. In Docker,./data/on the host is mounted to/app/data/in the container. - Backups: copy the SQLite file in
./data/while the service is stopped.