From 67df61e044859a042b0bac37d8bf7466da37caad Mon Sep 17 00:00:00 2001 From: hsiegeln <37154749+hsiegeln@users.noreply.github.com> Date: Tue, 28 Apr 2026 16:49:34 +0200 Subject: [PATCH] docs: scrub siegeln.net and LAN IPs from customer-facing docs MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Replace personal-infra references with brand-aligned placeholders so the public-facing setup docs no longer leak the user's home lab. - HOWTO.md: cameleer.siegeln.net OIDC example → cameleer.example.com; loader-image default in env-var table → registry.cameleer.io (matches the production default flipped in the previous commit); k3s service-URL table 192.168.50.86 → - ui/README.md: dev-server VITE_API_TARGET example LAN IP → host placeholder - ui/vite.config.ts: api.cameleer.siegeln.net comment → api.cameleer.example.com Out of scope (intentionally kept on internal infra): - ui/package.json dev:remote and generate-api:live LAN IPs (dev-team convenience scripts) - pom.xml, .npmrc, ui/Dockerfile (buildtime registry) - deploy/* manifests (internal k3s) - CLAUDE.md and .claude/rules/cicd.md (handled in the next commit, which also adds the buildtime/public split clarification) Co-Authored-By: Claude Opus 4.7 (1M context) --- HOWTO.md | 12 ++++++------ ui/README.md | 2 +- ui/vite.config.ts | 2 +- 3 files changed, 8 insertions(+), 8 deletions(-) diff --git a/HOWTO.md b/HOWTO.md index be0f8076..cac3f65a 100644 --- a/HOWTO.md +++ b/HOWTO.md @@ -238,7 +238,7 @@ Logto is proxy-aware via `TRUST_PROXY_HEADER=1`. The `LOGTO_ENDPOINT` and `LOGTO - Note the **Client ID** 3. **Create API Resource**: API Resources → Create - Name: `Cameleer Server API` - - Indicator: your API URL (e.g., `https://cameleer.siegeln.net/api`) + - Indicator: your API URL (e.g., `https://cameleer.example.com/api`) - Add permissions: `server:admin`, `server:operator`, `server:viewer` 4. **Create M2M application** (for SaaS platform): Applications → Create → Machine-to-Machine - Name: `Cameleer SaaS` @@ -496,7 +496,7 @@ Key settings in `cameleer-server-app/src/main/resources/application.yml`. All cu | `cameleer.server.runtime.dockernetwork` | `cameleer` | `CAMELEER_SERVER_RUNTIME_DOCKERNETWORK` | Primary Docker network | | `cameleer.server.runtime.dockerruntime` | *(empty = auto)* | `CAMELEER_SERVER_RUNTIME_DOCKERRUNTIME` | Container runtime override. Empty auto-detects gVisor (`runsc`) when registered with the daemon and falls back to the daemon default. Set to e.g. `kata` to force a specific runtime, or `runc` to force the default even if `runsc` is installed. | | `cameleer.server.runtime.jarstoragepath` | `/data/jars` | `CAMELEER_SERVER_RUNTIME_JARSTORAGEPATH` | JAR file storage directory (used by `FilesystemArtifactStore`) | -| `cameleer.server.runtime.loaderimage` | `gitea.siegeln.net/cameleer/cameleer-runtime-loader:latest` | `CAMELEER_SERVER_RUNTIME_LOADERIMAGE` | Init-container image that fetches the JAR via signed URL | +| `cameleer.server.runtime.loaderimage` | `registry.cameleer.io/cameleer/cameleer-runtime-loader:latest` | `CAMELEER_SERVER_RUNTIME_LOADERIMAGE` | Init-container image that fetches the JAR via signed URL | | `cameleer.server.runtime.artifacttokenttlseconds` | `600` | `CAMELEER_SERVER_RUNTIME_ARTIFACTTOKENTTLSECONDS` | TTL (seconds) for HMAC-signed artifact-download URLs | | `cameleer.server.runtime.artifactbaseurl` | *(empty)* | `CAMELEER_SERVER_RUNTIME_ARTIFACTBASEURL` | Base URL the loader uses to reach the server. Blank falls back to `serverurl`, then `http://cameleer-server:8081`. Must be reachable from the loader container's primary Docker network. | | `cameleer.server.runtime.routingmode` | `path` | `CAMELEER_SERVER_RUNTIME_ROUTINGMODE` | `path` or `subdomain` Traefik routing | @@ -591,10 +591,10 @@ cameleer-demo namespace: | Service | URL | |---------|-----| -| Web UI | `http://192.168.50.86:30090` | -| Server API | `http://192.168.50.86:30081/api/v1/health` | -| Swagger UI | `http://192.168.50.86:30081/api/v1/swagger-ui.html` | -| Deploy Demo | `http://192.168.50.86:30092` | +| Web UI | `http://:30090` | +| Server API | `http://:30081/api/v1/health` | +| Swagger UI | `http://:30081/api/v1/swagger-ui.html` | +| Deploy Demo | `http://:30092` | | Logto API | `LOGTO_ENDPOINT` secret (NodePort 30951 direct, or behind reverse proxy) | | Logto Admin | `LOGTO_ADMIN_ENDPOINT` secret (NodePort 30952 direct, or behind reverse proxy) | diff --git a/ui/README.md b/ui/README.md index 65b556dd..793dfd05 100644 --- a/ui/README.md +++ b/ui/README.md @@ -12,7 +12,7 @@ npm run dev By default the dev server proxies `/api/*` to `http://localhost:8081`. To proxy to a remote server instead: ```bash -VITE_API_TARGET=http://192.168.50.86:30081 npm run dev +VITE_API_TARGET=http://your-backend-host:8081 npm run dev ``` No CORS issues — Vite's proxy makes API calls server-side. diff --git a/ui/vite.config.ts b/ui/vite.config.ts index b4e74e8d..933fa93b 100644 --- a/ui/vite.config.ts +++ b/ui/vite.config.ts @@ -2,7 +2,7 @@ import { defineConfig } from 'vite'; import react from '@vitejs/plugin-react'; // Use VITE_API_TARGET to proxy to a remote server, e.g.: -// VITE_API_TARGET=https://api.cameleer.siegeln.net npm run dev +// VITE_API_TARGET=https://api.cameleer.example.com npm run dev const apiTarget = process.env.VITE_API_TARGET || 'http://localhost:8081'; export default defineConfig({