Skip to content

Create OCP-friendly deployment #105

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
djgalloway wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Create OCP-friendly deployment #105

djgalloway wants to merge 1 commit into from

Conversation

@djgalloway
Copy link

@djgalloway djgalloway commented Dec 13, 2025

pulpito-ng does not run correctly on OpenShift out of the box. OpenShift runs containers as non-root and enforces Security Context Constraints, which causes the existing Node-based runtime to fail at startup due to filesystem ownership changes.

This change switches pulpito-ng to a safer deployment model:

  • Build the React UI as static files during image build
  • Serve the UI with an unprivileged nginx runtime
  • Add nginx fallback routing so deep links (e.g. /runs/) work
  • Avoid any runtime chown or root assumptions

These files make it possible to build and deploy pulpito-ng directly from git on OpenShift without requiring privileged permissions or runtime workarounds.

@netlify
Copy link

netlify bot commented Dec 13, 2025
edited
Loading

Deploy Preview for pulpito ready!

Name Link
🔨 Latest commit 7012532
🔍 Latest deploy log https://app.netlify.com/projects/pulpito/deploys/693db4996564030008798dbe
😎 Deploy Preview https://deploy-preview-105--pulpito.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@djgalloway
Create OCP-friendly deployment files
7012532 
pulpito-ng does not run correctly on OpenShift out of the box.
OpenShift runs containers as non-root and enforces Security Context
Constraints, which causes the existing Node-based runtime to fail at
startup due to filesystem ownership changes.

This change switches pulpito-ng to a safer deployment model:

- Build the React UI as static files during image build
- Serve the UI with an unprivileged nginx runtime
- Add nginx fallback routing so deep links (e.g. /runs/<id>) work
- Avoid any runtime chown or root assumptions

These files make it possible to build and deploy pulpito-ng directly
from git on OpenShift without requiring privileged permissions or
runtime workarounds.

Signed-off-by: David Galloway <[email protected]>
@djgalloway
Copy link
Author

djgalloway commented Dec 14, 2025

Note to self when this merges: run oc -n pulpito start-build pulpito-ng --follow --commit=main in Sepia

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@djgalloway @zmc