From e3f4eb4e95118202eff281a94780ec8cccbea4d8 Mon Sep 17 00:00:00 2001
From: Phil <phil@thesatelliteoflove.com>
Date: Mon, 23 Jun 2025 18:06:06 -0600
Subject: [PATCH] fix: update manyfold template to use proper vault variables
 and standardize configuration
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- Fixed manyfold deployment error by updating template to use vault_manyfold.secret_key instead of undefined manyfold_key
- Standardized template to use centralized variables for domains, network, and hairpin configuration
- Added proper OIDC configuration using vault_manyfold.oidc structure

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
---
 roles/docker/templates/manyfold-compose.yml.j2 | 17 +++++++++--------
 1 file changed, 9 insertions(+), 8 deletions(-)

diff --git a/roles/docker/templates/manyfold-compose.yml.j2 b/roles/docker/templates/manyfold-compose.yml.j2
index 13675c9..74d0357 100644
--- a/roles/docker/templates/manyfold-compose.yml.j2
+++ b/roles/docker/templates/manyfold-compose.yml.j2
@@ -12,23 +12,24 @@ services:
       # The container path can be anything; you will need to enter it in the "new library" form.
       - ./models:/models
     environment:
-      SECRET_KEY_BASE: {{manyfold_key}}
+      SECRET_KEY_BASE: {{ vault_manyfold.secret_key }}
       MULTIUSER: enabled 
-      OIDC_CLIENT_ID: {{ manyfold_oidc_client_id }}
-      OIDC_CLIENT_SECRET: {{ manyfold_oidc_client_secret }}
-      OIDC_ISSUER: https://auth.thesatelliteoflove.com/application/o/manyfold/
+      OIDC_CLIENT_ID: {{ vault_manyfold.oidc.client_id }}
+      OIDC_CLIENT_SECRET: {{ vault_manyfold.oidc.client_secret }}
+      OIDC_ISSUER: https://{{ subdomains.auth }}/application/o/manyfold/
       OIDC_NAME: Authentik
-      PUBLIC_HOSTNAME: models.thesatelliteoflove.com
+      PUBLIC_HOSTNAME: {{ subdomains.models }}
       MAX_FILE_UPLOAD_SIZE: 5368709120
       PUID: 1000
       PGID: 1000
     extra_hosts:
-      - 'auth.thesatelliteoflove.com:172.20.0.5'
+      - "{{ subdomains.auth }}:{{ docker.hairpin_ip }}"
     labels:
       glance.name: Manyfold
       glance.icon: si:open3d
-      glance.url: https://models.thesatelliteoflove.com/
+      glance.url: https://{{ subdomains.models }}/
       glance.description: STL Storage
+      mag37.dockcheck.update: true
     restart: unless-stopped
     # Optional, but recommended for better security
     security_opt:
@@ -44,4 +45,4 @@ services:
 networks:
   default:
     external: true
-    name: lava
\ No newline at end of file
+    name: "{{ docker.network_name }}"
\ No newline at end of file