feat(client): add runtime-config startup injection for single-image multi-environment deployment

Author: Diogo-Ferraz

.github/workflows/docker-publish.yml

@@ -31,9 +31,10 @@ jobs:
           context: .
           file: Dockerfile
           build-args: |
-            BUILD_CONFIGURATION=docker
+            BUILD_CONFIGURATION=docker-local
           platforms: linux/amd64,linux/arm64
           push: true
           tags: |
             diogopro/taskmanagement-client:latest
+            diogopro/taskmanagement-client:localhost
             diogopro/taskmanagement-client:sha-${{ github.sha }}

Dockerfile

@@ -7,13 +7,14 @@ RUN npm ci
 
 COPY . .
 
-ARG BUILD_CONFIGURATION=docker
+ARG BUILD_CONFIGURATION=docker-local
 RUN npm run build -- --configuration=${BUILD_CONFIGURATION}
 
 FROM nginx:1.27-alpine AS runtime
 
 COPY nginx.conf /etc/nginx/conf.d/default.conf
 COPY --from=build /app/dist/task-management-client/browser /usr/share/nginx/html
+COPY docker/docker-entrypoint.d/40-runtime-config.sh /docker-entrypoint.d/40-runtime-config.sh
 
 EXPOSE 80
 

angular.json

@@ -78,7 +78,29 @@
               "fileReplacements": [
                 {
                   "replace": "src/environments/environment.ts",
-                  "with": "src/environments/environment.docker.ts"
+                  "with": "src/environments/environment.docker.prod.ts"
+                }
+              ]
+            },
+            "docker-local": {
+              "optimization": false,
+              "extractLicenses": false,
+              "sourceMap": false,
+              "fileReplacements": [
+                {
+                  "replace": "src/environments/environment.ts",
+                  "with": "src/environments/environment.docker.local.ts"
+                }
+              ]
+            },
+            "docker-prod": {
+              "optimization": false,
+              "extractLicenses": false,
+              "sourceMap": false,
+              "fileReplacements": [
+                {
+                  "replace": "src/environments/environment.ts",
+                  "with": "src/environments/environment.docker.prod.ts"
                 }
               ]
             }

docker/docker-entrypoint.d/40-runtime-config.sh

@@ -0,0 +1,21 @@
+#!/usr/bin/env sh
+set -eu
+
+APP_BASE_URL="${APP_BASE_URL:-https://app.localhost}"
+API_BASE_URL="${API_BASE_URL:-https://api.localhost}"
+AUTH_AUTHORITY="${AUTH_AUTHORITY:-${AUTH_ISSUER:-https://auth.localhost}}"
+
+APP_ALLOWED_HOST="${APP_ALLOWED_HOST:-$(printf '%s' "$APP_BASE_URL" | sed -E 's#^https?://([^/]+).*$#\1#')}"
+
+TEMPLATE_PATH="/usr/share/nginx/html/assets/runtime-config.template.json"
+OUTPUT_PATH="/usr/share/nginx/html/assets/runtime-config.json"
+
+if [ -f "$TEMPLATE_PATH" ]; then
+  sed \
+    -e "s#__APP_BASE_URL__#${APP_BASE_URL}#g" \
+    -e "s#__API_BASE_URL__#${API_BASE_URL}#g" \
+    -e "s#__AUTH_API_BASE_URL__#${AUTH_AUTHORITY}#g" \
+    -e "s#__AUTH_AUTHORITY__#${AUTH_AUTHORITY}#g" \
+    -e "s#__APP_ALLOWED_HOST__#${APP_ALLOWED_HOST}#g" \
+    "$TEMPLATE_PATH" > "$OUTPUT_PATH"
+fi

src/app/app.config.ts

@@ -7,20 +7,25 @@ import { provideAnimations } from '@angular/platform-browser/animations';
 import { ConfirmationService, MessageService } from 'primeng/api';
 import { environment } from '../environments/environment';
 import { APP_ENVIRONMENT } from './core/config/app-environment.token';
+import { AppEnvironment } from './core/config/app-environment';
 import { authInterceptor } from './core/auth/interceptors/auth.interceptor';
 import { problemDetailsInterceptor } from './core/http/interceptors/problem-details.interceptor';
 
-export const appConfig: ApplicationConfig = {
-  providers: [
-    provideZoneChangeDetection({ eventCoalescing: true }),
-    provideRouter(routes),
-    provideHttpClient(withInterceptors([authInterceptor, problemDetailsInterceptor])),
-    provideAnimations(),
-    ConfirmationService,
-    MessageService,
-    {
-      provide: APP_ENVIRONMENT,
-      useValue: environment
-    }
-  ]
-};
+export function buildAppConfig(appEnvironment: AppEnvironment): ApplicationConfig {
+  return {
+    providers: [
+      provideZoneChangeDetection({ eventCoalescing: true }),
+      provideRouter(routes),
+      provideHttpClient(withInterceptors([authInterceptor, problemDetailsInterceptor])),
+      provideAnimations(),
+      ConfirmationService,
+      MessageService,
+      {
+        provide: APP_ENVIRONMENT,
+        useValue: appEnvironment
+      }
+    ]
+  };
+}
+
+export const appConfig: ApplicationConfig = buildAppConfig(environment);

src/app/core/config/runtime-environment.loader.ts

@@ -0,0 +1,62 @@
+import { AppEnvironment } from './app-environment';
+
+interface RuntimeEnvironmentOverrides {
+  production?: boolean;
+  apiBaseUrl?: string;
+  authApiBaseUrl?: string;
+  activityHubPath?: string;
+  debugAuth?: {
+    enabled?: boolean;
+    allowedHosts?: string[];
+  };
+  auth?: {
+    authority?: string;
+    clientId?: string;
+    redirectUri?: string;
+    postLogoutRedirectUri?: string;
+    responseType?: 'code';
+    scopes?: string[];
+  };
+}
+
+export async function loadRuntimeEnvironment(baseEnvironment: AppEnvironment): Promise<AppEnvironment> {
+  try {
+    const response = await fetch('/assets/runtime-config.json', { cache: 'no-store' });
+    if (!response.ok) {
+      return baseEnvironment;
+    }
+
+    const overrides = (await response.json()) as RuntimeEnvironmentOverrides;
+    return mergeEnvironment(baseEnvironment, overrides);
+  } catch {
+    return baseEnvironment;
+  }
+}
+
+function mergeEnvironment(base: AppEnvironment, overrides: RuntimeEnvironmentOverrides): AppEnvironment {
+  return {
+    production: typeof overrides.production === 'boolean' ? overrides.production : base.production,
+    apiBaseUrl: normalizeString(overrides.apiBaseUrl, base.apiBaseUrl),
+    authApiBaseUrl: normalizeString(overrides.authApiBaseUrl, base.authApiBaseUrl),
+    activityHubPath: normalizeString(overrides.activityHubPath, base.activityHubPath),
+    debugAuth: {
+      enabled: typeof overrides.debugAuth?.enabled === 'boolean' ? overrides.debugAuth.enabled : base.debugAuth.enabled,
+      allowedHosts:
+        Array.isArray(overrides.debugAuth?.allowedHosts) && overrides.debugAuth.allowedHosts.length > 0
+          ? overrides.debugAuth.allowedHosts
+          : base.debugAuth.allowedHosts
+    },
+    auth: {
+      authority: normalizeString(overrides.auth?.authority, base.auth.authority),
+      clientId: normalizeString(overrides.auth?.clientId, base.auth.clientId),
+      redirectUri: normalizeString(overrides.auth?.redirectUri, base.auth.redirectUri),
+      postLogoutRedirectUri: normalizeString(overrides.auth?.postLogoutRedirectUri, base.auth.postLogoutRedirectUri),
+      responseType: overrides.auth?.responseType ?? base.auth.responseType,
+      scopes: Array.isArray(overrides.auth?.scopes) && overrides.auth.scopes.length > 0 ? overrides.auth.scopes : base.auth.scopes
+    }
+  };
+}
+
+function normalizeString(value: string | undefined, fallback: string): string {
+  return typeof value === 'string' && value.trim().length > 0 ? value : fallback;
+}

src/assets/runtime-config.template.json

@@ -0,0 +1,18 @@
+{
+  "production": false,
+  "apiBaseUrl": "__API_BASE_URL__",
+  "authApiBaseUrl": "__AUTH_API_BASE_URL__",
+  "activityHubPath": "/hubs/activity",
+  "debugAuth": {
+    "enabled": false,
+    "allowedHosts": ["__APP_ALLOWED_HOST__"]
+  },
+  "auth": {
+    "authority": "__AUTH_AUTHORITY__",
+    "clientId": "angular-client",
+    "redirectUri": "__APP_BASE_URL__/callback",
+    "postLogoutRedirectUri": "__APP_BASE_URL__",
+    "responseType": "code",
+    "scopes": ["openid", "profile", "email", "roles", "api1"]
+  }
+}

src/environments/environment.docker.local.ts

@@ -0,0 +1,20 @@
+import { AppEnvironment } from '../app/core/config/app-environment';
+
+export const environment: AppEnvironment = {
+  production: false,
+  apiBaseUrl: 'https://api.localhost',
+  authApiBaseUrl: 'https://auth.localhost',
+  activityHubPath: '/hubs/activity',
+  debugAuth: {
+    enabled: false,
+    allowedHosts: ['app.localhost']
+  },
+  auth: {
+    authority: 'https://auth.localhost',
+    clientId: 'angular-client',
+    redirectUri: 'https://app.localhost/callback',
+    postLogoutRedirectUri: 'https://app.localhost',
+    responseType: 'code',
+    scopes: ['openid', 'profile', 'email', 'roles', 'api1']
+  }
+};

src/environments/environment.docker.prod.ts

@@ -0,0 +1,20 @@
+import { AppEnvironment } from '../app/core/config/app-environment';
+
+export const environment: AppEnvironment = {
+  production: false,
+  apiBaseUrl: 'https://api.144.24.250.76.nip.io',
+  authApiBaseUrl: 'https://auth.144.24.250.76.nip.io',
+  activityHubPath: '/hubs/activity',
+  debugAuth: {
+    enabled: false,
+    allowedHosts: ['app.144.24.250.76.nip.io']
+  },
+  auth: {
+    authority: 'https://auth.144.24.250.76.nip.io',
+    clientId: 'angular-client',
+    redirectUri: 'https://app.144.24.250.76.nip.io/callback',
+    postLogoutRedirectUri: 'https://app.144.24.250.76.nip.io',
+    responseType: 'code',
+    scopes: ['openid', 'profile', 'email', 'roles', 'api1']
+  }
+};

src/main.ts

@@ -1,6 +1,12 @@
 import { bootstrapApplication } from '@angular/platform-browser';
-import { appConfig } from './app/app.config';
+import { buildAppConfig } from './app/app.config';
 import { AppComponent } from './app/app.component';
+import { environment } from './environments/environment';
+import { loadRuntimeEnvironment } from './app/core/config/runtime-environment.loader';
 
-bootstrapApplication(AppComponent, appConfig)
-  .catch((err) => console.error(err));
+async function bootstrap(): Promise<void> {
+  const runtimeEnvironment = await loadRuntimeEnvironment(environment);
+  await bootstrapApplication(AppComponent, buildAppConfig(runtimeEnvironment));
+}
+
+void bootstrap().catch((err) => console.error(err));