blob: 894fc016905ea215552c9ffec84cbcb9286151f5 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
|
#!/usr/bin/env bash
set -euo pipefail
# Force GPG to use terminal-based pinentry (required for SSH sessions)
export GPG_TTY=$(tty)
SCRIPT_DIR="$(cd "$(dirname "$0")" && pwd)"
PROJECT_DIR="$(dirname "$SCRIPT_DIR")"
# Load secrets from gopass
OPENCODE_API_KEY="$(gopass show -o projects/ai-api/opencode_go_key)"
# Pass host user identity so the container runs as the same UID/GID
export HOST_UID="$(id -u)"
export HOST_GID="$(id -g)"
export HOST_USER="$(whoami)"
# Start API service only
sudo -E OPENCODE_API_KEY="$OPENCODE_API_KEY" \
HOST_UID="$HOST_UID" HOST_GID="$HOST_GID" HOST_USER="$HOST_USER" \
docker compose -f "$PROJECT_DIR/docker-compose.yml" up api "$@"
|