dragonflight/docker-compose.yml

services:
  db:
    image: postgres:16
    environment:
      POSTGRES_DB: ${POSTGRES_DB}
      POSTGRES_USER: ${POSTGRES_USER}
      POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}
    ports:
      - "${PORT_DB:-5432}:5432"
    volumes:
      - postgres_data:/var/lib/postgresql/data
      - ./services/mam-api/src/db/schema.sql:/docker-entrypoint-initdb.d/001-schema.sql:ro
    healthcheck:
      test: ["CMD-SHELL", "pg_isready -U ${POSTGRES_USER}"]
      interval: 5s
      timeout: 5s
      retries: 5
    networks:
      - wild-dragon

  queue:
    image: redis:7-alpine
    ports:
      - "${PORT_REDIS:-6379}:6379"
    volumes:
      - redis_data:/data
    networks:
      - wild-dragon

  mam-api:
    build: ./services/mam-api
    depends_on:
      db:
        condition: service_healthy
      queue:
        condition: service_started
    ports:
      - "${PORT_MAM_API:-7432}:3000"
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
      - /mnt/NVME/MAM/wild-dragon-live:/live
      - /mnt/NVME/MAM/wild-dragon-growing:/growing
      - /mnt/NVME/MAM/sdk:/sdk
      - /dev/shm:/dev/shm
      - /run/dbus:/run/dbus
      - /run/systemd:/run/systemd
      - /usr/bin/nvidia-smi:/usr/bin/nvidia-smi:ro
    environment:
      DATABASE_URL: ${DATABASE_URL}
      REDIS_URL: ${REDIS_URL}
      S3_ENDPOINT: ${S3_ENDPOINT}
      S3_BUCKET: ${S3_BUCKET}
      S3_ACCESS_KEY: ${S3_ACCESS_KEY}
      S3_SECRET_KEY: ${S3_SECRET_KEY}
      S3_REGION: ${S3_REGION:-us-east-1}
      SESSION_SECRET: ${SESSION_SECRET}
      AUTH_ENABLED: ${AUTH_ENABLED:-false}
      SESSION_COOKIE_SECURE: ${SESSION_COOKIE_SECURE:-}
      ADMIN_BOOTSTRAP_USER: ${ADMIN_BOOTSTRAP_USER:-}
      ADMIN_BOOTSTRAP_PASSWORD: ${ADMIN_BOOTSTRAP_PASSWORD:-}
      ADMIN_BOOTSTRAP_DISPLAY_NAME: ${ADMIN_BOOTSTRAP_DISPLAY_NAME:-}
      ADMIN_BOOTSTRAP_RESET: ${ADMIN_BOOTSTRAP_RESET:-}
      DOCKER_NETWORK: wild-dragon_wild-dragon
      NODE_IP: ${NODE_IP}
      NODE_HOSTNAME: ${NODE_HOSTNAME:-}
    deploy:
      resources:
        reservations:
          devices:
            - driver: nvidia
              count: all
              capabilities: [gpu]
    networks:
      - wild-dragon

  capture:
    build: ./services/capture
    depends_on:
      - mam-api
    ports:
      - "${PORT_CAPTURE:-7433}:3001"
      - "${PORT_RTMP:-1935}:1935"         # RTMP ingest (listener mode)
      - "${PORT_SRT:-9000}:9000/udp"      # SRT ingest (listener mode)
    privileged: true
    environment:
      S3_ENDPOINT: ${S3_ENDPOINT}
      S3_BUCKET: ${S3_BUCKET}
      S3_ACCESS_KEY: ${S3_ACCESS_KEY}
      S3_SECRET_KEY: ${S3_SECRET_KEY}
      S3_REGION: ${S3_REGION:-us-east-1}
      MAM_API_URL: ${MAM_API_URL:-http://mam-api:3000}
    volumes:
      - /mnt/NVME/MAM/wild-dragon-live:/live
      - /dev/shm:/dev/shm
      - /run/dbus:/run/dbus
      - /run/systemd:/run/systemd
    networks:
      - wild-dragon

  worker:
    build: ./services/worker
    depends_on:
      - queue
      - db
    environment:
      REDIS_URL: ${REDIS_URL}
      DATABASE_URL: ${DATABASE_URL}
      S3_ENDPOINT: ${S3_ENDPOINT}
      S3_BUCKET: ${S3_BUCKET}
      S3_ACCESS_KEY: ${S3_ACCESS_KEY}
      S3_SECRET_KEY: ${S3_SECRET_KEY}
      S3_REGION: ${S3_REGION:-us-east-1}
      GROWING_PATH: /growing
    volumes:
      - /mnt/NVME/MAM/wild-dragon-growing:/growing
    networks:
      - wild-dragon

  web-ui:
    build: ./services/web-ui
    ports:
      - "${PORT_WEB_UI:-7434}:80"
    volumes:
      - /mnt/NVME/MAM/wild-dragon-live:/live
      - /dev/shm:/dev/shm
      - /run/dbus:/run/dbus
      - /run/systemd:/run/systemd
    networks:
      - wild-dragon

volumes:
  postgres_data:
  redis_data:

networks:
  wild-dragon:
    driver: bridge
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`services:`
			`db:`
			`image: postgres:16`
			`environment:`
			`POSTGRES_DB: ${POSTGRES_DB}`
			`POSTGRES_USER: ${POSTGRES_USER}`
			`POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}`
feat(cluster): expose db/redis ports for worker-node connectivity 2026-05-21 21:23:23 -04:00			`ports:`
			`- "${PORT_DB:-5432}:5432"`
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`volumes:`
			`- postgres_data:/var/lib/postgresql/data`
			`- ./services/mam-api/src/db/schema.sql:/docker-entrypoint-initdb.d/001-schema.sql:ro`
			`healthcheck:`
			`test: ["CMD-SHELL", "pg_isready -U ${POSTGRES_USER}"]`
			`interval: 5s`
			`timeout: 5s`
			`retries: 5`
			`networks:`
			`- wild-dragon`

			`queue:`
			`image: redis:7-alpine`
feat(cluster): expose db/redis ports for worker-node connectivity 2026-05-21 21:23:23 -04:00			`ports:`
			`- "${PORT_REDIS:-6379}:6379"`
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`volumes:`
			`- redis_data:/data`
			`networks:`
			`- wild-dragon`

			`mam-api:`
			`build: ./services/mam-api`
			`depends_on:`
			`db:`
			`condition: service_healthy`
			`queue:`
			`condition: service_started`
			`ports:`
chore: use env-var port bindings — no hardcoded host ports All host ports are now configurable via .env variables with sensible defaults. This prevents collisions when deploying alongside existing services on TrueNAS or any other host. 2026-05-16 08:27:25 -04:00			`- "${PORT_MAM_API:-7432}:3000"`
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`volumes:`
			`- /var/run/docker.sock:/var/run/docker.sock`
feat(growing-files): Phase 1 - live HLS preview during recording While a recorder is running, the capture container tees an HLS stream into /live/<assetId>/ alongside the ProRes master upload. The asset row is pre-created at recorder start with status='live' so the clip appears in the library immediately. /api/v1/assets/:id/stream returns the HLS playlist URL until recording stops, then proxy. * docker-compose: shared wild-dragon-live mount on api/capture/web-ui * migration 001-add-live-status: idempotent ALTER TYPE for asset_status * mam-api: runMigrations() on boot; recorders.js pre-creates live asset + passes ASSET_ID; assets.js POST upserts on existing live row instead of inserting a duplicate, and stream route returns HLS for live assets * capture: parallel HLS ffmpeg into /live/<assetId>/; ASSET_ID env * web-ui: nginx serves /live/, preview.js loads hls.js, LIVE badge added 2026-05-18 07:29:50 -04:00			`- /mnt/NVME/MAM/wild-dragon-live:/live`
feat: live HLS preview, proxy worker fixes, Settings tabs, growing-files + Premier panel - worker/proxy: scale-to-even filter, analyzeduration 100M, skip images, hasAudio - worker/promotion: SMB landing zone -> S3 on idle, queues proxy job, status='ready' - web-ui screens-ingest: HlsPreview component replaces fake LiveStrip/FauxFrame - web-ui screens-admin: functional Settings tabs (S3, GPU, Growing, SDI, AMPP) - mam-api /settings/growing: GET/PUT growing-files config - mam-api /assets/:id/live-path: SMB UNC/POSIX path for live growing assets - capture-manager: GROWING_ENABLED -> write hires to /growing instead of S3 stream - recorders.js: pass GROWING_ENABLED to capture container, bind /growing mount - docker-compose: mount /mnt/NVME/MAM/wild-dragon-growing on mam-api + worker - premiere-plugin: Mount Live button, Relink-to-HiRes, live->ready status poll 2026-05-22 19:12:53 -04:00			`- /mnt/NVME/MAM/wild-dragon-growing:/growing`
feat: SDK deployment UI, proxy encoding global settings, S3 env fallback - Settings: drop AMPP tab, rename GPU/Transcoding → Proxy encoding with explicit 'applied to every ingested file' wording, expose CPU codec/preset options when GPU is off - New Capture SDKs tab (Settings): upload Blackmagic / AJA / Deltacast SDK archives (.zip / .tar.gz) staged to /sdk/<vendor>/ inside mam-api; BMD is fully wired into the FFmpeg build pipeline, AJA + Deltacast staging-only pending FFmpeg patches - mam-api: new /api/v1/sdk routes (multer upload, extract, list, delete); Dockerfile gets unzip+tar; docker-compose mounts /mnt/NVME/MAM/sdk:/sdk - proxy worker now reads proxy-encoding settings from DB on every job, builds args for libx264 / NVENC / VAAPI, falls back to libx264 on hardware-encode failure - settings GET /s3 falls back to S3_* env vars when DB is empty so the UI reflects what's actually wired (fixes 'not configured' false alarm) 2026-05-22 22:58:32 -04:00			`- /mnt/NVME/MAM/sdk:/sdk`
capture: custom FFmpeg 7.1 build with DeckLink + D-Bus mounts + SDI deinterlace Dockerfile is now a two-stage build that compiles FFmpeg from source with --enable-decklink against the Blackmagic SDK 16.x headers in services/capture/sdk/ (operator-supplied, gitignored). build-with-decklink.sh + patch_decklink.py drive the build. docker-compose.yml mounts /dev/shm, /run/dbus, /run/systemd into mam-api, capture, web-ui so the BMD runtime can talk to the host. capture-manager.js wraps SDI sources with -vf yadif=mode=1 (deinterlace). recorders.html defaults to SDI source type now that we have a working DeckLink path. 2026-05-21 19:57:22 -04:00			`- /dev/shm:/dev/shm`
			`- /run/dbus:/run/dbus`
			`- /run/systemd:/run/systemd`
mam-api: mount host nvidia-smi into container for GPU detection 2026-05-20 19:18:03 -04:00			`- /usr/bin/nvidia-smi:/usr/bin/nvidia-smi:ro`
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`environment:`
			`DATABASE_URL: ${DATABASE_URL}`
			`REDIS_URL: ${REDIS_URL}`
			`S3_ENDPOINT: ${S3_ENDPOINT}`
			`S3_BUCKET: ${S3_BUCKET}`
			`S3_ACCESS_KEY: ${S3_ACCESS_KEY}`
			`S3_SECRET_KEY: ${S3_SECRET_KEY}`
fix(infra+workers): S3 creds, ffprobe, BullMQ awaits, thumbnail seek, bin optional, docker-compose vars, jobs Redis, recorders stop codes: docker-compose.yml 2026-05-16 00:29:46 -04:00			`S3_REGION: ${S3_REGION:-us-east-1}`
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`SESSION_SECRET: ${SESSION_SECRET}`
fix(infra+workers): S3 creds, ffprobe, BullMQ awaits, thumbnail seek, bin optional, docker-compose vars, jobs Redis, recorders stop codes: docker-compose.yml 2026-05-16 00:29:46 -04:00			`AUTH_ENABLED: ${AUTH_ENABLED:-false}`
auth: top-to-bottom rework — local accounts, RBAC + client tag, audit log, env-bootstrap Scope (locked in via planning Q&A): - Identity: local accounts only (PG users table) + existing bearer tokens for headless callers. - Transport: httpOnly cookie session for browser, Bearer for API. - RBAC: admin / editor / viewer roles, plus an orthogonal is_client flag for external (agency, talent, customer) accounts. - Bootstrap: ADMIN_BOOTSTRAP_USER + ADMIN_BOOTSTRAP_PASSWORD env seed the first admin on a clean install. Set ADMIN_BOOTSTRAP_RESET to force-reset the named user (break-glass). - Rate limit: in-memory, 10 fails per 15min per (IP, username). - Password policy: \u22658 chars, mixed case, digit, symbol; small blocklist of common passwords; cannot equal username. - Self-service: change own display name + password. Everything else (role, is_client, other-user mgmt) is admin only. - Audit log: append-only table, indexed by actor + event_type + created_at, populated by every auth/admin event. Files added: - services/mam-api/src/db/migrations/022-auth-rework.sql users.is_client + last_login_at + failed_attempts; audit_log table with FK to users (ON DELETE SET NULL). - services/mam-api/src/middleware/audit.js Fire-and-forget audit() helper. Caller never awaits, failure logs but never throws — auditing cannot break the request that triggered it. - services/mam-api/src/middleware/passwordPolicy.js Shared checkPassword(pw, { username }) used by setup, user create/update, and self-service password change. - services/mam-api/src/tasks/bootstrapAdmin.js Runs after migrations. No-ops unless ADMIN_BOOTSTRAP_USER + ADMIN_BOOTSTRAP_PASSWORD are set AND (users table empty OR ADMIN_BOOTSTRAP_RESET=true). - services/mam-api/src/routes/audit.js Admin-only GET /audit (paginated, filter by event_type / actor / target / date) and GET /audit/event-types. - services/web-ui/public/modal-account-settings.jsx Profile + Password tabs. Triggered by sidebar user button. Files rewritten: - services/mam-api/src/routes/auth.js - POST /login: regenerate(), no manual save(); audit success/ fail/lockout; updates last_login_at + failed_attempts. - POST /logout: destroys session, audits logout. - GET /me: returns is_client + last_login_at. Synthetic admin when AUTH_ENABLED=false. - GET /setup-status: drives login.html UI state. - POST /setup: blocked once any user exists; password policy. - POST /password: self-service. Requires current pw, runs policy, audits, invalidates other sessions implicitly via users.js if changed by admin. - PATCH /me: self-service display_name update. - services/mam-api/src/routes/users.js - is_client field in create/update/list/get. - Guardrails: cannot delete or demote last admin, cannot delete self, admins cannot be flagged is_client. - Password change invalidates all sessions for that user (DELETE FROM sessions WHERE sess->>'userId' = id). - Audit on every mutation. - Password policy enforced. - services/mam-api/src/middleware/auth.js - requireAuth now exposes req.user.is_client. - New requireRole(["admin","editor"], { rejectClients: true }) helper. Applied to cluster, sdk, capture routes (infra). - Synthetic user when AUTH_ENABLED=false has is_client=false. - services/mam-api/src/index.js - Loads bootstrap admin after migrations. - Wires /api/v1/audit. - Cleans up an earlier comment block. - services/web-ui/public/login.html - Password hint added next to setup-mode password field. - services/web-ui/public/shell.jsx - Sidebar user footer is a button that opens AccountSettings. - CLIENT badge next to role when is_client=true. - Nav filters: clients lose ingest tree + jobs + editor; viewers lose ingest + editor; only admins see the Admin section. Power button hidden when synthetic user. - services/web-ui/public/screens-admin.jsx - Users table: new Client column with inline toggle. - InviteUserModal: Client checkbox + password hint, gated off when role=admin. - Last login column replaces Created in primary view. - CSV export includes client + last_login. - services/web-ui/public/data.jsx - ZAMPP_DATA.ME carries is_client + display_name. - services/web-ui/public/index.html - Loads dist/modal-account-settings.js. - services/web-ui/public/styles-rest.css - .user-row grid widened to 6 columns. - docker-compose.yml - Plumbs SESSION_COOKIE_SECURE + ADMIN_BOOTSTRAP_* env vars. Deploy: cd /opt/wild-dragon git pull origin main # In .env: # AUTH_ENABLED=true # SESSION_SECRET=<openssl rand -hex 48> # ADMIN_BOOTSTRAP_USER=admin # ADMIN_BOOTSTRAP_PASSWORD=<strong> docker compose build mam-api web-ui docker compose up -d --force-recreate --no-deps mam-api web-ui 2026-05-26 23:21:07 -04:00			`SESSION_COOKIE_SECURE: ${SESSION_COOKIE_SECURE:-}`
			`ADMIN_BOOTSTRAP_USER: ${ADMIN_BOOTSTRAP_USER:-}`
			`ADMIN_BOOTSTRAP_PASSWORD: ${ADMIN_BOOTSTRAP_PASSWORD:-}`
			`ADMIN_BOOTSTRAP_DISPLAY_NAME: ${ADMIN_BOOTSTRAP_DISPLAY_NAME:-}`
			`ADMIN_BOOTSTRAP_RESET: ${ADMIN_BOOTSTRAP_RESET:-}`
Phase 2: docker-compose.yml 2026-04-07 22:05:38 -04:00			`DOCKER_NETWORK: wild-dragon_wild-dragon`
mam-api: add NODE_IP env passthrough and NVIDIA GPU device reservation 2026-05-20 18:59:55 -04:00			`NODE_IP: ${NODE_IP}`
cluster: stable hostname for mam-api, jq-based smoke test mam-api self-heartbeat now reads NODE_HOSTNAME so primary rows survive container restarts instead of resurrecting with the random container ID. test-cluster.sh rewritten to use jq (the python f-strings had a parse bug that silently passed the IP check) and limited the docker-bridge alarm to 172.17.x since the user LAN occupies 172.18.0.0/16. 2026-05-21 07:50:52 -04:00			`NODE_HOSTNAME: ${NODE_HOSTNAME:-}`
mam-api: add NODE_IP env passthrough and NVIDIA GPU device reservation 2026-05-20 18:59:55 -04:00			`deploy:`
			`resources:`
			`reservations:`
			`devices:`
			`- driver: nvidia`
			`count: all`
			`capabilities: [gpu]`
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`networks:`
			`- wild-dragon`

			`capture:`
			`build: ./services/capture`
			`depends_on:`
Phase 2: docker-compose.yml 2026-04-07 22:05:38 -04:00			`- mam-api`
			`ports:`
chore: use env-var port bindings — no hardcoded host ports All host ports are now configurable via .env variables with sensible defaults. This prevents collisions when deploying alongside existing services on TrueNAS or any other host. 2026-05-16 08:27:25 -04:00			`- "${PORT_CAPTURE:-7433}:3001"`
			`- "${PORT_RTMP:-1935}:1935" # RTMP ingest (listener mode)`
			`- "${PORT_SRT:-9000}:9000/udp" # SRT ingest (listener mode)`
Phase 2: docker-compose.yml 2026-04-07 22:05:38 -04:00			`privileged: true`
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`environment:`
			`S3_ENDPOINT: ${S3_ENDPOINT}`
			`S3_BUCKET: ${S3_BUCKET}`
			`S3_ACCESS_KEY: ${S3_ACCESS_KEY}`
			`S3_SECRET_KEY: ${S3_SECRET_KEY}`
fix(infra+workers): S3 creds, ffprobe, BullMQ awaits, thumbnail seek, bin optional, docker-compose vars, jobs Redis, recorders stop codes: docker-compose.yml 2026-05-16 00:29:46 -04:00			`S3_REGION: ${S3_REGION:-us-east-1}`
Fix docker-compose.yml: add default for MAM_API_URL in capture service 2026-05-16 00:47:01 -04:00			`MAM_API_URL: ${MAM_API_URL:-http://mam-api:3000}`
feat(growing-files): Phase 1 - live HLS preview during recording While a recorder is running, the capture container tees an HLS stream into /live/<assetId>/ alongside the ProRes master upload. The asset row is pre-created at recorder start with status='live' so the clip appears in the library immediately. /api/v1/assets/:id/stream returns the HLS playlist URL until recording stops, then proxy. * docker-compose: shared wild-dragon-live mount on api/capture/web-ui * migration 001-add-live-status: idempotent ALTER TYPE for asset_status * mam-api: runMigrations() on boot; recorders.js pre-creates live asset + passes ASSET_ID; assets.js POST upserts on existing live row instead of inserting a duplicate, and stream route returns HLS for live assets * capture: parallel HLS ffmpeg into /live/<assetId>/; ASSET_ID env * web-ui: nginx serves /live/, preview.js loads hls.js, LIVE badge added 2026-05-18 07:29:50 -04:00			`volumes:`
			`- /mnt/NVME/MAM/wild-dragon-live:/live`
capture: custom FFmpeg 7.1 build with DeckLink + D-Bus mounts + SDI deinterlace Dockerfile is now a two-stage build that compiles FFmpeg from source with --enable-decklink against the Blackmagic SDK 16.x headers in services/capture/sdk/ (operator-supplied, gitignored). build-with-decklink.sh + patch_decklink.py drive the build. docker-compose.yml mounts /dev/shm, /run/dbus, /run/systemd into mam-api, capture, web-ui so the BMD runtime can talk to the host. capture-manager.js wraps SDI sources with -vf yadif=mode=1 (deinterlace). recorders.html defaults to SDI source type now that we have a working DeckLink path. 2026-05-21 19:57:22 -04:00			`- /dev/shm:/dev/shm`
			`- /run/dbus:/run/dbus`
			`- /run/systemd:/run/systemd`
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`networks:`
			`- wild-dragon`

			`worker:`
			`build: ./services/worker`
			`depends_on:`
Phase 2: docker-compose.yml 2026-04-07 22:05:38 -04:00			`- queue`
			`- db`
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`environment:`
Phase 2: docker-compose.yml 2026-04-07 22:05:38 -04:00			`REDIS_URL: ${REDIS_URL}`
			`DATABASE_URL: ${DATABASE_URL}`
			`S3_ENDPOINT: ${S3_ENDPOINT}`
			`S3_BUCKET: ${S3_BUCKET}`
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`S3_ACCESS_KEY: ${S3_ACCESS_KEY}`
			`S3_SECRET_KEY: ${S3_SECRET_KEY}`
fix(infra+workers): S3 creds, ffprobe, BullMQ awaits, thumbnail seek, bin optional, docker-compose vars, jobs Redis, recorders stop codes: docker-compose.yml 2026-05-16 00:29:46 -04:00			`S3_REGION: ${S3_REGION:-us-east-1}`
feat: live HLS preview, proxy worker fixes, Settings tabs, growing-files + Premier panel - worker/proxy: scale-to-even filter, analyzeduration 100M, skip images, hasAudio - worker/promotion: SMB landing zone -> S3 on idle, queues proxy job, status='ready' - web-ui screens-ingest: HlsPreview component replaces fake LiveStrip/FauxFrame - web-ui screens-admin: functional Settings tabs (S3, GPU, Growing, SDI, AMPP) - mam-api /settings/growing: GET/PUT growing-files config - mam-api /assets/:id/live-path: SMB UNC/POSIX path for live growing assets - capture-manager: GROWING_ENABLED -> write hires to /growing instead of S3 stream - recorders.js: pass GROWING_ENABLED to capture container, bind /growing mount - docker-compose: mount /mnt/NVME/MAM/wild-dragon-growing on mam-api + worker - premiere-plugin: Mount Live button, Relink-to-HiRes, live->ready status poll 2026-05-22 19:12:53 -04:00			`GROWING_PATH: /growing`
			`volumes:`
			`- /mnt/NVME/MAM/wild-dragon-growing:/growing`
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`networks:`
			`- wild-dragon`

			`web-ui:`
			`build: ./services/web-ui`
			`ports:`
chore: use env-var port bindings — no hardcoded host ports All host ports are now configurable via .env variables with sensible defaults. This prevents collisions when deploying alongside existing services on TrueNAS or any other host. 2026-05-16 08:27:25 -04:00			`- "${PORT_WEB_UI:-7434}:80"`
feat(growing-files): Phase 1 - live HLS preview during recording While a recorder is running, the capture container tees an HLS stream into /live/<assetId>/ alongside the ProRes master upload. The asset row is pre-created at recorder start with status='live' so the clip appears in the library immediately. /api/v1/assets/:id/stream returns the HLS playlist URL until recording stops, then proxy. * docker-compose: shared wild-dragon-live mount on api/capture/web-ui * migration 001-add-live-status: idempotent ALTER TYPE for asset_status * mam-api: runMigrations() on boot; recorders.js pre-creates live asset + passes ASSET_ID; assets.js POST upserts on existing live row instead of inserting a duplicate, and stream route returns HLS for live assets * capture: parallel HLS ffmpeg into /live/<assetId>/; ASSET_ID env * web-ui: nginx serves /live/, preview.js loads hls.js, LIVE badge added 2026-05-18 07:29:50 -04:00			`volumes:`
			`- /mnt/NVME/MAM/wild-dragon-live:/live`
capture: custom FFmpeg 7.1 build with DeckLink + D-Bus mounts + SDI deinterlace Dockerfile is now a two-stage build that compiles FFmpeg from source with --enable-decklink against the Blackmagic SDK 16.x headers in services/capture/sdk/ (operator-supplied, gitignored). build-with-decklink.sh + patch_decklink.py drive the build. docker-compose.yml mounts /dev/shm, /run/dbus, /run/systemd into mam-api, capture, web-ui so the BMD runtime can talk to the host. capture-manager.js wraps SDI sources with -vf yadif=mode=1 (deinterlace). recorders.html defaults to SDI source type now that we have a working DeckLink path. 2026-05-21 19:57:22 -04:00			`- /dev/shm:/dev/shm`
			`- /run/dbus:/run/dbus`
			`- /run/systemd:/run/systemd`
add docker-compose.yml 2026-04-07 21:58:17 -04:00			`networks:`
			`- wild-dragon`

			`volumes:`
			`postgres_data:`
			`redis_data:`

			`networks:`
			`wild-dragon:`
			`driver: bridge`