Self-Hosting Guide

This document provides instructions for self-hosting the Tiangong LCA application using Docker. The setup includes both the Tiangong LCA Next application and a complete Supabase backend.

Prerequisites

Docker and Docker Compose
Git
At least 4GB of RAM available for Docker
At least 10GB of free disk space
Basic knowledge of terminal/command line operations

Installation

1. Clone the Repository

TODO: change the repo url to your own
git clone https://github.com/linancn/tiangong-lca-next.git
cd tiangong-lca-next

2. Configure Environment Variables

cd docker
cp .env.example .env

Edit the .env file to set your configuration:

Important variables to configure:

POSTGRES_PASSWORD: Set a strong password for your PostgreSQL database
JWT_SECRET: Set a secure JWT secret (at least 32 characters)
ANON_KEY and SERVICE_ROLE_KEY: JWT tokens for Supabase authentication
DASHBOARD_USERNAME and DASHBOARD_PASSWORD: Credentials for the Supabase dashboard
SMTP_*: Email configuration must be set to enable email authentication (see SMTP Service Instructions & Recommendations)
POOLER_TENANT_ID: The tenant ID for the Pooler service

3. Start the Services

# Start all services
docker compose up -d

This will start the following services:

Tiangong LCA Next application
Supabase services (PostgreSQL, Auth, REST API, Realtime, Storage, etc.)
Supporting services (Vector, Imgproxy, etc.)

4. Access the Application

Once all services are running, you can access:

Tiangong LCA Application: http://localhost:8000
- To log in to your local Tiangong LCA deployment, you must configure the SMTP service in your .env file (see SMTP Service Instructions & Recommendations), and use the SMTP service to send registration and authentication emails.
Supabase Studio: http://localhost:54321
- Log in using the DASHBOARD_USERNAME and DASHBOARD_PASSWORD you set in the .env file.
```
DASHBOARD_USERNAME=supabase
DASHBOARD_PASSWORD=this_password_is_insecure_and_should_be_updated
```

Postgres:

For session-based connections (equivalent to direct Postgres connections):

psql 'postgres://postgres.your-tenant-id:your-super-secret-and-long-postgres-password@localhost:5432/postgres'

For pooled transactional connections:

psql 'postgres://postgres.your-tenant-id:your-super-secret-and-long-postgres-password@localhost:6543/postgres'

See the Supabase Documentation for more information on how to use the Supabase Studio and Postgres.

Docker Service Management

Starting Services

There are several ways to start the Docker services:

# Start all services in detached mode (run in background)
docker compose up -d

# Start all services and see logs in terminal
docker compose up

Stopping Services

# Stop all services but keep containers
docker compose stop

# Stop all services and remove containers
docker compose down

# Stop all services, remove containers, and delete volumes (WARNING: This will delete all data)
docker compose down -v

Restarting Services

# Restart all services
docker compose restart

Checking Service Status

# List all services and their status
docker compose ps

# Check detailed status of a specific service
docker compose ps app

# Check resource usage of all services
docker stats

Rebuilding Services

If you've made changes to the application code:

# Rebuild and restart the app service
docker compose up -d --build app

# Rebuild all services
docker compose up -d --build

Configuration Options

Edge Functions

The setup includes support for Supabase Edge Functions. Functions are stored in the docker/volumes/functions directory.

To synchronize edge functions from an external repository:

# Create a temporary directory
mkdir -p temp_repo

# Clone the edge functions repository
git clone --depth 1 https://github.com/linancn/tiangong-lca-edge-functions.git temp_repo

# Copy edge functions to the Docker volumes directory
mkdir -p docker/volumes/functions
cp -r temp_repo/supabase/functions/* docker/volumes/functions/

# Copy edge functions to the local Supabase directory
cp -r temp_repo/supabase/functions/* supabase/functions/

# Clean up
rm -rf temp_repo

SMTP Service Instructions & Recommendations

The Tiangong LCA application relies on an SMTP service to send registration and authentication emails. You must correctly configure the SMTP-related variables in your .env file. Common variables include:

SMTP_ADMIN_EMAIL: SMTP administrator email
SMTP_HOST: SMTP server address
SMTP_PORT: SMTP port (usually 465/587/25, depending on provider and encryption)
SMTP_USER: SMTP login username (usually the email address)
SMTP_PASS: SMTP login password or authorization code
SMTP_SENDER_NAME: Sender name

Recommended SMTP Services

You may choose from the following common SMTP services:

WeCom (WeChat Work) Mail (recommended, supports SSL/TLS, suitable for enterprise users) WeCom Mail SMTP Configuration
QQ Enterprise Mail
Alibaba Cloud Mail
163 Enterprise Mail
SendGrid, Mailgun, Amazon SES (international third-party services, suitable for large-scale email sending)

Example: WeCom Mail SMTP Configuration

For WeCom Mail, your .env file should look like:

SMTP_ADMIN_EMAIL=your_account@yourcompany.com
SMTP_HOST=smtp.exmail.qq.com
SMTP_PORT=465
SMTP_USER=your_account@yourcompany.com
SMTP_PASS=your_password_or_auth_code
SMTP_SENDER_NAME=your_account@yourcompany.com

Note: Some email services (such as QQ, 163) require you to enable "SMTP service" and use an authorization code instead of your login password. Please refer to the official documentation of your email provider for detailed configuration instructions.

Maintenance

Updating

To update the services:

# Pull the latest images
docker compose pull

# Restart the services
docker compose up -d

Backup

To backup your PostgreSQL database:

# Create a backup of the PostgreSQL database
docker exec -t supabase-db pg_dumpall -c -U postgres > backup_$(date +%Y-%m-%d_%H-%M-%S).sql

Restore

To restore from a backup:

# Stop the services
docker compose down

# Reset the database volume
rm -rf ./volumes/db/data

# Start the database service
docker compose up -d db

# Wait for the database to be ready
sleep 10

# Restore from backup
cat your_backup_file.sql | docker exec -i supabase-db psql -U postgres

# Start all services
docker compose up -d

Reset Environment

If you need to completely reset your environment:

# Run the reset script
./reset.sh

This script will:

Stop and remove all containers
Delete all data volumes
Reset the .env file to defaults

Troubleshooting

Common Issues

Services Not Starting

Check the logs for errors:

docker compose logs

For specific service logs:

docker compose logs app
docker compose logs db

Database Connection Issues

Ensure the database is running and healthy:

docker compose ps db

Check database logs:

docker compose logs db

Viewing Logs

# View all logs
docker compose logs -f

# View logs for a specific service
docker compose logs -f app
docker compose logs -f db
docker compose logs -f auth

Security Considerations

For production deployments, consider the following security measures:

Change Default Credentials: Update all default passwords and keys in the .env file
Use HTTPS: Configure a reverse proxy with SSL/TLS for secure connections
Restrict Access: Use firewall rules to limit access to your services
Regular Backups: Implement a regular backup strategy
Updates: Keep your Docker images and host system updated

Prerequisites​

Installation​

1. Clone the Repository​

2. Configure Environment Variables​

3. Start the Services​

4. Access the Application​

Docker Service Management​

Starting Services​

Stopping Services​

Restarting Services​

Checking Service Status​

Rebuilding Services​

Configuration Options​

Edge Functions​

SMTP Service Instructions & Recommendations​

Recommended SMTP Services​

Example: WeCom Mail SMTP Configuration​

Maintenance​

Updating​

Backup​

Restore​

Reset Environment​

Troubleshooting​

Common Issues​

Services Not Starting​

Database Connection Issues​

Viewing Logs​

Security Considerations​

Additional Resources​