audit(gremlin): Calibre-web FAIL 2026-04-02
This commit is contained in:
parent
d809a8e2af
commit
f056a14f33
1 changed files with 31 additions and 16 deletions
|
|
@ -2,10 +2,10 @@
|
||||||
title: Audit - Calibre-web.yaml
|
title: Audit - Calibre-web.yaml
|
||||||
description: Gremlin audit report 2026-04-02
|
description: Gremlin audit report 2026-04-02
|
||||||
published: true
|
published: true
|
||||||
date: 2026-04-02T11:25:52.939Z
|
date: 2026-04-02T21:21:22.609Z
|
||||||
tags: gremlin,audit
|
tags: gremlin,audit
|
||||||
editor: markdown
|
editor: markdown
|
||||||
dateCreated: 2026-04-02T11:25:52.939Z
|
dateCreated: 2026-04-02T21:21:22.609Z
|
||||||
---
|
---
|
||||||
|
|
||||||
# Audit Report — Calibre-web.yaml
|
# Audit Report — Calibre-web.yaml
|
||||||
|
|
@ -13,24 +13,39 @@ dateCreated: 2026-04-02T11:25:52.939Z
|
||||||
**Date:** 2026-04-02
|
**Date:** 2026-04-02
|
||||||
**File:** swarm/Calibre-web.yaml
|
**File:** swarm/Calibre-web.yaml
|
||||||
**Type:** Docker Swarm
|
**Type:** Docker Swarm
|
||||||
**Verdict:** PASS
|
**Verdict:** FAIL
|
||||||
|
|
||||||
---
|
---
|
||||||
|
|
||||||
**Audit Results:**
|
**SWARM AUDIT — Check Results**
|
||||||
|
|
||||||
1. **Homepage Labels**: All homepage labels are present and configured correctly.
|
1. **Homepage labels**:
|
||||||
2. **Uptime Kuma Labels**: The kuma.labels are not being utilized; they should be used to configure Uptime Kuma with the correct name and URL.
|
- `homepage.group`: PASS
|
||||||
3. **Caddy Labels on Exposed Services**:
|
- `homepage.name`: PASS
|
||||||
- `caddy=books.netgrimoire.com , books.pncharris.com` is correctly set up for routing.
|
- `homepage.icon`: PASS
|
||||||
- However, the reverse proxy setting should use the service name instead of its hostname (`calibre-web-automated`) to avoid issues with service discovery in a Docker Swarm environment.
|
- `homepage.href`: PASS
|
||||||
4. **Placement Constraints**: The constraint `node.hostname == znas` is applied correctly.
|
- `homepage.description`: PASS
|
||||||
5. **Volumes Use /DockerVol/<service> Path Convention**: All volumes follow this convention, e.g., `/DockerVol/Calibre-web/Config`.
|
|
||||||
6. **Network References External netgrimoire Overlay**: The network reference to `netgrimoire` is external and correctly configured.
|
|
||||||
|
|
||||||
**Fixes:**
|
2. **Uptime Kuma labels**:
|
||||||
|
- `kuma.cwa.http.name`: PASS
|
||||||
|
- `kuma.cwa.http.url`: PASS
|
||||||
|
|
||||||
- Update Uptime Kuma labels for correct configuration.
|
3. **Caddy labels on exposed services**:
|
||||||
- Modify Caddy reverse proxy setting to use the service name (`calibre-web-automated`) instead of its hostname.
|
- `caddy=books.netgrimoire.com, books.pncharris.com`: PASS
|
||||||
|
- `caddy.reverse_proxy=calibre-web-automated:8083`: PASS
|
||||||
|
|
||||||
**VERDICT: PASS**
|
4. **Placement constraints**:
|
||||||
|
- `node.hostname==znas`: PASS
|
||||||
|
|
||||||
|
5. **Volumes use `/DockerVol/<service>` path convention**:
|
||||||
|
- Volume `/DockerVol/Calibre-web/Config` for configuration files: PASS
|
||||||
|
- Volume `/calibre-library:/data/nfs/znas/Data/media/books/library/Netgrimoire` for library data: FAIL
|
||||||
|
- **Issue**: The volume is not using the recommended path convention (`/DockerVol/<service>`).
|
||||||
|
- **Fix**: Update the volume path to `/DockerVol/calibre-web/Library`.
|
||||||
|
|
||||||
|
6. **Network references external netgrimoire overlay**:
|
||||||
|
- `netgrimoire`: PASS
|
||||||
|
|
||||||
|
**VERDICT: FAIL**
|
||||||
|
|
||||||
|
The audit found one issue that needs to be addressed to meet all requirements. The volume for the library data should follow the `/DockerVol/<service>` path convention.
|
||||||
Loading…
Add table
Add a link
Reference in a new issue