proofmode 0.8.4

Capture, share, and preserve verifiable photos and videos
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123

version: '3.8'

services:
  proofmode:
    image: guardianproject/proofmode:latest
    build:
      context: .
      dockerfile: Dockerfile
      platforms:
        - linux/amd64
        - linux/arm64
    container_name: proofmode
    restart: unless-stopped
    user: "1000:1000"
    environment:
      # Logging configuration
      - RUST_LOG=${RUST_LOG:-info}
      
      # ProofMode directories
      - PROOFMODE_INPUT_DIR=/app/input
      - PROOFMODE_OUTPUT_DIR=/app/output
      - PROOFMODE_CONFIG_DIR=/app/config
      
      # Optional: External services
      # - NOTARIZATION_SERVICE=${NOTARIZATION_SERVICE:-}
      # - IPFS_GATEWAY=${IPFS_GATEWAY:-https://ipfs.io}
    
    volumes:
      # Input media files
      - ./media:/app/input:ro
      
      # Output proof bundles
      - ./proofs:/app/output
      
      # Configuration and keys
      - ./config:/app/config:ro
      
      # Optional: Host time sync
      - /etc/localtime:/etc/localtime:ro
    
    # Resource limits
    deploy:
      resources:
        limits:
          cpus: '2.0'
          memory: 2G
        reservations:
          cpus: '0.5'
          memory: 512M
    
    # Health check
    healthcheck:
      test: ["CMD", "proofmode", "--version"]
      interval: 30s
      timeout: 3s
      retries: 3
      start_period: 5s
    
    # Network configuration
    networks:
      - proofmode-net
    
    # Security options
    security_opt:
      - no-new-privileges:true
    read_only: true
    tmpfs:
      - /tmp
      - /var/tmp
    
    # Logging
    logging:
      driver: "json-file"
      options:
        max-size: "10m"
        max-file: "3"

  # Optional: IPFS node for distributed storage
  ipfs:
    image: ipfs/kubo:latest
    container_name: proofmode-ipfs
    restart: unless-stopped
    environment:
      - IPFS_PROFILE=server
    volumes:
      - ipfs-data:/data/ipfs
    ports:
      - "4001:4001" # Swarm
      - "5001:5001" # API
      - "8080:8080" # Gateway
    networks:
      - proofmode-net
    profiles:
      - with-ipfs

  # Optional: PostgreSQL for metadata storage
  postgres:
    image: postgres:16-alpine
    container_name: proofmode-db
    restart: unless-stopped
    environment:
      - POSTGRES_DB=proofmode
      - POSTGRES_USER=proofmode
      - POSTGRES_PASSWORD=${DB_PASSWORD:-changeme}
    volumes:
      - postgres-data:/var/lib/postgresql/data
    networks:
      - proofmode-net
    healthcheck:
      test: ["CMD-SHELL", "pg_isready -U proofmode"]
      interval: 10s
      timeout: 5s
      retries: 5
    profiles:
      - with-database

networks:
  proofmode-net:
    driver: bridge

volumes:
  ipfs-data:
  postgres-data: