fix: nginx read_only filesystem compatibility for envsubst (#122)

Redirect NGINX_ENVSUBST_OUTPUT_DIR to /tmp and update nginx.conf include path so envsubst works with read_only: true in docker-compose. Add tmpfs mount for /etc/nginx/conf.d for additional write layer.
2026-02-08 13:07:21 +01:00
parent 1798a608bc
commit aa92bcd96d
2 changed files with 6 additions and 0 deletions
@@ -52,6 +52,7 @@ services:
      - /tmp:noexec,nosuid,size=64m
      - /var/cache/nginx:noexec,nosuid,size=64m
      - /var/run:noexec,nosuid,size=64m
+      - /etc/nginx/conf.d:noexec,nosuid,size=1m
    cap_drop:
      - ALL