Zrahay
diff --git a/‎.github/workflows/dockerhub-ci.yml‎
Lines changed: 99 additions & 0 deletions b/‎.github/workflows/dockerhub-ci.yml‎
Lines changed: 99 additions & 0 deletions
diff --git a/‎DOCKERHUB_SETUP.md‎
Lines changed: 130 additions & 0 deletions b/‎DOCKERHUB_SETUP.md‎
Lines changed: 130 additions & 0 deletions
diff --git a/‎docker/PORT_ANALYSIS.md‎
Lines changed: 84 additions & 0 deletions b/‎docker/PORT_ANALYSIS.md‎
Lines changed: 84 additions & 0 deletions
@@ -0,0 +1,99 @@
+name: Build and Push Docker Images to DockerHub
+
+on:
+  push:
+    branches: [ main, develop ]
+  pull_request:
+    branches: [ main ]
+  release:
+    types: [ published ]
+
+jobs:
+  build-and-push:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        include:
+          - service: database
+            dockerfile: ./docker/database/Dockerfile
+            context: .
+          - service: key-manager
+            dockerfile: ./docker/key-manager/Dockerfile
+            context: .
+          - service: otp-server
+            dockerfile: ./docker/otp-server/Dockerfile
+            context: .
+          - service: aes-server
+            dockerfile: ./docker/aes-server/Dockerfile
+            context: .
+          - service: auth-service
+            dockerfile: ./docker/auth/Dockerfile
+            context: .
+          - service: backend
+            dockerfile: ./docker/backend/Dockerfile
+            context: .
+          - service: quantum-server
+            dockerfile: ./quantum-secure-email-client/quant-sec-server/Dockerfile
+            context: ./quantum-secure-email-client
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+
+    - name: Validate secrets
+      if: github.event_name != 'pull_request'
+      run: |
+        if [ -z "${{ secrets.DOCKERHUB_USERNAME }}" ]; then
+          echo "❌ DOCKERHUB_USERNAME secret is not set"
+          exit 1
+        fi
+        if [ -z "${{ secrets.DOCKERHUB_TOKEN }}" ]; then
+          echo "❌ DOCKERHUB_TOKEN secret is not set"
+          exit 1
+        fi
+        echo "✅ DockerHub secrets are properly configured"
+
+    - name: Set up Docker Buildx
+      uses: docker/setup-buildx-action@v3
+
+    - name: Log in to DockerHub
+      if: github.event_name != 'pull_request'
+      uses: docker/login-action@v3
+      with:
+        username: ${{ secrets.DOCKERHUB_USERNAME }}
+        password: ${{ secrets.DOCKERHUB_TOKEN }}
+
+    - name: Build and push Docker image
+      if: github.event_name != 'pull_request'
+      uses: docker/build-push-action@v5
+      with:
+        context: ${{ matrix.context }}
+        file: ${{ matrix.dockerfile }}
+        push: true
+        tags: ${{ secrets.DOCKERHUB_USERNAME }}/quantum-secure-${{ matrix.service }}:latest,${{ secrets.DOCKERHUB_USERNAME }}/quantum-secure-${{ matrix.service }}:${{ github.sha }}
+        cache-from: type=gha
+        cache-to: type=gha,mode=max
+
+    - name: Build Docker image (PR)
+      if: github.event_name == 'pull_request'
+      uses: docker/build-push-action@v5
+      with:
+        context: ${{ matrix.context }}
+        file: ${{ matrix.dockerfile }}
+        push: false
+        tags: quantum-secure-${{ matrix.service }}:pr-${{ github.event.number }}
+        cache-from: type=gha
+        cache-to: type=gha,mode=max
+
+    - name: Build Summary
+      if: github.event_name != 'pull_request'
+      run: |
+        echo "🎉 Docker image ${{ matrix.service }} has been successfully built and pushed to DockerHub:"
+        echo "- ${{ secrets.DOCKERHUB_USERNAME }}/quantum-secure-${{ matrix.service }}:latest"
+        echo "- ${{ secrets.DOCKERHUB_USERNAME }}/quantum-secure-${{ matrix.service }}:${{ github.sha }}"
+
+    - name: PR Build Summary
+      if: github.event_name == 'pull_request'
+      run: |
+        echo "🧪 Docker image ${{ matrix.service }} has been successfully built for PR validation:"
+        echo "- quantum-secure-${{ matrix.service }}:pr-${{ github.event.number }}"
@@ -0,0 +1,130 @@
+# DockerHub CI/CD Setup
+
+This repository includes automated CI/CD pipeline for building and pushing Docker images to DockerHub.
+
+## Setup Instructions
+
+### 1. GitHub Secrets Configuration
+
+Add the following secrets to your GitHub repository:
+
+1. Go to your repository settings
+2. Navigate to "Secrets and variables" → "Actions"
+3. Add the following repository secrets:
+
+- `DOCKERHUB_USERNAME`: Your DockerHub username
+- `DOCKERHUB_TOKEN`: Your DockerHub access token
+
+### 2. Creating DockerHub Access Token
+
+1. Log in to [DockerHub](https://hub.docker.com/)
+2. Go to Account Settings → Security
+3. Click "New Access Token"
+4. Give it a name (e.g., "GitHub Actions")
+5. Copy the token and add it as `DOCKERHUB_TOKEN` secret
+
+### 3. Docker Images
+
+The CI/CD pipeline builds and pushes the following Docker images:
+
+| Service | Image Name | Dockerfile Location |
+|---------|------------|-------------------|
+| Database | `quantum-secure-database` | `docker/database/Dockerfile` |
+| Key Manager | `quantum-secure-key-manager` | `docker/key-manager/Dockerfile` |
+| OTP Server | `quantum-secure-otp-server` | `docker/otp-server/Dockerfile` |
+| AES Server | `quantum-secure-aes-server` | `docker/aes-server/Dockerfile` |
+| Auth Service | `quantum-secure-auth-service` | `docker/auth/Dockerfile` |
+| Backend | `quantum-secure-backend` | `docker/backend/Dockerfile` |
+| Quantum Server | `quantum-secure-server` | `quantum-secure-email-client/quant-sec-server/Dockerfile` |
+
+## Workflow Triggers
+
+The CI/CD pipeline runs on:
+
+- **Push to main/develop branches**: Builds and pushes images with `latest` and commit SHA tags
+- **Pull requests**: Builds images locally for testing (no push to DockerHub)
+- **Releases**: Builds and pushes images with version tags
+
+## Parallel Execution
+
+The workflow uses GitHub Actions matrix strategy to build all Docker images **in parallel**, significantly reducing build time:
+
+- Each service builds in its own parallel job
+- All 7 images build simultaneously instead of sequentially
+- Faster CI/CD pipeline execution
+
+## Using DockerHub Images
+
+### Option 1: Using Docker Compose Override
+
+Use the provided override file to run with DockerHub images:
+
+```bash
+# Set your DockerHub username
+export DOCKERHUB_USERNAME=your-username
+
+# Run with DockerHub images
+docker-compose -f docker/docker-compose.yml -f docker/docker-compose.dockerhub.yml up
+```
+
+### Option 2: Manual Docker Commands
+
+```bash
+# Pull and run individual services
+docker pull your-username/quantum-secure-database:latest
+docker pull your-username/quantum-secure-key-manager:latest
+docker pull your-username/quantum-secure-otp-server:latest
+docker pull your-username/quantum-secure-aes-server:latest
+docker pull your-username/quantum-secure-auth-service:latest
+docker pull your-username/quantum-secure-backend:latest
+docker pull your-username/quantum-secure-server:latest
+```
+
+## Image Tags
+
+- `latest`: Latest build from main branch
+- `{commit-sha}`: Specific commit SHA
+- `pr-{number}`: Pull request builds (not pushed to DockerHub)
+- `{version}`: Release version tags
+
+## Troubleshooting
+
+### Common Issues
+
+1. **Authentication Failed**: Ensure `DOCKERHUB_USERNAME` and `DOCKERHUB_TOKEN` secrets are correctly set
+2. **Build Failures**: Check Dockerfile paths and context in the workflow
+3. **Push Failures**: Verify DockerHub permissions and token validity
+
+### Checking Workflow Status
+
+1. Go to your repository on GitHub
+2. Click on "Actions" tab
+3. View the "Build and Push Docker Images to DockerHub" workflow runs
+
+### Local Testing
+
+You can test the Docker builds locally:
+
+```bash
+# Test database build
+docker build -f docker/database/Dockerfile -t test-database .
+
+# Test key manager build
+docker build -f docker/key-manager/Dockerfile -t test-key-manager .
+
+# Test other services similarly...
+```
+
+## Environment Variables
+
+The following environment variables are used in the workflow:
+
+- `DOCKERHUB_USERNAME`: Your DockerHub username (from GitHub secrets)
+- `DOCKERHUB_TOKEN`: Your DockerHub access token (from GitHub secrets)
+
+## Security Notes
+
+- Never commit DockerHub credentials to the repository
+- Use GitHub secrets for sensitive information
+- Regularly rotate DockerHub access tokens
+- Consider using DockerHub organization accounts for team projects
@@ -0,0 +1,84 @@
+# Port Analysis for Quantum Secure Email Client
+
+## Server Port Status Analysis
+
+### Currently Used Ports on Server:
+- **4666** - llvm-obfuscator-frontend
+- **6379** - Redis (infisical-dev-redis)
+- **5432** - PostgreSQL (infisical-db) ⚠️ **CONFLICT RESOLVED**
+- **3000** - Grafana (monitoring)
+- **9090** - Prometheus (monitoring)
+- **8081** - cAdvisor (monitoring)
+- **9115** - Blackbox Exporter (monitoring)
+- **9091** - Pushgateway (monitoring)
+- **9100** - Node Exporter (monitoring)
+- **8080** - Ghost
+
+### Quantum Secure Email Client Ports:
+
+| Service | Internal Port | External Port | Status |
+|---------|---------------|----------------|--------|
+| PostgreSQL | 5432 | **5433** | ✅ **CHANGED** (was 5432) |
+| Key Manager | 2020 | - | ✅ Available |
+| OTP Server | 2021 | - | ✅ Available |
+| AES Server | 2022 | - | ✅ Available |
+| Auth Service | 2023 | - | ✅ Available |
+| Backend API | 5001 | **5001** | ✅ Available |
+
+## Changes Made:
+
+### 1. PostgreSQL Port Conflict Resolution
+- **Problem**: Server already has PostgreSQL on port 5432
+- **Solution**: Changed external port mapping to 5433
+- **Internal**: Services still connect to PostgreSQL on port 5432 internally
+- **External**: Access PostgreSQL via `localhost:5433`
+
+### 2. Port Mapping Summary
+```yaml
+# External access ports
+5433 -> PostgreSQL (was 5432)
+5001 -> Backend API
+
+# Internal service ports (no external access needed)
+2020 -> Key Manager
+2021 -> OTP Server  
+2022 -> AES Server
+2023 -> Auth Service
+```
+
+## Deployment Commands:
+
+```bash
+# Navigate to docker directory
+cd docker
+
+# Start all services
+docker-compose up -d
+
+# Check running containers
+docker ps
+
+# View logs
+docker-compose logs -f
+
+# Stop services
+docker-compose down
+```
+
+## Service Dependencies:
+1. **PostgreSQL** (5433) - Database
+2. **Key Manager** (2020) - Key management service
+3. **OTP Server** (2021) - Depends on Key Manager
+4. **AES Server** (2022) - Depends on Key Manager
+5. **Auth Service** (2023) - Depends on PostgreSQL
+6. **Backend API** (5001) - Depends on all services
+
+## Health Checks:
+- PostgreSQL: `pg_isready` on port 5432
+- Auth Service: HTTP health check on port 2023
+- Backend: Health check available (currently commented out)
+
+## Network Configuration:
+- All services use `quantum_network` bridge network
+- Internal communication uses service names
+- External access only for PostgreSQL (5433) and Backend (5001)