feat: Update SSL configuration in environment files and documentation

- Modified `.env.example` to clarify SSL certificate paths for Docker and non-Docker deployments.
- Updated `docker-compose.ghcr.yml` and `docker-compose.yml` to use a dynamic path for SSL certificates, enhancing flexibility.
- Revised `CONFIGURATION.md` to provide detailed instructions for SSL setup in both Docker and non-Docker environments.

Author: usnavy13

.env.example

@@ -9,10 +9,17 @@ API_RELOAD=false
 # SSL/HTTPS Configuration
 ENABLE_HTTPS=false
 HTTPS_PORT=443
-SSL_CERT_FILE=/app/ssl/cert.pem
-SSL_KEY_FILE=/app/ssl/key.pem
 SSL_REDIRECT=false
-# SSL_CA_CERTS=/app/ssl/ca.pem  # Optional CA certificates
+
+# Docker: Path to directory containing cert.pem and key.pem on the host
+# The directory is mounted to /app/ssl/ inside the container automatically.
+# Default is ./ssl (relative to docker-compose.yml)
+# SSL_CERTS_PATH=/path/to/your/ssl/certs
+
+# Non-Docker only: Absolute paths to certificate files (not needed for Docker)
+# SSL_CERT_FILE=/path/to/cert.pem
+# SSL_KEY_FILE=/path/to/key.pem
+# SSL_CA_CERTS=/path/to/ca.pem
 
 # Authentication Configuration
 API_KEY=your-secure-api-key-here-change-this-in-production

docker-compose.ghcr.yml

@@ -1,7 +1,7 @@
 services:
   # Code Interpreter API
   api:
-    image: ghcr.io/usnavy13/librecodeinterpreter:dev
+    image: ghcr.io/usnavy13/librecodeinterpreter:latest
     container_name: code-interpreter-api
     user: "1000:988" # Run as user with docker group access
     cap_add:
@@ -16,7 +16,7 @@ services:
       - API_HOST=0.0.0.0
       - API_PORT=8000
       - DOCKER_IMAGE_REGISTRY=ghcr.io/usnavy13/librecodeinterpreter
-      - DOCKER_IMAGE_TAG=${DOCKER_IMAGE_TAG:-dev}
+      - DOCKER_IMAGE_TAG=${DOCKER_IMAGE_TAG:-latest}
 
       # Service discovery (container names)
       - REDIS_HOST=redis
@@ -33,7 +33,7 @@ services:
       - /var/run/docker.sock:/var/run/docker.sock
       - ./logs:/app/logs
       - ./data:/app/data
-      - ./ssl:/app/ssl
+      - ${SSL_CERTS_PATH:-./ssl}:/app/ssl
     depends_on:
       - redis
       - minio

docker-compose.yml

@@ -37,7 +37,7 @@ services:
       - /var/run/docker.sock:/var/run/docker.sock
       - ./logs:/app/logs
       - ./data:/app/data
-      - ./ssl:/app/ssl
+      - ${SSL_CERTS_PATH:-./ssl}:/app/ssl
       - ./dashboard:/app/dashboard
       - ./src:/app/src
     depends_on:

docs/CONFIGURATION.md

@@ -43,16 +43,29 @@ Controls the basic API server settings.
 
 Configures SSL/TLS support for secure HTTPS connections.
 
-| Variable        | Default | Description                                 |
-| --------------- | ------- | ------------------------------------------- |
-| `ENABLE_HTTPS`  | `false` | Enable HTTPS/SSL support                    |
-| `HTTPS_PORT`    | `443`   | HTTPS server port                           |
-| `SSL_CERT_FILE` | -       | Path to SSL certificate file (.crt or .pem) |
-| `SSL_KEY_FILE`  | -       | Path to SSL private key file (.key)         |
-| `SSL_REDIRECT`  | `false` | Redirect HTTP traffic to HTTPS              |
-| `SSL_CA_CERTS`  | -       | Path to CA certificates file (optional)     |
+#### Docker Deployments
 
-**HTTPS Setup:**
+| Variable         | Default  | Description                                              |
+| ---------------- | -------- | -------------------------------------------------------- |
+| `ENABLE_HTTPS`   | `false`  | Enable HTTPS/SSL support                                 |
+| `HTTPS_PORT`     | `443`    | HTTPS server port                                        |
+| `SSL_CERTS_PATH` | `./ssl`  | Host path to directory containing `cert.pem` and `key.pem` |
+| `SSL_REDIRECT`   | `false`  | Redirect HTTP traffic to HTTPS                           |
+
+> **Note:** When using Docker, the certificate files are automatically mapped to `/app/ssl/` inside the container. You only need to set `SSL_CERTS_PATH` to point to your certificates directory on the host.
+
+#### Non-Docker Deployments
+
+| Variable         | Default  | Description                                              |
+| ---------------- | -------- | -------------------------------------------------------- |
+| `ENABLE_HTTPS`   | `false`  | Enable HTTPS/SSL support                                 |
+| `HTTPS_PORT`     | `443`    | HTTPS server port                                        |
+| `SSL_CERT_FILE`  | -        | Absolute path to SSL certificate file (.pem)             |
+| `SSL_KEY_FILE`   | -        | Absolute path to SSL private key file (.pem)             |
+| `SSL_CA_CERTS`   | -        | Path to CA certificates file (optional)                  |
+| `SSL_REDIRECT`   | `false`  | Redirect HTTP traffic to HTTPS                           |
+
+**HTTPS Setup (Docker):**
 
 1. **Generate or obtain SSL certificates**:
 
@@ -69,17 +82,30 @@ Configures SSL/TLS support for secure HTTPS connections.
    ```bash
    ENABLE_HTTPS=true
    HTTPS_PORT=443
-   SSL_CERT_FILE=/app/ssl/cert.pem
-   SSL_KEY_FILE=/app/ssl/key.pem
    SSL_REDIRECT=true  # Optional: redirect HTTP to HTTPS
+   
+   # If using the default ./ssl directory, no additional config needed.
+   # If your certs are elsewhere, set the path:
+   # SSL_CERTS_PATH=/path/to/your/ssl/certs
    ```
 
+   The directory must contain files named `cert.pem` and `key.pem`.
+
 3. **Deploy with Docker Compose**:
    ```bash
-   # Make sure SSL certificates are in ./ssl/ directory
    docker-compose up -d
    ```
 
+**HTTPS Setup (Non-Docker):**
+
+```bash
+ENABLE_HTTPS=true
+HTTPS_PORT=443
+SSL_CERT_FILE=/absolute/path/to/cert.pem
+SSL_KEY_FILE=/absolute/path/to/key.pem
+SSL_REDIRECT=true
+```
+
 **Security Notes:**
 
 - Use certificates from trusted Certificate Authorities in production