@aifabrix/builder 2.0.0 → 2.0.3

package/templates/applications/miso-controller/env.template

@@ -0,0 +1,129 @@
+# Environment Variables Template
+# Use kv:// references for secrets (resolved from secrets.local.yaml)
+# Use ${VAR} for environment-specific values
+
+# =============================================================================
+# APPLICATION ENVIRONMENT
+# =============================================================================
+
+NODE_ENV=development
+PORT=3000
+AUTO_CREATE_TABLES=true
+FAST_STARTUP=false
+ALLOWED_ORIGINS=http://localhost:3000,http://localhost:5173
+ENABLE_API_DOCS=true
+
+# Package Version (auto-set by npm/pnpm, optional override)
+# npm_package_version=1.0.0
+
+# =============================================================================
+# DATABASE CONFIGURATION
+# =============================================================================
+# Connects to external postgres from aifabrix-setup
+
+DATABASE_URL=kv://databases-miso-controller-0-urlKeyVault
+DATABASELOG_URL=kv://databases-miso-controller-1-urlKeyVault
+MISO_ADMIN_PASSWORD=kv://miso-controller-admin-passwordKeyVault
+
+# =============================================================================
+# REDIS CONFIGURATION
+# =============================================================================
+# Connects to external redis from aifabrix-setup
+
+REDIS_URL=kv://redis-urlKeyVault
+REDIS_HOST=localhost
+REDIS_PORT=6379
+REDIS_PASSWORD=kv://redis-passwordKeyVault
+REDIS_DB=0
+REDIS_KEY_PREFIX=miso
+REDIS_ROLES_TTL=900
+REDIS_PERMISSIONS_TTL=900
+
+# =============================================================================
+# KEYCLOAK CONFIGURATION
+# =============================================================================
+# Connects to external keycloak from aifabrix-setup
+
+KEYCLOAK_REALM=aifabrix
+KEYCLOAK_AUTH_SERVER_URL=kv://keycloak-auth-server-urlKeyVault
+KEYCLOAK_CLIENT_ID=miso-controller
+KEYCLOAK_CLIENT_SECRET=kv://keycloak-client-secretKeyVault
+KEYCLOAK_ADMIN_USERNAME=admin
+KEYCLOAK_ADMIN_PASSWORD=kv://keycloak-admin-passwordKeyVault
+KEYCLOAK_PUBLIC_KEY=
+KEYCLOAK_VERIFY_AUDIENCE=false
+KEYCLOAK_TOKEN_TIMEOUT=5000
+KEYCLOAK_DEFAULT_PASSWORD=kv://keycloak-admin-passwordKeyVault
+
+# Keycloak Events Configuration
+KEYCLOAK_EVENTS_ENABLED=true
+KEYCLOAK_EVENTS_VERIFY_SIGNATURE=true
+KEYCLOAK_EVENTS_SECRET=kv://keycloak-events-secretKeyVault
+
+# =============================================================================
+# AZURE AD PROVIDER CONFIGURATION
+# =============================================================================
+
+AZURE_SUBSCRIPTION_ID=kv://azure-subscription-idKeyVault
+AZURE_TENANT_ID=kv://azure-tenant-idKeyVault
+AZURE_SERVICE_NAME=kv://azure-service-nameKeyVault
+MOCK=true
+AZURE_CLIENT_ID=kv://azure-client-idKeyVault
+AZURE_CLIENT_SECRET=kv://azure-client-secretKeyVault
+
+# Mock Mode (set to false for production)
+MOCK=true
+
+# =============================================================================
+# SECURITY & ENCRYPTION
+# =============================================================================
+
+# Encryption Key for Database Secrets
+ENCRYPTION_KEY=kv://secrets-encryptionKeyVault
+
+# JWT Configuration (for client token generation)
+JWT_SECRET=kv://miso-controller-jwt-secretKeyVault
+
+# When API_KEY is set, a matching Bearer token bypasses OAuth2 validation
+API_KEY=kv://miso-controller-api-key-secretKeyVault
+
+# =============================================================================
+# MISO CONTROLLER CONFIGURATION
+# =============================================================================
+
+# MISO Controller URL
+MISO_CONTROLLER_URL=kv://miso-controller-url
+
+# Web Server URL (for OpenAPI documentation server URLs)
+# Used to generate correct server URLs in OpenAPI spec
+WEB_SERVER_URL=kv ://web-server-url
+
+# MISO Environment Configuration (miso, dev, tst, pro)
+MISO_ENVIRONMENT=miso
+
+# MISO Application Client Credentials (per application)
+MISO_CLIENTID=kv ://miso-client-idKeyVault
+MISO_CLIENTSECRET=kv ://miso-client-secretKeyVault
+
+# =============================================================================
+# MORI SERVICE CONFIGURATION
+# =============================================================================
+
+MORI_BASE_URL=kv://mori-base-urlKeyVault
+MORI_API_KEY=kv ://mori-api-keyKeyVault
+
+# =============================================================================
+# LOGGING CONFIGURATION
+# =============================================================================
+
+LOG_TO_FILE=true
+LOG_FILE_PATH=/mnt/data/logs
+
+# =============================================================================
+# STORAGE CONFIGURATION
+# =============================================================================
+
+# Mount Volume Configuration
+MOUNT_VOLUME=C:/git/esystemsdev/aifabrix-miso/mount
+
+

package/templates/applications/miso-controller/rbac.yaml

@@ -0,0 +1,214 @@
+roles:
+  - name: "AI Fabrix Platform Admin"
+    value: "aifabrix-platform-admin"
+    description: "Full platform infrastructure management and enterprise controller access"
+    Groups: ["AI-Fabrix-Platform-Admins"]
+  
+  - name: "AI Fabrix Security Admin"
+    value: "aifabrix-security-admin"
+    description: "Security and compliance management for enterprise controller"
+    Groups: ["AI-Fabrix-Security-Admins"]
+  
+  - name: "AI Fabrix Infrastructure Admin"
+    value: "aifabrix-infrastructure-admin"
+    description: "Infrastructure deployment and management across environments"
+    Groups: ["AI-Fabrix-Infrastructure-Admins"]
+  
+  - name: "AI Fabrix Deployment Admin"
+    value: "aifabrix-deployment-admin"
+    description: "Application deployment orchestration and environment management"
+    Groups: ["AI-Fabrix-Deployment-Admins"]
+  
+  - name: "AI Fabrix Compliance Admin"
+    value: "aifabrix-compliance-admin"
+    description: "ISO 27001 compliance monitoring and audit management"
+    Groups: ["AI-Fabrix-Compliance-Admins"]
+  
+  - name: "AI Fabrix Developer"
+    value: "aifabrix-developer"
+    description: "Developer access to deploy applications via GitHub Actions"
+    Groups: ["AI-Fabrix-Developers"]
+  
+  - name: "AI Fabrix Observer"
+    value: "aifabrix-observer"
+    description: "Read-only access to monitoring, logs, and compliance reports"
+    Groups: ["AI-Fabrix-Observers"]
+
+permissions:
+  # Service User Management
+  - name: "service-user:create"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin"]
+    description: "Create service users and API clients"
+  
+  - name: "service-user:read"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin", "aifabrix-observer"]
+    description: "View service users and their configurations"
+  
+  - name: "service-user:update"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin"]
+    description: "Update service user configurations and regenerate secrets"
+  
+  - name: "service-user:delete"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin"]
+    description: "Deactivate service users"
+  
+  # User Management
+  - name: "users:create"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin"]
+    description: "Create new users"
+  
+  - name: "users:read"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin", "aifabrix-observer"]
+    description: "View user information and profiles"
+  
+  - name: "users:update"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin"]
+    description: "Update user information and manage group memberships"
+  
+  - name: "users:delete"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin"]
+    description: "Delete users"
+  
+  # Group Management
+  - name: "groups:create"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin"]
+    description: "Create new groups"
+  
+  - name: "groups:read"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin", "aifabrix-observer"]
+    description: "View group information and members"
+  
+  - name: "groups:update"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin"]
+    description: "Update group information"
+  
+  - name: "groups:delete"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin"]
+    description: "Delete groups"
+  
+  # Administrative Permissions
+  - name: "admin:read"
+    roles: ["aifabrix-platform-admin"]
+    description: "Administrative read access to all resources"
+  
+  - name: "admin:write"
+    roles: ["aifabrix-platform-admin"]
+    description: "Administrative write access to all resources"
+  
+  - name: "admin:delete"
+    roles: ["aifabrix-platform-admin"]
+    description: "Administrative delete access to all resources"
+  
+  # Template Applications (environment = null)
+  - name: "applications:create"
+    roles: ["aifabrix-platform-admin", "aifabrix-infrastructure-admin", "aifabrix-deployment-admin"]
+    description: "Register new application templates"
+  
+  - name: "applications:read"
+    roles: ["aifabrix-platform-admin", "aifabrix-infrastructure-admin", "aifabrix-deployment-admin", "aifabrix-developer", "aifabrix-observer"]
+    description: "View application templates"
+  
+  - name: "applications:update"
+    roles: ["aifabrix-platform-admin", "aifabrix-infrastructure-admin", "aifabrix-deployment-admin"]
+    description: "Update application templates"
+  
+  - name: "applications:delete"
+    roles: ["aifabrix-platform-admin", "aifabrix-infrastructure-admin"]
+    description: "Remove application templates"
+  
+  # Environments
+  - name: "environments:create"
+    roles: ["aifabrix-platform-admin", "aifabrix-infrastructure-admin"]
+    description: "Create new environments (dev, tst, pro, miso)"
+  
+  - name: "environments:read"
+    roles: ["aifabrix-platform-admin", "aifabrix-infrastructure-admin", "aifabrix-deployment-admin", "aifabrix-developer", "aifabrix-observer"]
+    description: "View environments and their status"
+  
+  - name: "environments:update"
+    roles: ["aifabrix-platform-admin", "aifabrix-infrastructure-admin"]
+    description: "Update environment configuration"
+  
+  - name: "environments:delete"
+    roles: ["aifabrix-platform-admin", "aifabrix-infrastructure-admin"]
+    description: "Delete environments"
+  
+  # Environment Applications
+  - name: "environments_applications:create"
+    roles: ["aifabrix-platform-admin", "aifabrix-deployment-admin", "aifabrix-developer"]
+    description: "Create applications within environments"
+  
+  - name: "environments_applications:read"
+    roles: ["aifabrix-platform-admin", "aifabrix-deployment-admin", "aifabrix-developer", "aifabrix-observer"]
+    description: "View applications within environments"
+  
+  - name: "environments_applications:update"
+    roles: ["aifabrix-platform-admin", "aifabrix-deployment-admin", "aifabrix-developer"]
+    description: "Update applications within environments"
+  
+  - name: "environments_applications:delete"
+    roles: ["aifabrix-platform-admin", "aifabrix-deployment-admin"]
+    description: "Remove applications from environments"
+  
+  # Pipeline & Deployment
+  - name: "applications:deploy"
+    roles: ["aifabrix-platform-admin", "aifabrix-deployment-admin", "aifabrix-developer"]
+    description: "Deploy applications to environments"
+  
+  - name: "deployments:read"
+    roles: ["aifabrix-platform-admin", "aifabrix-deployment-admin", "aifabrix-developer", "aifabrix-observer"]
+    description: "View deployment history and status"
+  
+  # Controller Operations
+  - name: "controller:admin"
+    roles: ["aifabrix-platform-admin"]
+    description: "Full administrative access to controller operations"
+  
+  - name: "controller:deploy"
+    roles: ["aifabrix-platform-admin", "aifabrix-infrastructure-admin", "aifabrix-deployment-admin"]
+    description: "Deploy infrastructure and manage environments"
+  
+  - name: "controller:monitor"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin", "aifabrix-observer"]
+    description: "Monitor system health and view logs"
+  
+  - name: "controller:compliance"
+    roles: ["aifabrix-platform-admin", "aifabrix-compliance-admin"]
+    description: "Access compliance reports and audit logs"
+  
+  # Authentication & Authorization
+  - name: "auth:read"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin", "aifabrix-developer", "aifabrix-observer"]
+    description: "View user roles and permissions"
+  
+  # Logs
+  - name: "logs:read"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin", "aifabrix-compliance-admin", "aifabrix-observer"]
+    description: "View application and audit logs"
+  
+  - name: "logs:write"
+    roles: ["aifabrix-platform-admin", "aifabrix-developer"]
+    description: "Write audit and error logs"
+  
+  # Admin Operations
+  - name: "admin.sync"
+    roles: ["aifabrix-platform-admin", "aifabrix-infrastructure-admin"]
+    description: "Full system synchronization operations"
+  
+  - name: "admin.keycloak"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin"]
+    description: "Keycloak administration and configuration"
+  
+  # Cache Management
+  - name: "cache:read"
+    roles: ["aifabrix-platform-admin", "aifabrix-security-admin", "aifabrix-observer"]
+    description: "View cache statistics and performance metrics"
+  
+  - name: "cache:admin"
+    roles: ["aifabrix-platform-admin"]
+    description: "Manage cache (clear, invalidate patterns)"
+  
+  # Dashboard
+  - name: "dashboard:read"
+    roles: ["aifabrix-platform-admin", "aifabrix-deployment-admin", "aifabrix-developer", "aifabrix-observer"]
+    description: "View dashboard summaries and aggregates"

package/templates/applications/miso-controller/variables.yaml

@@ -0,0 +1,56 @@
+# Application Metadata
+app:
+  key: miso-controller
+  displayName: "Miso Controller"
+  description: "AI Fabrix Miso Controller - Backend API and orchestration service"
+  type: webapp
+
+# Image Configuration
+image:
+  name: aifabrix/miso-controller
+  registry: devflowiseacr.azurecr.io
+  registryMode: acr
+
+# Port Configuration
+port: 3000
+
+# Azure Requirements
+requires:
+  database: true
+  databases:
+    - name: miso
+    - name: miso-logs
+  redis: true
+  storage: true
+
+# Health Check
+healthCheck:
+  path: /health
+  interval: 30
+  probePath: /health
+  probeRequestType: GET
+  probeProtocol: Https
+  probeIntervalInSeconds: 120
+
+# Authentication
+authentication:
+  type: keycloak
+  enableSSO: true
+  requiredRoles:
+    - aifabrix-user
+  endpoints:
+    local: http://localhost:3000/auth/callback
+
+# Build Configuration
+build:
+  context: ..                                           		# Docker build context (relative to builder/)
+  dockerfile: builder/miso-controller/Dockerfile         		# Dockerfile name (empty = use template)
+  envOutputPath:          	                                # Copy .env to repo root for local dev (relative to builder/) (if null, no .env file is copied) (if empty, .env file is copied to repo root)
+  localPort: 3010                                           # Port for local development (different from Docker port)
+  language: typescript                                  		# Runtime language for template selection (typescript or python)
+  secrets:                                                 	# Path to secrets file
+
+# Docker Compose
+compose:
+  file: docker-compose.yaml
+  service: miso-controller

package/templates/github/release.yaml.hbs

@@ -33,37 +33,16 @@ jobs:
             exit 1
           fi
 
-{{#if publishToNpm}}
-  publish-npm:
-    name: Publish to NPM
-    runs-on: ubuntu-latest
-    needs: validate
-    steps:
-      - uses: actions/checkout@v4
-      
-      - name: Setup Node.js
-        uses: actions/setup-node@v4
-        with:
-          node-version: '20'
-          registry-url: 'https://registry.npmjs.org'
-          cache: 'npm'
-      
-      - name: Install dependencies
-        run: npm ci
-      
-      - name: Build package
-        run: npm run build
-      
-      - name: Publish to NPM
-        run: npm publish --access public
-        env:
-          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+{{#each githubSteps}}
+{{#if (lookup ../stepContent this)}}
+{{{lookup ../stepContent this}}}
 {{/if}}
+{{/each}}
 
   create-release:
     name: Create GitHub Release
     runs-on: ubuntu-latest
-    needs: {{#if publishToNpm}}publish-npm{{else}}validate{{/if}}
+    needs: {{#if hasNpmStep}}publish-npm{{else}}validate{{/if}}
     steps:
       - uses: actions/checkout@v4
       

package/templates/github/steps/npm.hbs

@@ -0,0 +1,24 @@
+  publish-npm:
+    name: Publish to NPM
+    runs-on: ubuntu-latest
+    needs: validate
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+          registry-url: 'https://registry.npmjs.org'
+          cache: 'npm'
+      
+      - name: Install dependencies
+        run: npm ci
+      
+      - name: Build package
+        run: npm run build
+      
+      - name: Publish to NPM
+        run: npm publish --access public
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}

package/templates/infra/compose.yaml

@@ -20,7 +20,7 @@ services:
       - postgres_data:/var/lib/postgresql/data
       - ./init-scripts:/docker-entrypoint-initdb.d
     networks:
-      - aifabrix-network
+      - infra_aifabrix-network
     healthcheck:
       test: ["CMD-SHELL", "pg_isready -U pgadmin -d postgres"]
       interval: 10s
@@ -38,7 +38,7 @@ services:
     volumes:
       - redis_data:/data
     networks:
-      - aifabrix-network
+      - infra_aifabrix-network
     healthcheck:
       test: ["CMD", "redis-cli", "ping"]
       interval: 10s
@@ -61,7 +61,7 @@ services:
       postgres:
         condition: service_healthy
     networks:
-      - aifabrix-network
+      - infra_aifabrix-network
 
   # Optional: Redis Commander for Redis management
   redis-commander:
@@ -79,7 +79,7 @@ services:
       redis:
         condition: service_healthy
     networks:
-      - aifabrix-network
+      - infra_aifabrix-network
 
 volumes:
   postgres_data:
@@ -88,6 +88,6 @@ volumes:
     driver: local
 
 networks:
-  aifabrix-network:
+  infra_aifabrix-network:
     driver: bridge
-    name: aifabrix-network
+    name: infra_aifabrix-network

package/templates/python/docker-compose.hbs

@@ -8,11 +8,12 @@ services:
   {{app.key}}:
     image: {{image.name}}:{{image.tag}}
     container_name: aifabrix-{{app.key}}
-    env_file: .env
+    env_file:
+      - {{envFile}}
     ports:
       - "{{build.localPort}}:{{port}}"
     networks:
-      - aifabrix-network
+      - infra_aifabrix-network
     {{#if requiresStorage}}
     volumes:
       - "{{mountVolume}}:/mnt/data"
@@ -39,31 +40,37 @@ services:
       - ${ADMIN_SECRETS_PATH}
     environment:
       POSTGRES_DB: postgres
+      PGHOST: postgres
+      PGPORT: "5432"
+      PGUSER: pgadmin
     networks:
-      - aifabrix-network
+      - infra_aifabrix-network
     command: >
       sh -c "
-        echo 'Creating {{app.key}} database and user...' &&
-        psql -d postgres -c 'CREATE DATABASE {{app.key}};' || echo '{{app.key}} database exists' &&
-        psql -d postgres -c \"CREATE USER {{app.key}}_user WITH PASSWORD '{{app.key}}_pass123';\" || echo '{{app.key}}_user exists' &&
-        psql -d postgres -c 'GRANT ALL PRIVILEGES ON DATABASE {{app.key}} TO {{app.key}}_user;' &&
-        psql -d {{app.key}} -c 'ALTER SCHEMA public OWNER TO {{app.key}}_user;' &&
-        psql -d {{app.key}} -c 'GRANT ALL ON SCHEMA public TO {{app.key}}_user;' &&
+        export PGHOST=postgres PGPORT=5432 PGUSER=pgadmin &&
+        export PGPASSWORD="${POSTGRES_PASSWORD}" &&
+        {{#if databases}}
         {{#each databases}}
-        {{#unless @first}}
         echo 'Creating {{name}} database and user...' &&
         psql -d postgres -c 'CREATE DATABASE {{name}};' || echo '{{name}} database exists' &&
         psql -d postgres -c \"CREATE USER {{name}}_user WITH PASSWORD '{{name}}_pass123';\" || echo '{{name}}_user exists' &&
         psql -d postgres -c 'GRANT ALL PRIVILEGES ON DATABASE {{name}} TO {{name}}_user;' &&
         psql -d {{name}} -c 'ALTER SCHEMA public OWNER TO {{name}}_user;' &&
         psql -d {{name}} -c 'GRANT ALL ON SCHEMA public TO {{name}}_user;' &&
-        {{/unless}}
         {{/each}}
+        {{else}}
+        echo 'Creating {{app.key}} database and user...' &&
+        psql -d postgres -c 'CREATE DATABASE {{app.key}};' || echo '{{app.key}} database exists' &&
+        psql -d postgres -c \"CREATE USER {{app.key}}_user WITH PASSWORD '{{app.key}}_pass123';\" || echo '{{app.key}}_user exists' &&
+        psql -d postgres -c 'GRANT ALL PRIVILEGES ON DATABASE {{app.key}} TO {{app.key}}_user;' &&
+        psql -d {{app.key}} -c 'ALTER SCHEMA public OWNER TO {{app.key}}_user;' &&
+        psql -d {{app.key}} -c 'GRANT ALL ON SCHEMA public TO {{app.key}}_user;' &&
+        {{/if}}
         echo 'Database initialization complete!'
       "
     restart: "no"
   {{/if}}
 
 networks:
-  aifabrix-network:
+  infra_aifabrix-network:
     external: true

package/templates/python/main.py

@@ -0,0 +1,80 @@
+import os
+from datetime import datetime
+from flask import Flask, jsonify
+
+app = Flask(__name__)
+PORT = int(os.environ.get('PORT', 3000))
+
+def check_database():
+    """Check database connection"""
+    database_url = os.environ.get('DATABASE_URL')
+    
+    try:
+        import psycopg2
+        
+        # If DATABASE_URL is set, use it
+        if database_url:
+            from urllib.parse import urlparse
+            # Parse DATABASE_URL (format: postgresql://user:password@host:port/database)
+            parsed = urlparse(database_url)
+            
+            conn = psycopg2.connect(
+                host=parsed.hostname or os.environ.get('DATABASE_HOST', 'postgres'),
+                port=parsed.port or int(os.environ.get('DATABASE_PORT', 5432)),
+                database=parsed.path[1:] if parsed.path else os.environ.get('DATABASE_NAME', 'postgres'),
+                user=parsed.username or os.environ.get('DATABASE_USER', 'pgadmin'),
+                password=parsed.password or os.environ.get('DATABASE_PASSWORD', 'admin123')
+            )
+        else:
+            # Fallback to individual environment variables
+            conn = psycopg2.connect(
+                host=os.environ.get('DATABASE_HOST', os.environ.get('DB_HOST', 'postgres')),
+                port=int(os.environ.get('DATABASE_PORT', os.environ.get('DB_PORT', 5432))),
+                database=os.environ.get('DATABASE_NAME', os.environ.get('DB_NAME', 'postgres')),
+                user=os.environ.get('DATABASE_USER', os.environ.get('DB_USER', 'pgadmin')),
+                password=os.environ.get('DATABASE_PASSWORD', os.environ.get('DB_PASSWORD', 'admin123'))
+            )
+        
+        conn.close()
+        return True
+    except ImportError:
+        return 'psycopg2 not installed'
+    except Exception as e:
+        return str(e)
+
+@app.route('/health', methods=['GET'])
+def health():
+    """Health check endpoint with database connectivity check"""
+    health_status = {
+        'status': 'ok',
+        'timestamp': datetime.utcnow().isoformat() + 'Z'
+    }
+    
+    # Check database connection if database is configured (DATABASE_URL or individual vars)
+    database_url = os.environ.get('DATABASE_URL')
+    database_host = os.environ.get('DATABASE_HOST') or os.environ.get('DB_HOST')
+    database_name = os.environ.get('DATABASE_NAME') or os.environ.get('DB_NAME')
+    
+    # Only check database if database is configured
+    if database_url or database_host or database_name:
+        db_check = check_database()
+        if db_check is True:
+            health_status['database'] = 'connected'
+        else:
+            health_status['database'] = 'error'
+            health_status['database_error'] = str(db_check)
+            return jsonify(health_status), 503
+    
+    return jsonify(health_status), 200
+
+@app.route('/', methods=['GET'])
+def root():
+    """Root endpoint"""
+    return jsonify({
+        'message': 'AI Fabrix Application',
+        'version': '1.0.0'
+    }), 200
+
+if __name__ == '__main__':
+    app.run(host='0.0.0.0', port=PORT, debug=False)
+

package/templates/python/requirements.txt

@@ -0,0 +1,4 @@
+Flask==3.0.0
+gunicorn==21.2.0
+psycopg2-binary==2.9.9
+

package/templates/typescript/Dockerfile.hbs

@@ -16,8 +16,8 @@ RUN apk add --no-cache \
 # Copy package files first for better layer caching
 COPY package*.json ./
 
-# Install dependencies
-RUN npm ci --only=production && npm cache clean --force
+# Install dependencies (including devDependencies for ts-node)
+RUN npm install && npm cache clean --force
 
 # Copy application code
 COPY . .