ci: tighten docker maintenance window and fix yaml syntax

.gitea/workflows/deploy.yml

@@ -14,8 +14,8 @@ on:
         default: 'false'
 
 concurrency:
-  group: ${{ github.workflow }}
-  cancel-in-progress: false
+  group: ${{ github.workflow }}-${{ (github.ref_type == 'tag' && !contains(github.ref_name, '-')) && 'prod' || (github.ref_type == 'tag' && 'staging' || 'testing') }}
+  cancel-in-progress: true
 
 jobs:
   # ──────────────────────────────────────────────────────────────────────────────
@@ -38,11 +38,38 @@ jobs:
       gotify_priority:  ${{ steps.determine.outputs.gotify_priority }}
       short_sha:        ${{ steps.determine.outputs.short_sha }}
       commit_msg:       ${{ steps.determine.outputs.commit_msg }}
+      gatekeeper_changed: ${{ steps.changes.outputs.gatekeeper_changed }}
+    container:
+      image: catthehacker/ubuntu:act-latest
     steps:
+      - name: 🧹 Maintenance (High Density Cleanup)
+        shell: bash
+        run: |
+          echo "Purging old build layers and dangling images..."
+          docker image prune -f
+          docker builder prune -f --filter "until=6h"
+
       - name: Checkout repository
         uses: actions/checkout@v4
         with:
-          fetch-depth: 0
+          fetch-depth: 2
+
+      - name: 🔍 Check for Gatekeeper changes
+        id: changes
+        shell: bash
+        run: |
+          if git rev-parse HEAD~1 >/dev/null 2>&1; then
+            if git diff --quiet HEAD~1 HEAD -- gatekeeper; then
+              echo "gatekeeper_changed=false" >> $GITHUB_OUTPUT
+              echo "ℹ️ No changes in gatekeeper/"
+            else
+              echo "gatekeeper_changed=true" >> $GITHUB_OUTPUT
+              echo "⚠️ Changes detected in gatekeeper/"
+            fi
+          else
+            echo "gatekeeper_changed=true" >> $GITHUB_OUTPUT
+            echo "🆕 First commit or no history, building gatekeeper."
+          fi
 
       - name: 🔍 Environment & Version ermitteln
         id: determine
@@ -105,19 +132,21 @@ jobs:
             TARGET="skip"
           fi
 
-          echo "target=$TARGET" >> $GITHUB_OUTPUT
-          echo "image_tag=$IMAGE_TAG" >> $GITHUB_OUTPUT
-          echo "env_file=$ENV_FILE" >> $GITHUB_OUTPUT
-          echo "traefik_host=$TRAEFIK_HOST" >> $GITHUB_OUTPUT
-          echo "next_public_base_url=$NEXT_PUBLIC_BASE_URL" >> $GITHUB_OUTPUT
-          echo "directus_url=$DIRECTUS_URL" >> $GITHUB_OUTPUT
-          echo "directus_host=$DIRECTUS_HOST" >> $GITHUB_OUTPUT
-          echo "project_name=$PROJECT_NAME" >> $GITHUB_OUTPUT
-          echo "is_prod=$IS_PROD" >> $GITHUB_OUTPUT
-          echo "gotify_title=$GOTIFY_TITLE" >> $GITHUB_OUTPUT
-          echo "gotify_priority=$GOTIFY_PRIORITY" >> $GITHUB_OUTPUT
-          echo "short_sha=$SHORT_SHA" >> $GITHUB_OUTPUT
-          echo "commit_msg=$COMMIT_MSG" >> $GITHUB_OUTPUT
+          {
+            echo "target=$TARGET"
+            echo "image_tag=$IMAGE_TAG"
+            echo "env_file=$ENV_FILE"
+            echo "traefik_host=$TRAEFIK_HOST"
+            echo "next_public_base_url=$NEXT_PUBLIC_BASE_URL"
+            echo "directus_url=$DIRECTUS_URL"
+            echo "directus_host=$DIRECTUS_HOST"
+            echo "project_name=$PROJECT_NAME"
+            echo "is_prod=$IS_PROD"
+            echo "gotify_title=$GOTIFY_TITLE"
+            echo "gotify_priority=$GOTIFY_PRIORITY"
+            echo "short_sha=$SHORT_SHA"
+            echo "commit_msg=$COMMIT_MSG"
+          } >> "$GITHUB_OUTPUT"
 
   # ──────────────────────────────────────────────────────────────────────────────
   # JOB 2: Quality Assurance (Lint & Test)
@@ -127,9 +156,13 @@ jobs:
     needs: prepare
     if: needs.prepare.outputs.target != 'skip'
     runs-on: docker
+    container:
+      image: catthehacker/ubuntu:act-latest
     steps:
       - name: Checkout repository
         uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
 
       - name: Setup Node.js
         uses: actions/setup-node@v4
@@ -166,20 +199,27 @@ jobs:
   # ──────────────────────────────────────────────────────────────────────────────
   # JOB 3: Build & Push Docker Image
   # ──────────────────────────────────────────────────────────────────────────────
-  build:
-    name: 🏗️ Build & Push
+  build-app:
+    name: 🏗️ Build App
     needs: prepare
     if: ${{ needs.prepare.outputs.target != 'skip' }}
     runs-on: docker
+    container:
+      image: catthehacker/ubuntu:act-latest
     steps:
       - name: Checkout repository
         uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
+
+      - name: 🐳 Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
 
       - name: 🔐 Registry Login
         run: |
           echo "${{ secrets.REGISTRY_PASS }}" | docker login registry.infra.mintel.me -u "${{ secrets.REGISTRY_USER }}" --password-stdin
 
-      - name: 🏗️ Docker Image bauen & pushen
+      - name: 🏗️ App bauen & pushen
         env:
           IMAGE_TAG: ${{ needs.prepare.outputs.image_tag }}
           TARGET:    ${{ needs.prepare.outputs.target }}
@@ -188,7 +228,6 @@ jobs:
           NEXT_PUBLIC_UMAMI_SCRIPT_URL:  ${{ needs.prepare.outputs.target == 'production' && secrets.NEXT_PUBLIC_UMAMI_SCRIPT_URL  || (needs.prepare.outputs.target == 'staging' && secrets.STAGING_NEXT_PUBLIC_UMAMI_SCRIPT_URL  || secrets.TESTING_NEXT_PUBLIC_UMAMI_SCRIPT_URL  || secrets.NEXT_PUBLIC_UMAMI_SCRIPT_URL) }}
           DIRECTUS_URL:                  ${{ needs.prepare.outputs.directus_url }}
         run: |
-          echo "🏗️ Building → $TARGET / $IMAGE_TAG"
           docker buildx build \
             --pull \
             --platform linux/arm64 \
@@ -201,15 +240,50 @@ jobs:
             --cache-to type=registry,ref=registry.infra.mintel.me/mintel/klz-cables.com:buildcache,mode=max \
             --push .
 
+  build-gatekeeper:
+    name: 🏗️ Build Gatekeeper
+    needs: prepare
+    if: ${{ needs.prepare.outputs.target != 'skip' }}
+    runs-on: docker
+    container:
+      image: catthehacker/ubuntu:act-latest
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
+
+      - name: 🐳 Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: 🔐 Registry Login
+        run: |
+          echo "${{ secrets.REGISTRY_PASS }}" | docker login registry.infra.mintel.me -u "${{ secrets.REGISTRY_USER }}" --password-stdin
+
       - name: 🏗️ Gatekeeper bauen & pushen
         env:
           IMAGE_TAG: ${{ needs.prepare.outputs.image_tag }}
+          CHG: ${{ needs.prepare.outputs.gatekeeper_changed }}
         run: |
-          docker buildx build \
-            --pull \
-            --platform linux/arm64 \
-            -t registry.infra.mintel.me/mintel/klz-cables-gatekeeper:$IMAGE_TAG \
-            --push ./gatekeeper
+          if [ "$CHG" == "true" ]; then
+            echo "🏗️ Building Gatekeeper (Changes detected)..."
+            docker buildx build \
+              --pull \
+              --platform linux/arm64 \
+              -t registry.infra.mintel.me/mintel/klz-cables-gatekeeper:$IMAGE_TAG \
+              --cache-from type=registry,ref=registry.infra.mintel.me/mintel/klz-cables-gatekeeper:buildcache \
+              --cache-to type=registry,ref=registry.infra.mintel.me/mintel/klz-cables-gatekeeper:buildcache,mode=max \
+              --push ./gatekeeper
+          else
+            echo "⏩ Skipping build, just re-tagging existing image..."
+            # Fast-track: tag the latest (or buildcache) as the new version
+            # We use buildx with cache but without rebuild triggers - it's near instant
+            docker buildx build \
+              --platform linux/arm64 \
+              -t registry.infra.mintel.me/mintel/klz-cables-gatekeeper:$IMAGE_TAG \
+              --cache-from type=registry,ref=registry.infra.mintel.me/mintel/klz-cables-gatekeeper:buildcache \
+              --push ./gatekeeper
+          fi
 
 
   # ──────────────────────────────────────────────────────────────────────────────
@@ -217,9 +291,11 @@ jobs:
   # ──────────────────────────────────────────────────────────────────────────────
   deploy:
     name: 🚀 Deploy
-    needs: [prepare, build, qa]
+    needs: [prepare, build-app, build-gatekeeper, qa]
     if: ${{ needs.prepare.outputs.target != 'skip' }}
     runs-on: docker
+    container:
+      image: catthehacker/ubuntu:act-latest
     env:
       TARGET:               ${{ needs.prepare.outputs.target }}
       IMAGE_TAG:            ${{ needs.prepare.outputs.image_tag }}
@@ -250,6 +326,8 @@ jobs:
     steps:
       - name: Checkout repository
         uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
 
       - name: 🚀 Deploy to ${{ env.TARGET }}
         run: |
@@ -264,9 +342,11 @@ jobs:
           # Generated by CI - $TARGET - $(date -u)
           NODE_ENV=production
           NEXT_PUBLIC_BASE_URL=$NEXT_PUBLIC_BASE_URL
+          NEXT_PUBLIC_TARGET=$TARGET
           NEXT_PUBLIC_UMAMI_WEBSITE_ID=$NEXT_PUBLIC_UMAMI_WEBSITE_ID
           NEXT_PUBLIC_UMAMI_SCRIPT_URL=$NEXT_PUBLIC_UMAMI_SCRIPT_URL
           SENTRY_DSN=$SENTRY_DSN
+          LOG_LEVEL=$( [[ "$TARGET" == "testing" || "$TARGET" == "development" ]] && echo "debug" || echo "info" )
           MAIL_HOST=$MAIL_HOST
           MAIL_PORT=$MAIL_PORT
           MAIL_USERNAME=$MAIL_USERNAME
@@ -288,6 +368,8 @@ jobs:
           INTERNAL_DIRECTUS_URL=http://directus:8055
           GATEKEEPER_PASSWORD=$GATEKEEPER_PASSWORD
 
+          TARGET=$TARGET
+          SENTRY_ENVIRONMENT=$TARGET
           IMAGE_TAG=$IMAGE_TAG
           TRAEFIK_HOST=$TRAEFIK_HOST
           ENV_FILE=$ENV_FILE
@@ -307,7 +389,7 @@ jobs:
             docker compose -p "$PROJECT_NAME" --env-file "$ENV_FILE" pull
             echo "→ Starting containers..."
             docker compose -p "$PROJECT_NAME" --env-file "$ENV_FILE" up -d --remove-orphans
-            docker system prune -f --filter "until=168h"
+            docker system prune -f --filter "until=24h"
             echo "→ Waiting 15s for warmup..."
             sleep 15
             echo "→ Container status:"
@@ -330,11 +412,15 @@ jobs:
       needs.deploy.result == 'success' && 
       github.event.inputs.skip_long_checks != 'true'
     runs-on: docker
+    container:
+      image: catthehacker/ubuntu:act-latest
     outputs:
       report_url: ${{ steps.save.outputs.report_url }}
     steps:
       - name: Checkout repository
         uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
 
       - name: Setup Node.js
         uses: actions/setup-node@v4
@@ -427,9 +513,11 @@ jobs:
   # ──────────────────────────────────────────────────────────────────────────────
   notifications:
     name: 🔔 Notifications
-    needs: [prepare, qa, build, deploy, pagespeed]
+    needs: [prepare, qa, build-app, build-gatekeeper, deploy, pagespeed]
     if: always()
     runs-on: docker
+    container:
+      image: catthehacker/ubuntu:act-latest
     steps:
       - name: 📊 Deployment Summary
         run: |

app/actions/contact.ts

@@ -1,54 +1,60 @@
-"use server";
+'use server';
 
-import client, { ensureAuthenticated } from "@/lib/directus";
-import { createItem } from "@directus/sdk";
-import { sendEmail } from "@/lib/mail/mailer";
-import ContactEmail from "@/components/emails/ContactEmail";
-import React from "react";
-import { getServerAppServices } from "@/lib/services/create-services.server";
+import client, { ensureAuthenticated } from '@/lib/directus';
+import { createItem } from '@directus/sdk';
+import { sendEmail } from '@/lib/mail/mailer';
+import ContactEmail from '@/components/emails/ContactEmail';
+import React from 'react';
+import { getServerAppServices } from '@/lib/services/create-services.server';
 
 export async function sendContactFormAction(formData: FormData) {
   const services = getServerAppServices();
   const logger = services.logger.child({ action: 'sendContactFormAction' });
-  const name = formData.get("name") as string;
-  const email = formData.get("email") as string;
-  const message = formData.get("message") as string;
-  const productName = formData.get("productName") as string | null;
+  const name = formData.get('name') as string;
+  const email = formData.get('email') as string;
+  const message = formData.get('message') as string;
+  const productName = formData.get('productName') as string | null;
 
   if (!name || !email || !message) {
-    logger.warn('Missing required fields in contact form', { name: !!name, email: !!email, message: !!message });
-    return { success: false, error: "Missing required fields" };
+    logger.warn('Missing required fields in contact form', {
+      name: !!name,
+      email: !!email,
+      message: !!message,
+    });
+    return { success: false, error: 'Missing required fields' };
   }
 
   // 1. Save to Directus
   try {
     await ensureAuthenticated();
     if (productName) {
-      await client.request(createItem('product_requests', {
-        product_name: productName,
-        email,
-        message
-      }));
+      await client.request(
+        createItem('product_requests', {
+          product_name: productName,
+          email,
+          message,
+        }),
+      );
       logger.info('Product request stored in Directus');
     } else {
-      await client.request(createItem('contact_submissions', {
-        name,
-        email,
-        message
-      }));
+      await client.request(
+        createItem('contact_submissions', {
+          name,
+          email,
+          message,
+        }),
+      );
       logger.info('Contact submission stored in Directus');
     }
   } catch (error) {
     logger.error('Failed to store submission in Directus', { error });
-    // We continue anyway to try sending the email, but maybe we should report this
+    services.errors.captureException(error, { action: 'directus_store_submission' });
   }
 
   // 2. Send Email
   logger.info('Sending contact form email', { email, productName });
 
-  const subject = productName
-    ? `Product Inquiry: ${productName}`
-    : "New Contact Form Submission";
+  const subject = productName ? `Product Inquiry: ${productName}` : 'New Contact Form Submission';
 
   const result = await sendEmail({
     subject,

components/CMSConnectivityNotice.tsx

@@ -2,6 +2,7 @@
 
 import React, { useEffect, useState } from 'react';
 import { AlertCircle, RefreshCw, Database } from 'lucide-react';
+import { config } from '../lib/config';
 
 export default function CMSConnectivityNotice() {
   const [status, setStatus] = useState<'checking' | 'ok' | 'error'>('checking');
@@ -12,14 +13,12 @@ export default function CMSConnectivityNotice() {
     // Only show if we've detected an issue AND we are in a context where we want to see it
     const checkCMS = async () => {
       const isDebug = new URLSearchParams(window.location.search).has('cms_debug');
-      const isLocal =
-        window.location.hostname === 'localhost' || window.location.hostname.includes('127.0.0.1');
-      const isStaging =
-        window.location.hostname.includes('staging') ||
-        window.location.hostname.includes('testing');
+      const isLocal = config.isDevelopment;
+      const isTesting = config.isTesting;
 
-      // Only proceed with check if it's developer context
-      if (!isLocal && !isStaging && !isDebug) return;
+      // Only proceed with check if it's developer context (Local or Testing)
+      // Staging and Production should NEVER see this unless forced with ?cms_debug
+      if (!isLocal && !isTesting && !isDebug) return;
 
       try {
         const response = await fetch('/api/health/cms');

docker-compose.yml

@@ -75,6 +75,7 @@ services:
       # Error Tracking
       SENTRY_DSN: ${SENTRY_DSN}
       SENTRY_ENVIRONMENT: ${TARGET:-development}
+      LOGGER_LEVEL: ${LOG_LEVEL:-info}
     volumes:
       - ./directus/uploads:/directus/uploads
       - ./directus/extensions:/directus/extensions

lib/config.ts

@@ -13,11 +13,15 @@ let memoizedConfig: ReturnType<typeof createConfig> | undefined;
 function createConfig() {
   const env = envSchema.parse(getRawEnv());
 
+  const target = env.NEXT_PUBLIC_TARGET || env.TARGET;
+
   return {
     env: env.NODE_ENV,
-    isProduction: env.NODE_ENV === 'production',
-    isDevelopment: env.NODE_ENV === 'development',
-    isTest: env.NODE_ENV === 'test',
+    target,
+    isProduction: target === 'production',
+    isStaging: target === 'staging',
+    isTesting: target === 'testing',
+    isDevelopment: target === 'development' || env.NODE_ENV === 'development',
 
     baseUrl: env.NEXT_PUBLIC_BASE_URL,
 
@@ -87,15 +91,21 @@ export const config = {
   get env() {
     return getConfig().env;
   },
+  get target() {
+    return getConfig().target;
+  },
   get isProduction() {
     return getConfig().isProduction;
   },
+  get isStaging() {
+    return getConfig().isStaging;
+  },
+  get isTesting() {
+    return getConfig().isTesting;
+  },
   get isDevelopment() {
     return getConfig().isDevelopment;
   },
-  get isTest() {
-    return getConfig().isTest;
-  },
   get baseUrl() {
     return getConfig().baseUrl;
   },

lib/directus.ts

@@ -1,5 +1,6 @@
 import { createDirectus, rest, authentication, readItems, readCollections } from '@directus/sdk';
 import { config } from './config';
+import * as Sentry from '@sentry/nextjs';
 
 const { url, adminEmail, password, token, proxyPath, internalUrl } = config.directus;
 
@@ -8,6 +9,21 @@ const effectiveUrl = typeof window === 'undefined' && internalUrl ? internalUrl
 
 const client = createDirectus(effectiveUrl).with(rest()).with(authentication());
 
+/**
+ * Helper to determine if we should show detailed errors
+ */
+const shouldShowDevErrors = config.isTesting || config.isDevelopment;
+
+/**
+ * Genericizes error messages for production/staging
+ */
+function formatError(error: any) {
+  if (shouldShowDevErrors) {
+    return error.message || 'An unexpected error occurred.';
+  }
+  return 'A system error occurred. Our team has been notified.';
+}
+
 export async function ensureAuthenticated() {
   if (token) {
     client.setToken(token);
@@ -17,6 +33,7 @@ export async function ensureAuthenticated() {
     try {
       await client.login(adminEmail, password);
     } catch (e) {
+      Sentry.captureException(e);
       console.error('Failed to authenticate with Directus:', e);
     }
   }
@@ -61,6 +78,7 @@ export async function getProducts(locale: string = 'de') {
     );
     return items.map((item) => mapDirectusProduct(item, locale));
   } catch (error) {
+    Sentry.captureException(error);
     console.error('Error fetching products:', error);
     return [];
   }
@@ -86,6 +104,7 @@ export async function getProductBySlug(slug: string, locale: string = 'de') {
     if (!items || items.length === 0) return null;
     return mapDirectusProduct(items[0], locale);
   } catch (error) {
+    Sentry.captureException(error);
     console.error(`Error fetching product ${slug}:`, error);
     return null;
   }
@@ -98,13 +117,15 @@ export async function checkHealth() {
       await ensureAuthenticated();
       await client.request(readCollections());
     } catch (e: any) {
+      Sentry.captureException(e);
       console.error('Directus authentication failed during health check:', e);
       return {
         status: 'error',
-        message:
-          'Authentication failed. Check your DIRECTUS_ADMIN_EMAIL and DIRECTUS_ADMIN_PASSWORD.',
+        message: shouldShowDevErrors
+          ? 'Authentication failed. Check your DIRECTUS_ADMIN_EMAIL and DIRECTUS_ADMIN_PASSWORD.'
+          : 'CMS is currently unavailable due to an internal authentication error.',
         code: 'AUTH_FAILED',
-        details: e.message,
+        details: shouldShowDevErrors ? e.message : undefined,
       };
     }
 
@@ -112,6 +133,7 @@ export async function checkHealth() {
     try {
       await client.request(readItems('products', { limit: 1 }));
     } catch (e: any) {
+      Sentry.captureException(e);
       if (
         e.message?.includes('does not exist') ||
         e.code === 'INVALID_PAYLOAD' ||
@@ -119,23 +141,28 @@ export async function checkHealth() {
       ) {
         return {
           status: 'error',
-          message: 'The "products" collection is missing or inaccessible. Please sync your data.',
+          message: shouldShowDevErrors
+            ? 'The "products" collection is missing or inaccessible. Please sync your data.'
+            : 'Required data structures are currently unavailable.',
           code: 'SCHEMA_MISSING',
         };
       }
       return {
         status: 'error',
-        message: `Schema error: ${e.message}`,
+        message: shouldShowDevErrors
+          ? `Schema error: ${e.message}`
+          : 'The data schema is currently misconfigured.',
         code: 'SCHEMA_ERROR',
       };
     }
 
     return { status: 'ok', message: 'Directus is reachable and responding.' };
   } catch (error: any) {
+    Sentry.captureException(error);
     console.error('Directus health check failed with unexpected error:', error);
     return {
       status: 'error',
-      message: error.message || 'An unexpected error occurred while connecting to the CMS.',
+      message: formatError(error),
       code: error.code || 'UNKNOWN',
     };
   }

lib/env.ts

@@ -11,6 +11,9 @@ const preprocessEmptyString = (val: unknown) => (val === '' ? undefined : val);
 export const envSchema = z.object({
   NODE_ENV: z.enum(['development', 'production', 'test']).default('development'),
   NEXT_PUBLIC_BASE_URL: z.preprocess(preprocessEmptyString, z.string().url()),
+  NEXT_PUBLIC_TARGET: z
+    .enum(['development', 'testing', 'staging', 'production'])
+    .default('development'),
 
   // Analytics
   NEXT_PUBLIC_UMAMI_WEBSITE_ID: z.preprocess(preprocessEmptyString, z.string().optional()),
@@ -45,6 +48,9 @@ export const envSchema = z.object({
   DIRECTUS_ADMIN_PASSWORD: z.preprocess(preprocessEmptyString, z.string().optional()),
   DIRECTUS_API_TOKEN: z.preprocess(preprocessEmptyString, z.string().optional()),
   INTERNAL_DIRECTUS_URL: z.preprocess(preprocessEmptyString, z.string().url().optional()),
+
+  // Deploy Target
+  TARGET: z.enum(['development', 'testing', 'staging', 'production']).default('development'),
 });
 
 export type Env = z.infer<typeof envSchema>;
@@ -57,6 +63,7 @@ export function getRawEnv() {
   return {
     NODE_ENV: process.env.NODE_ENV,
     NEXT_PUBLIC_BASE_URL: process.env.NEXT_PUBLIC_BASE_URL,
+    NEXT_PUBLIC_TARGET: process.env.NEXT_PUBLIC_TARGET,
     NEXT_PUBLIC_UMAMI_WEBSITE_ID: process.env.NEXT_PUBLIC_UMAMI_WEBSITE_ID,
     NEXT_PUBLIC_UMAMI_SCRIPT_URL: process.env.NEXT_PUBLIC_UMAMI_SCRIPT_URL,
     SENTRY_DSN: process.env.SENTRY_DSN,
@@ -72,5 +79,6 @@ export function getRawEnv() {
     DIRECTUS_ADMIN_PASSWORD: process.env.DIRECTUS_ADMIN_PASSWORD,
     DIRECTUS_API_TOKEN: process.env.DIRECTUS_API_TOKEN,
     INTERNAL_DIRECTUS_URL: process.env.INTERNAL_DIRECTUS_URL,
+    TARGET: process.env.TARGET,
   };
 }