fix: resolve nginx permission crash in restricted environment

Dockerfile

@@ -60,11 +60,15 @@ COPY --from=frontend-builder /build/frontend/public           ./frontend/public
 COPY nginx.conf /etc/nginx/nginx.conf
 COPY supervisord.conf /etc/supervisor/conf.d/app.conf
 
-# ── Directories & Permissions ────────────────────────────────────────────────
-# Ensure all runtime directories exist and are writable by any user (Hugging Face)
+# ── Directories, Permissions & Cleanup ───────────────────────────────────────
+# Remove default nginx config to prevent conflicts
+RUN rm -f /etc/nginx/sites-enabled/default
+
+# Ensure all runtime directories exist and are writable by any user
 RUN mkdir -p /tmp/video_seg/uploads /tmp/video_seg/outputs \
+    && mkdir -p /tmp/client_temp /tmp/proxy_temp /tmp/fastcgi_temp /tmp/uwsgi_temp /tmp/scgi_temp \
     && mkdir -p /var/log/supervisor /var/run /var/lib/nginx /var/log/nginx \
-    && chmod -R 777 /tmp/video_seg \
+    && chmod -R 777 /tmp \
     && chmod -R 777 /var/log/supervisor \
     && chmod -R 777 /var/lib/nginx \
     && chmod -R 777 /var/log/nginx \

nginx.conf

@@ -1,14 +1,26 @@
 # Run nginx in a way compatible with non-root Docker environments
 # like Hugging Face Spaces.
-pid /tmp/nginx.pid;
-events { worker_processes 1; }
+
+# Send logs to /tmp to avoid permission issues in /var/log/nginx
+error_log /tmp/error.log;
+pid       /tmp/nginx.pid;
+
+worker_processes 1;
+
+events { 
+    worker_connections 1024; 
+}
 
 http {
+    # Move access logs as well
+    access_log /tmp/access.log;
+
     include       /etc/nginx/mime.types;
     default_type  application/octet-stream;
     sendfile      on;
 
     # Explicitly set paths for temporary files to /tmp
+    # This prevents crashes if /var/lib/nginx/... is not writable
     client_body_temp_path /tmp/client_temp;
     proxy_temp_path       /tmp/proxy_temp;
     fastcgi_temp_path     /tmp/fastcgi_temp;