fix: repair minio-init cors setup script

- replace fragile heredoc in compose entrypoint

- use shell-safe printf json for mc cors set

docker-compose.yml

@@ -86,23 +86,14 @@ services:
     image: minio/mc:latest
     depends_on:
       - minio
-    entrypoint: >
-      /bin/sh -c "
-      mc alias set local http://minio:9000 ${MINIO_ROOT_USER:-minioadmin} ${MINIO_ROOT_PASSWORD:-minioadmin} &&
-      mc mb --ignore-existing local/${S3_BUCKET_NAME:-messenger-media} &&
-      cat > /tmp/cors-rules.json <<EOF &&
-      [
-        {
-          \"AllowedHeaders\": [\"*\"],
-          \"AllowedMethods\": [\"GET\", \"PUT\", \"POST\", \"HEAD\"],
-          \"AllowedOrigins\": [\"${S3_CORS_ALLOW_ORIGIN:-*}\"],
-          \"ExposeHeaders\": [\"ETag\"],
-          \"MaxAgeSeconds\": 3600
-        }
-      ]
-      EOF
-      mc cors set local/${S3_BUCKET_NAME:-messenger-media} /tmp/cors-rules.json
-      "
+    entrypoint:
+      - /bin/sh
+      - -ec
+      - >
+        mc alias set local http://minio:9000 ${MINIO_ROOT_USER:-minioadmin} ${MINIO_ROOT_PASSWORD:-minioadmin};
+        mc mb --ignore-existing local/${S3_BUCKET_NAME:-messenger-media};
+        printf '[{"AllowedHeaders":["*"],"AllowedMethods":["GET","PUT","POST","HEAD"],"AllowedOrigins":["%s"],"ExposeHeaders":["ETag"],"MaxAgeSeconds":3600}]' "${S3_CORS_ALLOW_ORIGIN:-*}" > /tmp/cors-rules.json;
+        mc cors set local/${S3_BUCKET_NAME:-messenger-media} /tmp/cors-rules.json
     restart: "no"
 
   backend: