cd5640ebd2
- Move ci-test.sh and setup.sh to scripts/ - Trim docs/src/zig-cli.md to current structure - Replace hardcoded secrets with placeholders in configs - Update .gitignore to block .env*, secrets/, keys, build artifacts - Slim README.md to reflect current CLI/TUI split - Add cleanup trap to ci-test.sh - Ensure no secrets are committed
49 lines
1.1 KiB
YAML
49 lines
1.1 KiB
YAML
redis:
|
|
url: "redis://redis:6379"
|
|
max_connections: 10
|
|
|
|
auth:
|
|
enabled: true
|
|
api_keys:
|
|
homelab_admin:
|
|
hash: b444f7d99edd0e32c838d900c4f0dfab86690b55871b587b730f3bc84812dd5f
|
|
admin: true
|
|
roles:
|
|
- admin
|
|
permissions:
|
|
'*': true
|
|
homelab_user:
|
|
hash: 5badb9721b0cb19f5be512854885cadbc7490afc0de1f62db5ae3144c6cc294c
|
|
admin: false
|
|
roles:
|
|
- researcher
|
|
permissions:
|
|
'experiments': true
|
|
'datasets': true
|
|
'jupyter': true
|
|
|
|
server:
|
|
address: ":9101"
|
|
tls:
|
|
enabled: true
|
|
cert_file: "/app/ssl/cert.pem"
|
|
key_file: "/app/ssl/key.pem"
|
|
|
|
security:
|
|
rate_limit:
|
|
enabled: true
|
|
requests_per_minute: 60
|
|
burst_size: 10
|
|
ip_whitelist:
|
|
- "127.0.0.1"
|
|
- "::1"
|
|
- "172.21.0.1" # Docker gateway
|
|
|
|
# Prometheus metrics
|
|
metrics:
|
|
enabled: true
|
|
listen_addr: ":9100"
|
|
tls:
|
|
enabled: true
|
|
cert_file: "/app/ssl/cert.pem"
|
|
key_file: "/app/ssl/key.pem"
|