ea15af1833
- Fix YAML tags in auth config struct (json -> yaml) - Update CLI configs to use pre-hashed API keys - Remove double hashing in WebSocket client - Fix port mapping (9102 -> 9103) in CLI commands - Update permission keys to use jobs:read, jobs:create, etc. - Clean up all debug logging from CLI and server - All user roles now authenticate correctly: * Admin: Can queue jobs and see all jobs * Researcher: Can queue jobs and see own jobs * Analyst: Can see status (read-only access) Multi-user authentication is now fully functional.
45 lines
834 B
YAML
45 lines
834 B
YAML
base_path: "/app/data/experiments"
|
|
|
|
auth:
|
|
enabled: true
|
|
api_keys:
|
|
homelab_user:
|
|
hash: "5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8" # "password"
|
|
admin: true
|
|
roles: ["user", "admin"]
|
|
permissions:
|
|
read: true
|
|
write: true
|
|
delete: true
|
|
|
|
server:
|
|
address: ":9101"
|
|
tls:
|
|
enabled: true
|
|
cert_file: "/app/ssl/cert.pem"
|
|
key_file: "/app/ssl/key.pem"
|
|
|
|
security:
|
|
rate_limit:
|
|
enabled: true
|
|
requests_per_minute: 30
|
|
ip_whitelist:
|
|
- "127.0.0.1"
|
|
- "::1"
|
|
- "192.168.0.0/16"
|
|
- "10.0.0.0/8"
|
|
|
|
redis:
|
|
url: "redis://redis:6379"
|
|
max_connections: 10
|
|
|
|
logging:
|
|
level: "info"
|
|
file: "/app/logs/app.log"
|
|
audit_file: "/app/logs/audit.log"
|
|
|
|
resources:
|
|
max_workers: 1
|
|
desired_rps_per_worker: 2
|
|
podman_cpus: "2"
|
|
podman_memory: "8g"
|