AI-Cognitive-Leap/agnes-the-ai-analyst
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
agnes-the-ai-analyst/server/limits-users.conf
Petr 26c4e0934d OSS cleanup: remove internal references, harden deployment, add config env interpolation 
Phase 1 - Internal reference cleanup:
- Delete dev_docs/meetings/ (internal meeting notes/transcripts)
- Replace hardcoded usernames (padak/matejkys/dasa) with deploy/generic
- Replace "Internal AI Data Analyst" with "AI Data Analyst"
- Replace keboola/internal_ai_data_analyst URLs with your-org/ai-data-analyst
- Replace /tmp/keboola_load/ with /tmp/data_analyst_staging/ in dev_docs

Phase 2 - Deployment hardening:
- Tighten sudoers wildcards to explicit paths (visudo, sudoers cp)
- setup.sh creates all groups (data-ops, dataread, data-private) and deploy user
- webapp-setup.sh copies sudoers-webapp from repo instead of inline definition
- deploy.sh conditional copy for data_description.md (not in git for OSS)
- deploy.sh ownership changed to deploy:data-ops for /data/{scripts,docs,examples}

Phase 3 - Config and misc:
- Add ${ENV_VAR} interpolation to config/loader.py
- Expand config/instance.yaml.example with all sections (admins, deployment, auth, etc.)
- Create config/.env.template for secret values
- Add MIT LICENSE
- Fix .gitignore: add .venv/, docs/data_description.md
- Fix README.md: CSV status Planned, remove metrics/, update license text
- Translate Czech comments in requirements.txt to English
- Fix test_account_service.py: mock username mapping instead of relying on instance config

All 118 tests pass.
2026-03-09 07:59:57 +01:00

25 lines
1.1 KiB
Text
Raw Blame History

# Resource limits for Data Broker Server users
# Deployed to /etc/security/limits.d/99-users.conf by deploy.sh
#
# Admin entries are managed by add-admin script (appended above the wildcard section)
# Wildcard rules at the bottom apply to all non-admin users
# === ADMIN ENTRIES (managed by add-admin - do not edit manually) ===
deploy soft nproc unlimited
deploy hard nproc unlimited
deploy - as unlimited
deploy - fsize unlimited
deploy - nofile 65535
# NEW_ADMIN_ENTRY_ABOVE_THIS_LINE (do not remove this marker)
# === DEFAULT LIMITS (all other users - protection against fork bombs) ===
* soft nproc 100
* hard nproc 150
* soft as 4194304
* hard as 6291456
* soft fsize 2097152
* hard fsize 4194304
* soft nofile 1024
* hard nofile 2048
* hard core 0
Reference in a new issue View git blame Copy permalink