mirror of
https://github.com/DeBrosOfficial/orama.git
synced 2026-03-17 14:36:58 +00:00
fd87eec476
- Invalidate plaintext refresh tokens (migration 019) - Add `--sign` flag to `orama build` for rootwallet manifest signing - Add `--ca-fingerprint` TOFU verification for production joins/invites - Save cluster secrets from join (RQLite auth, Olric key, IPFS peers) - Add RQLite auth config fields
33 lines
783 B
Desktop File
33 lines
783 B
Desktop File
[Unit]
|
|
Description=IPFS Cluster Service ({{.NodeType}})
|
|
After=orama-ipfs-{{.NodeType}}.service
|
|
Wants=orama-ipfs-{{.NodeType}}.service
|
|
Requires=orama-ipfs-{{.NodeType}}.service
|
|
|
|
[Service]
|
|
Type=simple
|
|
User=orama
|
|
Group=orama
|
|
ProtectSystem=strict
|
|
ProtectHome=yes
|
|
NoNewPrivileges=yes
|
|
PrivateDevices=yes
|
|
ProtectKernelTunables=yes
|
|
ProtectKernelModules=yes
|
|
RestrictNamespaces=yes
|
|
ReadWritePaths={{.ClusterPath}} {{.OramaDir}}
|
|
WorkingDirectory={{.HomeDir}}
|
|
Environment=HOME={{.HomeDir}}
|
|
Environment=CLUSTER_PATH={{.ClusterPath}}
|
|
ExecStart=/usr/local/bin/ipfs-cluster-service daemon --config {{.ClusterPath}}/service.json
|
|
Restart=always
|
|
RestartSec=5
|
|
StandardOutput=journal
|
|
StandardError=journal
|
|
SyslogIdentifier=ipfs-cluster-{{.NodeType}}
|
|
|
|
PrivateTmp=yes
|
|
|
|
[Install]
|
|
WantedBy=multi-user.target
|