Spaces:
Running
Running
update
Browse files
README.md
CHANGED
|
@@ -10,24 +10,10 @@ license: agpl-3.0
|
|
| 10 |
secrets:
|
| 11 |
- name: HF_TOKEN
|
| 12 |
description: HF token with WRITE access — enables DB+uploads backup persistence to a private HF Dataset.
|
| 13 |
-
- name: JWT_SECRET
|
| 14 |
-
description: (Optional) Random 48-byte string. Auto-generated on first boot and persisted to backup.
|
| 15 |
- name: CLOUDFLARE_WORKERS_TOKEN
|
| 16 |
-
description:
|
| 17 |
-
- name:
|
| 18 |
-
description:
|
| 19 |
-
- name: STORAGE_PROVIDER
|
| 20 |
-
description: (Optional) "local" (default) or "cloudflare" to offload media to R2.
|
| 21 |
-
- name: CLOUDFLARE_ACCOUNT_ID
|
| 22 |
-
description: (Optional, if STORAGE_PROVIDER=cloudflare) R2 account ID.
|
| 23 |
-
- name: CLOUDFLARE_ACCESS_KEY
|
| 24 |
-
description: (Optional, if STORAGE_PROVIDER=cloudflare) R2 access key ID.
|
| 25 |
-
- name: CLOUDFLARE_SECRET_ACCESS_KEY
|
| 26 |
-
description: (Optional, if STORAGE_PROVIDER=cloudflare) R2 secret access key.
|
| 27 |
-
- name: CLOUDFLARE_BUCKETNAME
|
| 28 |
-
description: (Optional, if STORAGE_PROVIDER=cloudflare) R2 bucket name.
|
| 29 |
-
- name: CLOUDFLARE_BUCKET_URL
|
| 30 |
-
description: (Optional, if STORAGE_PROVIDER=cloudflare) R2 public bucket URL.
|
| 31 |
---
|
| 32 |
|
| 33 |
[](https://github.com/somratpro/huggingpost)
|
|
|
|
| 10 |
secrets:
|
| 11 |
- name: HF_TOKEN
|
| 12 |
description: HF token with WRITE access — enables DB+uploads backup persistence to a private HF Dataset.
|
|
|
|
|
|
|
| 13 |
- name: CLOUDFLARE_WORKERS_TOKEN
|
| 14 |
+
description: Cloudflare API token to auto-provision an outbound proxy.
|
| 15 |
+
- name: UPTIMEROBOT_API_KEY
|
| 16 |
+
description: UptimeRobot API key for automatic monitor setup.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 17 |
---
|
| 18 |
|
| 19 |
[](https://github.com/somratpro/huggingpost)
|
start.sh
CHANGED
|
@@ -78,6 +78,12 @@ export NEXT_PUBLIC_UPLOAD_STATIC_DIRECTORY="${NEXT_PUBLIC_UPLOAD_STATIC_DIRECTOR
|
|
| 78 |
export IS_GENERAL="${IS_GENERAL:-true}"
|
| 79 |
export NX_ADD_PLUGINS="${NX_ADD_PLUGINS:-false}"
|
| 80 |
export NODE_ENV="${NODE_ENV:-production}"
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 81 |
|
| 82 |
# Sync config
|
| 83 |
export SYNC_INTERVAL="${SYNC_INTERVAL:-300}"
|
|
|
|
| 78 |
export IS_GENERAL="${IS_GENERAL:-true}"
|
| 79 |
export NX_ADD_PLUGINS="${NX_ADD_PLUGINS:-false}"
|
| 80 |
export NODE_ENV="${NODE_ENV:-production}"
|
| 81 |
+
# HF Space proxy rewrites Set-Cookie Domain to .hf.space which is a public
|
| 82 |
+
# suffix — browsers reject such cookies. NOT_SECURED=true makes the backend
|
| 83 |
+
# also send the JWT as an `auth` response header; the frontend JS reads it
|
| 84 |
+
# and sets the cookie via document.cookie (no domain attr) so it lands on
|
| 85 |
+
# the exact hostname and the browser accepts it.
|
| 86 |
+
export NOT_SECURED="${NOT_SECURED:-true}"
|
| 87 |
|
| 88 |
# Sync config
|
| 89 |
export SYNC_INTERVAL="${SYNC_INTERVAL:-300}"
|