@opsimathically/nodenetproccalld 0.0.2 → 0.0.3
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +51 -5
- package/dist/index.d.mts +136 -1
- package/dist/index.d.ts +136 -1
- package/dist/index.js +875 -137
- package/dist/index.js.map +1 -1
- package/dist/index.mjs +870 -137
- package/dist/index.mjs.map +1 -1
- package/package.json +1 -1
- package/config/api_keys.config.json5 +0 -21
- package/config/server.config.json5 +0 -79
package/package.json
CHANGED
|
@@ -1,21 +0,0 @@
|
|
|
1
|
-
{
|
|
2
|
-
// API keys and privilege grants for auth_callback.
|
|
3
|
-
api_keys: [
|
|
4
|
-
{
|
|
5
|
-
key_id: 'admin_key_1',
|
|
6
|
-
api_key: 'replace_me_with_random_secret',
|
|
7
|
-
privileges: ['all_privileges'],
|
|
8
|
-
enabled: true,
|
|
9
|
-
identity_constraints: {
|
|
10
|
-
// Example: accept loopback clients only.
|
|
11
|
-
remote_address_regex: '^(127\\.0\\.0\\.1|::1|::ffff:127\\.0\\.0\\.1)$'
|
|
12
|
-
}
|
|
13
|
-
},
|
|
14
|
-
{
|
|
15
|
-
key_id: 'invoke_only_key_1',
|
|
16
|
-
api_key: 'replace_me_with_second_secret',
|
|
17
|
-
privileges: ['invoke_functions'],
|
|
18
|
-
enabled: false
|
|
19
|
-
}
|
|
20
|
-
]
|
|
21
|
-
}
|
|
@@ -1,79 +0,0 @@
|
|
|
1
|
-
{
|
|
2
|
-
// Friendly name that clients can use in their own config maps.
|
|
3
|
-
information: {
|
|
4
|
-
server_name: 'daemon_server_1'
|
|
5
|
-
},
|
|
6
|
-
|
|
7
|
-
// Bind target for tls.createServer.
|
|
8
|
-
network: {
|
|
9
|
-
bind_addr: '0.0.0.0',
|
|
10
|
-
tcp_listen_port: 6767
|
|
11
|
-
},
|
|
12
|
-
|
|
13
|
-
// PEM files are resolved relative to this config file unless absolute paths are used.
|
|
14
|
-
tls_mtls: {
|
|
15
|
-
key_file: './certs/server.key.pem',
|
|
16
|
-
cert_file: './certs/server.cert.pem',
|
|
17
|
-
ca_file: './certs/ca.cert.pem',
|
|
18
|
-
// crl_file: './certs/ca.crl.pem',
|
|
19
|
-
min_version: 'TLSv1.3',
|
|
20
|
-
handshake_timeout_ms: 5000,
|
|
21
|
-
request_timeout_ms: 15000,
|
|
22
|
-
max_frame_bytes: 1048576
|
|
23
|
-
},
|
|
24
|
-
|
|
25
|
-
workerprocedurecall: {
|
|
26
|
-
count: 4,
|
|
27
|
-
constructor_options: {
|
|
28
|
-
call_timeout_ms: 30000,
|
|
29
|
-
control_timeout_ms: 10000,
|
|
30
|
-
restart_on_failure: true,
|
|
31
|
-
max_restarts_per_worker: 6,
|
|
32
|
-
max_pending_calls_per_worker: 500
|
|
33
|
-
},
|
|
34
|
-
start_options: {
|
|
35
|
-
restart_base_delay_ms: 150,
|
|
36
|
-
restart_max_delay_ms: 5000,
|
|
37
|
-
restart_jitter_ms: 250
|
|
38
|
-
}
|
|
39
|
-
},
|
|
40
|
-
|
|
41
|
-
// Optional abuse controls from @opsimathically/networkprocedurecall.
|
|
42
|
-
abuse_controls: {
|
|
43
|
-
connection_controls: {
|
|
44
|
-
max_concurrent_sockets: 1024,
|
|
45
|
-
max_concurrent_handshakes: 256,
|
|
46
|
-
max_unauthenticated_sessions: 256,
|
|
47
|
-
per_ip_max_new_connections_per_window: 64,
|
|
48
|
-
tls_handshake_timeout_ms: 5000,
|
|
49
|
-
auth_message_timeout_ms: 5000
|
|
50
|
-
},
|
|
51
|
-
request_controls: {
|
|
52
|
-
max_in_flight_requests_per_connection: 128,
|
|
53
|
-
per_connection: {
|
|
54
|
-
enabled: true,
|
|
55
|
-
tokens_per_interval: 200,
|
|
56
|
-
interval_ms: 1000,
|
|
57
|
-
burst_tokens: 400
|
|
58
|
-
},
|
|
59
|
-
per_api_key: {
|
|
60
|
-
enabled: true,
|
|
61
|
-
tokens_per_interval: 1000,
|
|
62
|
-
interval_ms: 1000,
|
|
63
|
-
burst_tokens: 2000
|
|
64
|
-
},
|
|
65
|
-
per_ip: {
|
|
66
|
-
enabled: true,
|
|
67
|
-
tokens_per_interval: 500,
|
|
68
|
-
interval_ms: 1000,
|
|
69
|
-
burst_tokens: 1000
|
|
70
|
-
}
|
|
71
|
-
}
|
|
72
|
-
},
|
|
73
|
-
|
|
74
|
-
observability: {
|
|
75
|
-
enable_console_log: true,
|
|
76
|
-
log_worker_events: true,
|
|
77
|
-
metrics_log_interval_ms: 30000
|
|
78
|
-
}
|
|
79
|
-
}
|