oib/aitbc
1
0
Fork 0
Code Issues Pull Requests Actions 7 Packages Projects Releases Wiki Activity
Files
9bb4791a97a476502b6188e8316fa5f83a98bb38
aitbc/systemd/aitbc-agent-coordinator.service
aitbc 9bb4791a97
Some checks failed
Systemd Sync / sync-systemd (push) Has been cancelled
Details
Integration Tests / test-service-integration (push) Has been cancelled
Details
Python Tests / test-python (push) Has been cancelled
Details
Security Scanning / security-scan (push) Has been cancelled
Details
Add error handling for chmod operations in database initialization and remove restrictive systemd security settings 
- Add try-except blocks around os.chmod calls in init_db to ignore OSError exceptions
- Add comments noting permission errors are ignored for read-only filesystems in containers
- Wrap chmod for database file, WAL-shm, and WAL-wal files with error handling
- Remove StartLimitBurst and StartLimitIntervalSec from agent-coordinator systemd service
- Remove ProtectSystem, ProtectHome, and ReadWritePaths security
2026-04-15 08:29:03 +02:00

41 lines
958 B
Desktop File
Raw Blame History

[Unit]
Description=AITBC Agent Coordinator Service
After=network.target redis.service
[Service]
Type=simple
User=root
Group=root
WorkingDirectory=/opt/aitbc/apps/agent-coordinator
Environment=PATH=/usr/bin:/usr/local/bin:/usr/bin:/bin
Environment=PYTHONPATH=/opt/aitbc/apps/agent-coordinator/src
EnvironmentFile=/etc/aitbc/production.env
# Agent coordinator execution
ExecStartPre=/bin/mkdir -p /var/lib/aitbc/data/agent-coordinator /var/log/aitbc/agent-coordinator
ExecStart=/opt/aitbc/venv/bin/python -m uvicorn src.app.main:app --host 0.0.0.0 --port 9001
ExecReload=/bin/kill -HUP $MAINPID
KillMode=mixed
TimeoutStopSec=10
# Production reliability
Restart=always
RestartSec=5
# Production logging
StandardOutput=journal
StandardError=journal
SyslogIdentifier=aitbc-agent-coordinator
# Production security
NoNewPrivileges=true
# Production performance
LimitNOFILE=65536
LimitNPROC=4096
MemoryMax=2G
CPUQuota=50%
[Install]
WantedBy=multi-user.target
Reference in New Issue View Git Blame Copy Permalink