-
Notifications
You must be signed in to change notification settings - Fork 21
Expand file tree
/
Copy pathconfig.yaml
More file actions
242 lines (223 loc) · 8.59 KB
/
config.yaml
File metadata and controls
242 lines (223 loc) · 8.59 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
http:
host: 0.0.0.0
port: 8080
allow_cors: true
with_prometheus: true
log:
# Comment the following line to disable the logging
file_path: "./log.log"
levels:
oramacore: trace
oramacore_lib: trace
orama_js_pool: info
writer_side:
output:
type: in-memory
# type: rabbitmq
# host: localhost
# port: 5552
# user: guest
# password: guest
# v_host: /
# stream_name: oramacore-operations
# client_provided_name: oramacore-producer
# producer_name: write
hooks:
# Domain restrictions for hook HTTP calls (mutually exclusive):
# 'denied_domains' to blocklist, 'allowed_domains' to allowlist
# It supports also ip wildcards: 10.0.0.*
# denied_domains:
# - "example.org"
# allowed_domains:
# - "api.example.com"
# Timeout for hook JavaScript runtime to initialize
evaluation_timeout: 200ms
# Timeout for hook execution
execution_timeout: 1s
# Uncomment to enable secrets fetched from external providers (e.g. AWS Secrets Manager).
# Secrets are cached in memory with configurable TTL and passed to hooks as a third argument.
# Key pattern: oramacore_<collection_uuid>_<secretKey>
# Multiple providers can be specified as a list; secrets are merged (later entries override).
# secrets_manager:
# - aws:
# region: us-east-1
# ttl: 5m
# access_key_id: test
# secret_access_key: test
# - local:
# secrets:
# col1_TOKEN: my-token
# Replace the following value with your own API key
master_api_key: my-master-api-key
config:
data_dir: ./.data/writer
# The maximum number of embeddings that can be stored in the queue
# before the writer starts to be blocked
# NB: the elements are in memory, so be careful with this value
embedding_queue_limit: 50000
# The number of the document insertions after the write side will commit the changes
insert_batch_commit_size: 50000000
# The default embedding model used to calculate the embeddings
# if not specified in the collection creation
default_embedding_model: BGESmall
# The maximum number of request to javascript runtime that can be stored in the queue
# NB: the elements are in memory, so be careful with this value
javascript_queue_limit: 500000
# Set interval for commiting the changes to the disk
commit_interval: 1m
# Temporary index cleanup configuration
temp_index_cleanup:
# How often to run cleanup (default: 1 hour)
cleanup_interval: 1h
# Maximum age before cleanup (default: 12 hours)
max_age: 12h
# Enable/disable cleanup (default: true)
enabled: true
# Uncomment to allow JWT validation with multiple providers
# jwt:
# providers:
# - name: "internal-dashboard"
# jwks_url: http://localhost:3000/api/.well-known/jwks.json
# issuers:
# - http://localhost:3000
# audiences:
# - http://localhost:8080
# refresh_interval: 1h
# # Add more providers as needed:
# # - name: "auth0-production"
# # jwks_url: https://your-tenant.auth0.com/.well-known/jwks.json
# # issuers:
# # - https://your-tenant.auth0.com/
# # audiences:
# # - https://api.yourservice.com
reader_side:
# Optional on the reader side
master_api_key: my-master-api-key
input:
type: in-memory
# type: rabbitmq
# host: localhost
# port: 5552
# user: guest
# password: guest
# v_host: /
# stream_name: oramacore-operations
# client_provided_name: oramacore-producer
# consumer_name: reader
config:
data_dir: ./.data/reader
# The number of the write operation after the read side will commit the changes
insert_batch_commit_size: 50000000
# Set interval for commiting the changes to the disk
commit_interval: 10m
# Each Nth commit will be forced, regardless of per-collection thresholds
force_commit: 4
# Per-collection commit thresholds
# Uncomment to customize (these are the defaults)
collection_commit:
# Number of operations before collection commits immediately
operation_threshold: 3000
# Time since last commit before collection participates in global commit
time_threshold: 10m
hooks:
# Domain restrictions for hook HTTP calls (mutually exclusive):
# 'denied_domains' to blocklist, 'allowed_domains' to allowlist
# It supports also ip wildcards: 10.0.0.*
# denied_domains:
# - "example.org"
# allowed_domains:
# - "api.example.com"
# Timeout for hook JavaScript runtime to initialize
evaluation_timeout: 200ms
# Timeout for hook execution
execution_timeout: 1s
# Uncomment to allow analytics
analytics:
api_key: my-analytics-api-key
metadata_from_headers:
- header: user-agent
metadata_key: ua
- header: CF-Connecting-IP
metadata_key: ip
- header: CF-IPCountry
metadata_key: country
- header: continent
metadata_key: continent
- header: colo
metadata_key: colo
- header: latitude
metadata_key: latitude
- header: longitude
metadata_key: longitude
# Uncomment to enable secrets fetched from external providers (e.g. AWS Secrets Manager).
# Secrets are cached in memory with configurable TTL and passed to hooks as a third argument.
# Key pattern: oramacore_<collection_uuid>_<secretKey>
# Multiple providers can be specified as a list; secrets are merged (later entries override).
# secrets_manager:
# - aws:
# region: us-east-1
# ttl: 5m
# access_key_id: test
# secret_access_key: test
# - local:
# secrets:
# col1_TOKEN: my-token
# Uncomment to enable customer JWT validation for search requests.
# This allows customers to use their own identity provider (IdP) for authentication.
# The JWT must include an "orak" claim containing the collection's read API key.
# Additional claims can be accessed by the beforeSearch hook to apply custom restrictions.
# Example JWT claim: {"orak":"c1_my-read-api-key", "country": "US", "iss":"https://issuer"}
jwt:
providers:
- name: "Supabase"
jwks_url: https://czjqejhvicpcufovzrtj.supabase.co/auth/v1/.well-known/jwks.json
issuers:
- https://czjqejhvicpcufovzrtj.supabase.co/auth/v1
audiences:
- authenticated
refresh_interval: 1h
# Add more providers as needed for different customers:
# - name: "auth0-production"
# jwks_url: https://your-tenant.auth0.com/.well-known/jwks.json
# issuers:
# - https://your-tenant.auth0.com/
# audiences:
# - https://api.yourservice.com
ai_server:
scheme: http
host: 0.0.0.0
port: 50051
api_key: ""
max_connections: 15
total_threads: 12
embeddings:
default_model_group: small
dynamically_load_models: false
execution_providers:
#- CUDAExecutionProvider
- CPUExecutionProvider
total_threads: 8
# automatic_embeddings_selector:
# model: "gpt-4.1"
# provider: openai
llm:
local: true
port: 8000
host: 0.0.0.0
model: "Qwen/Qwen2.5-3B-Instruct"
# Remote LLM configuration
# Uncomment the lines below and comment the above to use remote LLM
# local: false
# host: "https://api.groq.com/openai/v1"
# model: "openai/gpt-oss-120b"
# api_key: "your-api-key-here"
remote_llms:
# - provider: openai
# api_key: sk-
# default_model: "gpt-4.1"
# - provider: together
# api_key: "sk-"
# default_model: "nvidia/Llama-3.1-Nemotron-70B-Instruct-HF"
# - provider: fireworks
# api_key: "sk-"
# default_model: "accounts/fireworks/models/llama-v3p1-8b-instruct"