github-starred/KohakuHub
2
0
Fork 0
mirror of https://github.com/KohakuBlueleaf/KohakuHub.git synced 2026-05-24 20:22:55 -05:00
Code Issues 6 Packages Projects Releases Wiki Activity
Files
test/unit-upstream
KohakuHub/docs/deployment/production.md
Kohaku-Blueleaf 5ef51adb95 update all documents
2025-10-22 02:42:35 +08:00

1.3 KiB
Raw Permalink Blame History

title, description, icon
title description icon
Production Deployment SSL, domain setup, external S3, security hardening i-carbon-cloud-upload

Production Deployment

Deploy KohakuHub for production use.

SSL & Domain

nginx config:

server {
    listen 443 ssl http2;
    server_name hub.yourdomain.com;
    ssl_certificate /path/to/cert.pem;
    ssl_certificate_key /path/to/key.pem;
}

Update base URL:

KOHAKU_HUB_BASE_URL: https://hub.yourdomain.com

External S3

Cloudflare R2:

KOHAKU_HUB_S3_ENDPOINT: https://account.r2.cloudflarestorage.com
KOHAKU_HUB_S3_PUBLIC_ENDPOINT: https://pub.r2.dev
KOHAKU_HUB_S3_REGION: auto
KOHAKU_HUB_S3_SIGNATURE_VERSION: s3v4

AWS S3:

KOHAKU_HUB_S3_ENDPOINT: https://s3.amazonaws.com
KOHAKU_HUB_S3_REGION: us-east-1
KOHAKU_HUB_S3_FORCE_PATH_STYLE: false

Security

Change all secrets:

python scripts/generate_secret.py
# Update SESSION_SECRET, ADMIN_SECRET_TOKEN

Change passwords:

  • PostgreSQL
  • MinIO
  • LakeFS

Scaling

Multi-worker:

command: uvicorn kohakuhub.main:app --workers 8

Database uses db.atomic() for safety.

Backups

docker exec postgres pg_dump -U hub kohakuhub | gzip > backup.sql.gz

See Security for hardening guide.

Reference in New Issue View Git Blame Copy Permalink