Compare commits
2 Commits
fix/combin
...
37bf43c3ea
| Author | SHA1 | Date | |
|---|---|---|---|
| 37bf43c3ea | |||
| 563ccc5632 |
53
ai/compose.yml
Executable file → Normal file
53
ai/compose.yml
Executable file → Normal file
@@ -32,7 +32,7 @@ services:
|
||||
- default
|
||||
container_name: hermes
|
||||
entrypoint: ["/bin/bash", "-c",
|
||||
"bash /opt/data/hermes-tools/install.sh && /opt/hermes/.venv/bin/uv pip install openai mautrix[encryption] --system -q && exec /usr/bin/tini -g -- /opt/hermes/docker/entrypoint.sh \"$@\"",
|
||||
"bash /opt/data/hermes-tools/install.sh && exec /usr/bin/tini -g -- /opt/hermes/docker/entrypoint.sh \"$@\"",
|
||||
"hermes-entrypoint"]
|
||||
restart: always
|
||||
# Gateway run enables the internal API server on port 8642
|
||||
@@ -44,7 +44,7 @@ services:
|
||||
- API_SERVER_HOST=0.0.0.0
|
||||
- API_SERVER_KEY=hermes_local_key
|
||||
- GATEWAY_ALLOW_ALL_USERS=true
|
||||
- OPENROUTER_API_KEY=${OPEN...KEY}
|
||||
- OPENROUTER_API_KEY=${OPENROUTER_API_KEY}
|
||||
# ROCm for GPU-accelerated faster-whisper STT
|
||||
- HSA_OVERRIDE_GFX_VERSION=9.0.6
|
||||
- HCC_AMDGPU_TARGET=gfx906
|
||||
@@ -54,12 +54,6 @@ services:
|
||||
- TZ=America/Montreal
|
||||
volumes:
|
||||
- /mnt/HoardingCow_docker_data/Hermes/data:/opt/data
|
||||
# Syncthing-shared org files — read-only view of user's agenda
|
||||
- /mnt/HoardingCow_docker_data/Syncthing/telos-ro:/opt/data/telos-ro:ro
|
||||
# Syncthing-shared inbox — write tasks here, they sync to user's laptop
|
||||
- /mnt/HoardingCow_docker_data/Syncthing/telos-rw:/opt/data/telos-rw:rw
|
||||
# Persistent venv — Matrix bridge and other pip deps survive container rebuilds
|
||||
- /mnt/HoardingCow_docker_data/Hermes/venv:/opt/hermes/.venv
|
||||
devices:
|
||||
- /dev/kfd:/dev/kfd
|
||||
- /dev/dri:/dev/dri
|
||||
@@ -69,35 +63,6 @@ services:
|
||||
networks:
|
||||
- ai_backend
|
||||
|
||||
syncthing:
|
||||
image: syncthing/syncthing:latest
|
||||
container_name: syncthing
|
||||
hostname: syncthing
|
||||
restart: always
|
||||
ports:
|
||||
- "8384:8384"
|
||||
- "22000:22000"
|
||||
- "21027:21027/udp"
|
||||
environment:
|
||||
- TZ=America/Montreal
|
||||
volumes:
|
||||
- /mnt/HoardingCow_docker_data/Syncthing/config:/var/syncthing/config
|
||||
- /mnt/HoardingCow_docker_data/Syncthing/telos-ro:/telos-ro
|
||||
- /mnt/HoardingCow_docker_data/Syncthing/telos-rw:/telos-rw
|
||||
networks:
|
||||
- ai_backend
|
||||
- ai_net
|
||||
labels:
|
||||
- "traefik.enable=true"
|
||||
- "traefik.http.routers.syncthing-http.rule=Host(`syncthing.lazyworkhorse.net`)"
|
||||
- "traefik.http.routers.syncthing-http.entrypoints=web"
|
||||
- "traefik.http.routers.syncthing-http.middlewares=redirect-to-https"
|
||||
- "traefik.http.routers.syncthing-https.rule=Host(`syncthing.lazyworkhorse.net`)"
|
||||
- "traefik.http.routers.syncthing-https.entrypoints=websecure"
|
||||
- "traefik.http.routers.syncthing-https.tls=true"
|
||||
- "traefik.http.routers.syncthing-https.tls.certresolver=njalla"
|
||||
- "traefik.http.services.syncthing.loadbalancer.server.port=8384"
|
||||
|
||||
ollama:
|
||||
build:
|
||||
context: ./ollama
|
||||
@@ -150,7 +115,8 @@ services:
|
||||
- ai_backend
|
||||
|
||||
paperclip:
|
||||
image: ghcr.io/paperclipai/paperclip:v2026.517.0
|
||||
build:
|
||||
context: ./paperclip
|
||||
container_name: paperclip
|
||||
restart: always
|
||||
ports:
|
||||
@@ -159,8 +125,8 @@ services:
|
||||
- HOST=0.0.0.0
|
||||
- PORT=3100
|
||||
- SERVE_UI=true
|
||||
- DATABASE_URL=postgres://paperclip:***@paperclip-db:5432/paperclip
|
||||
- BETTER_AUTH_SECRET=${PAPE...CRET must be set}
|
||||
- DATABASE_URL=postgres://paperclip:${PAPERCLIP_DB_PASSWORD}@paperclip-db:5432/paperclip
|
||||
- BETTER_AUTH_SECRET=${PAPERCLIP_AUTH_SECRET:?PAPERCLIP_AUTH_SECRET must be set}
|
||||
- PAPERCLIP_PUBLIC_URL=https://paperclip.lazyworkhorse.net
|
||||
- PAPERCLIP_DEPLOYMENT_MODE=authenticated
|
||||
- PAPERCLIP_DEPLOYMENT_EXPOSURE=private
|
||||
@@ -174,7 +140,6 @@ services:
|
||||
- ai_backend
|
||||
labels:
|
||||
- "traefik.enable=true"
|
||||
- "traefik.docker.network=ai_net"
|
||||
|
||||
- "traefik.http.routers.paperclip-http.rule=Host(`paperclip.lazyworkhorse.net`)"
|
||||
- "traefik.http.routers.paperclip-http.entrypoints=web"
|
||||
@@ -338,8 +303,8 @@ networks:
|
||||
# - /home/gortium/infra:/data/workspace/infra
|
||||
# environment:
|
||||
# - TZ=America/Toronto
|
||||
# - OPENCLAW_GATEWAY_TOKEN=${OPEN...KEN}
|
||||
# - OPENROUTER_API_KEY=${OPEN...KEY}
|
||||
# - OPENCLAW_GATEWAY_TOKEN=${OPENCLAW_GATEWAY_TOKEN}
|
||||
# - OPENROUTER_API_KEY=${OPENROUTER_API_KEY}
|
||||
# # Point to the sidecar browser
|
||||
# - BROWSER_CDP_URL=http://openclaw-browser:9222
|
||||
# - BROWSER_EVALUATE_ENABLED=true
|
||||
@@ -384,7 +349,7 @@ networks:
|
||||
# - PGID=1000
|
||||
# - PUBLIC_KEY_FILE=/config/ssh/authorized_keys
|
||||
# - SUDO_ACCESS=false
|
||||
# - PASSWORD_ACCESS=***
|
||||
# - PASSWORD_ACCESS=false
|
||||
# volumes:
|
||||
# - /mnt/HoardingCow_docker_data/openclaw/ssh-config:/config
|
||||
# - /home/gortium/infra:/data/workspace/infra:ro
|
||||
|
||||
47
ai/paperclip/Dockerfile
Normal file
47
ai/paperclip/Dockerfile
Normal file
@@ -0,0 +1,47 @@
|
||||
# syntax=docker/dockerfile:1.20
|
||||
FROM ghcr.io/paperclipai/paperclip:v2026.517.0
|
||||
|
||||
# ── Install Hermes adapter npm package into seed directory ──────────
|
||||
# This seed data gets copied to the persistent volume on first boot
|
||||
# so the adapter is available without network access.
|
||||
USER root
|
||||
|
||||
RUN npm install --no-save --prefix /opt/paperclip-seed/adapter-plugins \
|
||||
hermes-paperclip-adapter@0.3.0
|
||||
|
||||
# Create adapter-plugins.json metadata (Paperclip reads this on startup
|
||||
# to discover which external adapters to load)
|
||||
RUN mkdir -p /opt/paperclip-seed && python3 -c "
|
||||
import json
|
||||
record = {
|
||||
'packageName': 'hermes-paperclip-adapter',
|
||||
'version': '0.3.0',
|
||||
'type': 'hermes',
|
||||
'installedAt': '2026-05-18T00:00:00.000Z',
|
||||
}
|
||||
with open('/opt/paperclip-seed/adapter-plugins.json', 'w') as f:
|
||||
json.dump([record], f, indent=2)
|
||||
"
|
||||
|
||||
# Ensure the adapter-plugins dir has a package.json (Paperclip expects one)
|
||||
RUN python3 -c "
|
||||
import json
|
||||
pkg = {
|
||||
'name': 'paperclip-adapter-plugins',
|
||||
'version': '0.0.0',
|
||||
'private': True,
|
||||
'description': 'Managed directory for Paperclip external adapter plugins.',
|
||||
}
|
||||
with open('/opt/paperclip-seed/adapter-plugins/package.json', 'w') as f:
|
||||
json.dump(pkg, f, indent=2)
|
||||
"
|
||||
|
||||
# ── Custom entrypoint ──────────────────────────────────────────────
|
||||
# Seeds the Hermes adapter on fresh volumes, then runs original logic.
|
||||
COPY docker-entrypoint.sh /usr/local/bin/paperclip-entrypoint.sh
|
||||
RUN chmod +x /usr/local/bin/paperclip-entrypoint.sh
|
||||
|
||||
USER node
|
||||
|
||||
ENTRYPOINT ["/usr/local/bin/paperclip-entrypoint.sh"]
|
||||
CMD ["node", "--import", "./server/node_modules/tsx/dist/loader.mjs", "server/dist/index.js"]
|
||||
35
ai/paperclip/docker-entrypoint.sh
Normal file
35
ai/paperclip/docker-entrypoint.sh
Normal file
@@ -0,0 +1,35 @@
|
||||
#!/bin/sh
|
||||
set -e
|
||||
|
||||
# ── Seed Hermes adapter if volume is fresh ──────────────────────────
|
||||
PAPERCLIP_HOME="${PAPERCLIP_HOME:-/paperclip}"
|
||||
if [ ! -f "${PAPERCLIP_HOME}/adapter-plugins.json" ]; then
|
||||
echo "[paperclip] Seeding Hermes adapter plugin..."
|
||||
cp -r /opt/paperclip-seed/* "${PAPERCLIP_HOME}/"
|
||||
chown -R "${USER_UID:-1000}:${USER_GID:-1000}" \
|
||||
"${PAPERCLIP_HOME}/adapter-plugins" \
|
||||
"${PAPERCLIP_HOME}/adapter-plugins.json"
|
||||
echo "[paperclip] Hermes adapter seeded. Ready to create Hermes agents."
|
||||
fi
|
||||
|
||||
# ── Original entrypoint logic (UID/GID adjustment) ──────────────────
|
||||
PUID="${USER_UID:-1000}"
|
||||
PGID="${USER_GID:-1000}"
|
||||
changed=0
|
||||
|
||||
if [ "$(id -u node)" -ne "$PUID" ]; then
|
||||
usermod -o -u "$PUID" node
|
||||
changed=1
|
||||
fi
|
||||
|
||||
if [ "$(id -g node)" -ne "$PGID" ]; then
|
||||
groupmod -o -g "$PGID" node
|
||||
usermod -g "$PGID" node
|
||||
changed=1
|
||||
fi
|
||||
|
||||
if [ "$changed" = "1" ]; then
|
||||
chown -R node:node "${PAPERCLIP_HOME}"
|
||||
fi
|
||||
|
||||
exec gosu node "$@"
|
||||
@@ -96,5 +96,5 @@ services:
|
||||
|
||||
networks:
|
||||
backup_net:
|
||||
driver: bridge
|
||||
external: true
|
||||
name: backup_net
|
||||
|
||||
@@ -82,37 +82,37 @@ networks:
|
||||
driver: bridge
|
||||
name: traefik_backend
|
||||
ai_net:
|
||||
driver: bridge
|
||||
external: true
|
||||
name: ai_net
|
||||
auth_net:
|
||||
driver: bridge
|
||||
external: true
|
||||
name: auth_net
|
||||
backup_net:
|
||||
driver: bridge
|
||||
external: true
|
||||
name: backup_net
|
||||
cloud_net:
|
||||
driver: bridge
|
||||
external: true
|
||||
name: cloud_net
|
||||
coms_net:
|
||||
driver: bridge
|
||||
external: true
|
||||
name: coms_net
|
||||
finance_net:
|
||||
driver: bridge
|
||||
external: true
|
||||
name: finance_net
|
||||
home_auto_net:
|
||||
driver: bridge
|
||||
external: true
|
||||
name: home_auto_net
|
||||
homepage_net:
|
||||
driver: bridge
|
||||
external: true
|
||||
name: homepage_net
|
||||
passman_net:
|
||||
driver: bridge
|
||||
external: true
|
||||
name: passman_net
|
||||
tak_net:
|
||||
driver: bridge
|
||||
external: true
|
||||
name: tak_net
|
||||
vc_net:
|
||||
driver: bridge
|
||||
external: true
|
||||
name: vc_net
|
||||
|
||||
# duckdns:
|
||||
|
||||
Reference in New Issue
Block a user