Harden LLM access: secrets only in server .env, no URL in repo.

Require LLM_BASE_URL and LLM_API_KEY for automatic generation, add per-user rate limits, stop publishing backend/LLM settings in docker-compose, and document secure deployment.
2026-06-04 13:24:40 +02:00
parent 182eae1e36
commit 4d2ced85a3
11 changed files with 487 additions and 169 deletions
@@ -0,0 +1,13 @@
+# Desarrollo local: publica backend y PostgreSQL solo en loopback.
+# Uso: docker compose -f docker-compose.yml -f docker-compose.dev.yml up --build
+#
+# Configura LLM_BASE_URL y LLM_API_KEY en backend/.env (no subir al repositorio).
+
+services:
+  backend:
+    ports:
+      - "127.0.0.1:8068:8074"
+
+  db:
+    ports:
+      - "127.0.0.1:5432:5432"