initial scaffold: Meridian LXC (Node 22 + npm @rynfar/meridian + systemd)
Deploys @rynfar/meridian on a Debian 12 LXC, bound to 0.0.0.0:3456. OAuth credentials transferred manually after first deploy (claude login on Mac, scp ~/.claude to /opt/meridian/.claude). systemd unit is enabled but gated on credentials.json existence so the first deploy doesn't crash-loop. LXC has no auth layer — security model is LAN-only reachability. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This commit is contained in:
Your Name
@@ -0,0 +1,35 @@
|
||||
---
|
||||
timezone: America/Toronto
|
||||
|
||||
packages:
|
||||
- apt-utils
|
||||
- bash-completion
|
||||
- ca-certificates
|
||||
- curl
|
||||
- git
|
||||
- gnupg
|
||||
- htop
|
||||
- net-tools
|
||||
- openssh-server
|
||||
- python3
|
||||
- python3-pip
|
||||
- sudo
|
||||
- vim
|
||||
- wget
|
||||
|
||||
users:
|
||||
- name: cbalders
|
||||
groups: sudo
|
||||
shell: /bin/bash
|
||||
|
||||
ssh_authorized_keys:
|
||||
- "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINALaic1jpoP6t1urbZqJLI1eU5NeTVD9k8AAMAvOvvk OfficeMini"
|
||||
- "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGzTHdCiQjhIHsGB8oMpyKtr9TZXrXeIRKwcwe698zMW Generated By Termius"
|
||||
|
||||
# Meridian
|
||||
meridian_user: meridian
|
||||
meridian_home: /opt/meridian
|
||||
meridian_port: 3456
|
||||
meridian_host: "0.0.0.0"
|
||||
meridian_idle_timeout_seconds: 300
|
||||
meridian_node_major: 22
|
||||
Reference in New Issue
Block a user