azaion/detections
1
0
Fork 0
mirror of https://github.com/azaion/detections.git synced 2026-04-22 21:56:33 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
7b68e189572b3e5236471b327fb50ae98a4a6c9e
detections/_docs/04_deploy/environment_strategy.md
T
Oleksandr Bezdieniezhnykh be4cab4fcb [AZ-178] Implement streaming video detection endpoint 
- Added `/detect/video` endpoint for true streaming video detection, allowing inference to start as upload bytes arrive.
- Introduced `run_detect_video_stream` method in the inference module to handle video processing from a file-like object.
- Updated media hashing to include a new function for computing hashes directly from files with minimal I/O.
- Enhanced documentation to reflect changes in video processing and API behavior.

Made-with: Cursor
2026-04-01 03:11:43 +03:00

43 lines
2.3 KiB
Markdown
Raw Blame History

# Environment Strategy
## Environments
| Environment | Purpose | Infrastructure | Data |
|-------------|---------|---------------|------|
| Development | Local developer workflow | docker-compose with mock services | Mock Loader serves test ONNX model; mock Annotations accepts all requests |
| Staging | Pre-production validation | Mirrors production topology (Docker or K8s) | Real Loader with test model; real Annotations with test database |
| Production | Live system | Docker with GPU (TensorRT) + reverse proxy | Real Loader, real Annotations, production model |
## Environment Variable Management
| Source | Environment | Method |
|--------|-------------|--------|
| `.env` file | Development | Loaded by docker-compose; git-ignored |
| `.env.example` | All | Template committed to VCS (no secrets) |
| Secret manager | Staging/Production | Inject via deployment scripts or K8s secrets |
All required variables are listed in `.env.example`. The application fails fast on missing `classes.json` (startup crash) but uses safe defaults for all other variables.
## Secrets Management
| Secret | Development | Staging | Production |
|--------|-------------|---------|------------|
| Container registry credentials | Local registry or none | CI/CD secret | CI/CD secret |
| SSH deploy key | N/A | CI/CD secret | CI/CD secret |
| Bearer tokens | Test tokens from mock | Real auth service | Real auth service |
**Rotation policy**: Registry credentials and deploy keys should be rotated every 90 days. Bearer tokens are per-request (no stored credentials in the service).
**No secrets stored by the service**: Detections is stateless — tokens come from client HTTP headers and are forwarded to the Annotations service. No database credentials, API keys, or encryption keys are needed.
## Configuration Per Environment
| Config | Development | Staging | Production |
|--------|-------------|---------|------------|
| LOADER_URL | http://mock-loader:8080 | http://loader:8080 | http://loader:8080 |
| ANNOTATIONS_URL | http://mock-annotations:8081 | http://annotations:8080 | http://annotations:8080 |
| GPU | Not required (ONNX CPU) | Optional | Required (TensorRT) |
| Log level | DEBUG (stdout) | INFO (file + stdout) | INFO (file) |
| TLS | None | Reverse proxy | Reverse proxy |
| Rate limiting | None | Reverse proxy (optional) | Reverse proxy (required) |
Reference in New Issue View Git Blame Copy Permalink