159 lines
4.8 KiB
Plaintext
159 lines
4.8 KiB
Plaintext
############
|
|
# Secrets
|
|
# YOU MUST CHANGE THESE BEFORE GOING INTO PRODUCTION
|
|
############
|
|
|
|
POSTGRES_PASSWORD=your-super-secret-and-long-postgres-password
|
|
JWT_SECRET=your-super-secret-jwt-token-with-at-least-32-characters-long
|
|
ANON_KEY=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyAgCiAgICAicm9sZSI6ICJhbm9uIiwKICAgICJpc3MiOiAic3VwYWJhc2UtZGVtbyIsCiAgICAiaWF0IjogMTY0MTc2OTIwMCwKICAgICJleHAiOiAxNzk5NTM1NjAwCn0.dc_X5iR_VP_qT0zsiyj_I_OZ2T9FtRU2BBNWN8Bu4GE
|
|
SERVICE_ROLE_KEY=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyAgCiAgICAicm9sZSI6ICJzZXJ2aWNlX3JvbGUiLAogICAgImlzcyI6ICJzdXBhYmFzZS1kZW1vIiwKICAgICJpYXQiOiAxNjQxNzY5MjAwLAogICAgImV4cCI6IDE3OTk1MzU2MDAKfQ.DaYlNEoUrrEn2Ig7tqibS-PHK5vgusbcbo7X36XVt4Q
|
|
DASHBOARD_USERNAME=gib
|
|
DASHBOARD_PASSWORD=this_password_is_insecure_and_should_be_updated
|
|
SECRET_KEY_BASE=UpNVntn3cDxHJpq99YMc1T1AQgQpc8kfYTuRgBiYa15BLrx8etQoXz3gZv1/u2oq
|
|
VAULT_ENC_KEY=your-encryption-key-32-chars-min
|
|
|
|
|
|
############
|
|
# Database - You can change these to any PostgreSQL database that has logical replication enabled.
|
|
############
|
|
|
|
POSTGRES_HOST=db
|
|
POSTGRES_DB=postgres
|
|
POSTGRES_PORT=5432
|
|
# default user is postgres
|
|
|
|
|
|
############
|
|
# Supavisor -- Database pooler
|
|
############
|
|
POOLER_PROXY_PORT_TRANSACTION=6543
|
|
POOLER_DEFAULT_POOL_SIZE=20
|
|
POOLER_MAX_CLIENT_CONN=100
|
|
POOLER_TENANT_ID=your-tenant-id # Change me
|
|
|
|
|
|
############
|
|
# API Proxy - Configuration for the Kong Reverse proxy.
|
|
############
|
|
|
|
KONG_HTTP_PORT=8000
|
|
KONG_HTTPS_PORT=8443
|
|
|
|
|
|
############
|
|
# API - Configuration for PostgREST.
|
|
############
|
|
|
|
PGRST_DB_SCHEMAS=public,storage,graphql_public
|
|
|
|
|
|
############
|
|
# Auth - Configuration for the GoTrue authentication server.
|
|
############
|
|
|
|
## General
|
|
SITE_URL=http://localhost:3000 # Change to URL of site used for email links/auth flows
|
|
ADDITIONAL_REDIRECT_URLS= # Change to include any redirect URIs needed
|
|
JWT_EXPIRY=3600
|
|
DISABLE_SIGNUP=false
|
|
API_EXTERNAL_URL=http://localhost:8000 # Should be the same as the SITE URL usually.
|
|
|
|
## Mailer Config
|
|
MAILER_URLPATHS_CONFIRMATION="/auth/callback"
|
|
MAILER_URLPATHS_INVITE="/auth/callback"
|
|
MAILER_URLPATHS_RECOVERY="/auth/callback"
|
|
MAILER_URLPATHS_EMAIL_CHANGE="/auth/callback"
|
|
|
|
## Email auth
|
|
ENABLE_EMAIL_SIGNUP=true
|
|
ENABLE_EMAIL_AUTOCONFIRM=false
|
|
SMTP_ADMIN_EMAIL=admin@example.com
|
|
SMTP_HOST=supabase-mail
|
|
SMTP_PORT=2500
|
|
SMTP_USER=fake_mail_user
|
|
SMTP_PASS=fake_mail_password
|
|
SMTP_SENDER_NAME=fake_sender
|
|
ENABLE_ANONYMOUS_USERS=false
|
|
|
|
|
|
MAILER_TEMPLATES_INVITE="https://git.gbrown.org/gib/tech-tracker-next/raw/branch/main/src/server/mail_templates/invite_user.html"
|
|
MAILER_TEMPLATES_CONFIRMATION="https://git.gbrown.org/gib/tech-tracker-next/raw/branch/main/src/server/mail_templates/confirm_signup.html"
|
|
MAILER_TEMPLATES_RECOVERY="https://git.gbrown.org/gib/tech-tracker-next/raw/branch/main/src/server/mail_templates/reset_password.html"
|
|
MAILER_TEMPLATES_MAGIC_LINK="https://git.gbrown.org/gib/tech-tracker-next/raw/branch/main/src/server/mail_templates/magic_link.html"
|
|
MAILER_TEMPLATES_EMAIL_CHANGE="https://git.gbrown.org/gib/tech-tracker-next/raw/branch/main/src/server/mail_templates/change_email_address.html"
|
|
|
|
MAILER_SUBJECTS_INVITE="You've Been Invited!"
|
|
MAILER_SUBJECTS_CONFIRMATION="Confirm Your Email"
|
|
MAILER_SUBJECTS_RECOVERY="Reset Password"
|
|
MAILER_SUBJECTS_MAGIC_LINK="Magic Sign In Link"
|
|
MAILER_SUBJECTS_EMAIL_CHANGE="Change Email Address"
|
|
|
|
|
|
## Phone auth
|
|
ENABLE_PHONE_SIGNUP=false
|
|
ENABLE_PHONE_AUTOCONFIRM=false
|
|
|
|
|
|
# Apple Auth
|
|
APPLE_ENABLED=true
|
|
APPLE_CLIENT_ID=
|
|
APPLE_SECRET=
|
|
APPLE_REDIRECT_URI=
|
|
APPLE_TEAM_ID=
|
|
APPLE_KEY_ID=
|
|
|
|
# Azure Auth
|
|
AZURE_ENABLED=true
|
|
AZURE_CLIENT_ID=
|
|
AZURE_SECRET=
|
|
AZURE_REDIRECT_URI=
|
|
AZURE_TENANT_ID=
|
|
AZURE_TENANT_URL=
|
|
|
|
# Gib's Auth (Trying to set up Authentik)
|
|
#SAML_ENABLED=false
|
|
#SAML_PRIVATE_KEY=
|
|
|
|
|
|
############
|
|
# Studio - Configuration for the Dashboard
|
|
############
|
|
|
|
STUDIO_DEFAULT_ORGANIZATION=gbrown
|
|
STUDIO_DEFAULT_PROJECT=Default Project
|
|
|
|
STUDIO_PORT=3000
|
|
# replace if you intend to use Studio outside of localhost
|
|
SUPABASE_PUBLIC_URL=https://localhost:8000 # Change to URL for this supabase instance
|
|
|
|
# Enable webp support
|
|
IMGPROXY_ENABLE_WEBP_DETECTION=true
|
|
|
|
# Add your OpenAI API key to enable SQL Editor Assistant
|
|
OPENAI_API_KEY=
|
|
|
|
|
|
############
|
|
# Functions - Configuration for Functions
|
|
############
|
|
# NOTE: VERIFY_JWT applies to all functions. Per-function VERIFY_JWT is not supported yet.
|
|
FUNCTIONS_VERIFY_JWT=false
|
|
|
|
|
|
############
|
|
# Logs - Configuration for Logflare
|
|
# Please refer to https://supabase.com/docs/reference/self-hosting-analytics/introduction
|
|
############
|
|
|
|
LOGFLARE_LOGGER_BACKEND_API_KEY=your-super-secret-and-long-logflare-key
|
|
|
|
# Change vector.toml sinks to reflect this change
|
|
LOGFLARE_API_KEY=your-super-secret-and-long-logflare-key
|
|
|
|
# Docker socket location - this value will differ depending on your OS
|
|
DOCKER_SOCKET_LOCATION=/var/run/docker.sock
|
|
|
|
# Google Cloud Project details
|
|
#GOOGLE_PROJECT_ID=GOOGLE_PROJECT_ID
|
|
#GOOGLE_PROJECT_NUMBER=GOOGLE_PROJECT_NUMBER
|