首頁 探索 說明
登入
chiappa
/
sprint_planer_web
镜像来自 https://git.snix.ch/chiappa/sprint_planer_web.git
1
0
複刻 0
檔案 問題管理 0
目錄樹: f705d7b32e
分支列表 標籤列表
sprint_planer_w...
/
.env.example

.env.example 2.6 KB
文件歷史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253 
  1. # Entra ID / OIDC
    2. 

  2. ENTRA_TENANT_ID=
    3. 

  3. ENTRA_CLIENT_ID=
    4. 

  4. ENTRA_CLIENT_SECRET=
    5. 

  5. 

  6. # Base URL the app is reachable at (no trailing slash).
    7. 

  7. # Used to build the OIDC redirect URI {APP_BASE_URL}/auth/callback
    8. 

  8. APP_BASE_URL=http://localhost:8080
    9. 

  9. 

  10. # Path to the SQLite database file inside the container. Leave as-is unless
    11. 

  11. # you have a specific reason to change it. The parent dir is the mounted
    12. 

  12. # volume (/var/www/data).
    13. 

  13. DB_PATH=/var/www/data/app.sqlite
    14. 

  14. 

  15. # Session handler files directory.
    16. 

  16. SESSION_PATH=/var/www/data/sessions
    17. 

  17. 

  18. # 'production' disables verbose error output. Anything else is treated as dev.
    19. 

  19. APP_ENV=production
    20. 

  20. 

  21. # ---------------------------------------------------------------------------
    22. 

  22. # OIDC bootstrap admin (optional) — nominate the very first administrator up
    23. 

  23. # front, so a public-facing first deploy can't be land-grabbed by another
    24. 

  24. # tenant member who happens to sign in before you. Auto-promotion to admin
    25. 

  25. # happens via OIDC iff no admin exists yet AND the signing user matches one
    26. 

  26. # of the values below (case-insensitive). With both variables blank, the
    27. 

  27. # OIDC path NEVER auto-promotes — seed the first admin via the local-admin
    28. 

  28. # fallback below, or by manually flipping is_admin in the database.
    29. 

  29. # Set BOOTSTRAP_ADMIN_OID to the Entra `oid` claim (a GUID, immutable) when
    30. 

  30. # you know it; BOOTSTRAP_ADMIN_EMAIL is accepted as a fallback when you only
    31. 

  31. # have the email.
    32. 

  32. # ---------------------------------------------------------------------------
    33. 

  33. BOOTSTRAP_ADMIN_OID=
    34. 

  34. BOOTSTRAP_ADMIN_EMAIL=
    35. 

  35. 

  36. # ---------------------------------------------------------------------------
    37. 

  37. # Local admin (optional) — lets you sign in without Entra, e.g. during initial
    38. 

  38. # setup or for a fully on-prem deployment. Set BOTH email and the password
    39. 

  39. # hash to enable; leave blank to disable. The password is verified with PHP's
    40. 

  40. # password_verify() against LOCAL_ADMIN_PASSWORD_HASH, so .env never contains
    41. 

  41. # the password itself. Generate the hash with:
    42. 

  42. #     docker run --rm php:8.3-cli php -r \
    43. 

  43. #       'echo password_hash(readline("Password: "), PASSWORD_DEFAULT), PHP_EOL;'
    44. 

  44. # (Or `php -r '...'` directly if you have PHP 8 on the host.) Paste the
    45. 

  45. # resulting `$2y$...` string verbatim. Single quotes recommended in .env so
    46. 

  46. # the `$` in the hash isn't interpreted by the shell.
    47. 

  47. # The resulting user is stored with entra_oid = "local:<email>" and is_admin=1.
    48. 

  48. # This path is itself an explicit env-bootstrap and does not require the
    49. 

  49. # BOOTSTRAP_ADMIN_* variables above.
    50. 

  50. # ---------------------------------------------------------------------------
    51. 

  51. LOCAL_ADMIN_EMAIL=
    52. 

  52. LOCAL_ADMIN_PASSWORD_HASH=
    53. 

  53. LOCAL_ADMIN_NAME=Local Admin
    54.