-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathenv.example
More file actions
60 lines (51 loc) · 2.3 KB
/
Copy pathenv.example
File metadata and controls
60 lines (51 loc) · 2.3 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
# --- StudentAid servicer portal credentials ---
# Provider slug (usually matches the subdomain in `https://{provider}.studentaid.gov`)
# Examples: nelnet, mohela, edfinancial, aidvantage, cri
SERVICER_PROVIDER=
SERVICER_USERNAME=
SERVICER_PASSWORD=
# MFA method supported by this automation: email
SERVICER_MFA_METHOD=email
# --- Loan groups to sync (required) ---
# Comma-separated list of loan group IDs from your servicer portal.
# Common formats:
# - Letter codes: AA,AB,AC
# - Numeric/hyphen: 1-01,1-02
# Example: LOAN_GROUPS=AA,AB,1-01
#
# Tip: if you don't know your groups yet, run:
# docker compose run --rm --build studentaid-monarch-sync list-loan-groups
LOAN_GROUPS=
# --- Gmail IMAP (for email MFA) ---
GMAIL_IMAP_USER=you@gmail.com
# Create a Google App Password (requires 2‑step verification).
GMAIL_IMAP_APP_PASSWORD=
# Optional: IMAP folder/label to search (default: INBOX)
GMAIL_IMAP_FOLDER=INBOX
# Optional: narrow MFA email search
# Tip: keep these broad (subjects/senders can vary by servicer). Good defaults:
GMAIL_IMAP_SENDER_HINT=studentaid.gov
GMAIL_IMAP_SUBJECT_HINT=code
# --- Monarch credentials ---
# Preferred: one-time bootstrap with `bootstrap-monarch-auth` saves a session file automatically.
# After bootstrap, you can leave these blank; the saved session is tried first.
# Manual copy/paste option: cookie value copied from an authenticated Monarch browser request.
# Copy the value after `Cookie:`. Minimum needed cookies: `session_id` + `csrftoken`.
MONARCH_COOKIE_STRING=
# Optional split option if you prefer separate vars.
MONARCH_COOKIE_SESSION_ID=
MONARCH_COOKIE_CSRFTOKEN=
# If you use Monarch password login, fill these in too.
MONARCH_EMAIL=
MONARCH_PASSWORD=
# If Monarch uses authenticator-app TOTP, set this to the TOTP secret.
MONARCH_MFA_SECRET=
# Optional: refine the Monarch-side duplicate guard for payment transactions by using the portal's
# confirmation/reference number (when present) as a search term. Off by default.
MONARCH_DUPLICATE_GUARD_USE_REFERENCE=false
# Optional: naming template used when creating loan-group manual accounts in Monarch.
# Placeholders: {provider}, {provider_upper}, {provider_display}, {group}
# Example: MONARCH_LOAN_ACCOUNT_NAME_TEMPLATE=Federal-{group}
MONARCH_LOAN_ACCOUNT_NAME_TEMPLATE={provider}-{group}
# --- Runtime toggles ---
LOG_LEVEL=INFO