-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy path.env.example
More file actions
69 lines (60 loc) · 2.25 KB
/
Copy path.env.example
File metadata and controls
69 lines (60 loc) · 2.25 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
# NETWORKING CONFIGURATION
# For local development (app runs on host):
# DATABASE_URL=postgresql+asyncpg://postgres:postgres@localhost:5433/postgres
# S3_ENDPOINT=localhost:9000
#
# For Docker development (app runs in container):
# DATABASE_URL=postgresql+asyncpg://postgres:postgres@postgres:5432/postgres
# S3_ENDPOINT=minio:9000
#
# The values below are for local development. Docker setup uses docker-compose.dev.yml environment overrides.
# Database Configuration
DATABASE_URL=postgresql+asyncpg://postgres:postgres@localhost:5433/postgres
POSTGRES_USER=postgres
POSTGRES_PASSWORD=postgres
POSTGRES_DB=postgres
POSTGRES_SERVER=localhost
POSTGRES_PORT=5433
# Host Port Overrides (change if you have port conflicts)
# MINIO_API_PORT=9000
# MINIO_CONSOLE_PORT=9001
# PGADMIN_PORT=8080
# S3/MinIO Configuration
S3_ENDPOINT=localhost:9000
S3_ACCESS_KEY=minioadmin
S3_SECRET_KEY=minioadminpassword
S3_BUCKET=data-storage
S3_USE_SSL=false
# Application Configuration
APP_NAME="Data Management API"
DEBUG=false
PORT=8000
FAST_TEST_MODE=false
SKIP_HEADER_CHECK=false
CHECK_MOCK_MEMBERSHIP=true
MOCK_USER_EMAIL=test@example.com
MOCK_USER_GROUPS_JSON='["admin-group", "data-scientists", "project-alpha-group", "testgroup"]'
# Deployment Environment: development | staging | production
# When set to "production", the app refuses to start with DEBUG=true,
# SKIP_HEADER_CHECK=true, VISTA_AUTH_BACKEND=demo, or a missing
# PROXY_SHARED_SECRET.
ENV=development
# Group Authorization Backend (REQUIRED -- fail-closed by default)
# demo -- hardcoded example mapping in core.group_auth. Development
# and automated tests only; refused when ENV=production.
# custom -- integrator has replaced core.group_auth._check_group_membership
# with a real auth system (LDAP, OIDC, etc.). Startup self-test
# verifies the stub was replaced and denies demo emails.
# If unset or set to any other value, the app refuses to start.
VISTA_AUTH_BACKEND=demo
# Security Configuration
SECURITY_NOSNIFF_ENABLED=true
SECURITY_XFO_ENABLED=true
SECURITY_XFO_VALUE=SAMEORIGIN
SECURITY_REFERRER_POLICY_ENABLED=true
SECURITY_REFERRER_POLICY_VALUE=no-referrer
SECURITY_CSP_ENABLED=true
# Cache Configuration
CACHE_SIZE_MB=1000
# Frontend Configuration
FRONTEND_BUILD_PATH=frontend/build