-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.env.example
More file actions
83 lines (66 loc) · 2.09 KB
/
Copy path.env.example
File metadata and controls
83 lines (66 loc) · 2.09 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
# Application metadata and runtime environment.
APP_NAME=Todo Modulith API
APP_ENV=production
FRONTEND_URL=http://localhost:3000
# Local service credentials used by Docker Compose.
POSTGRES_USER=postgres
POSTGRES_PASSWORD=
POSTGRES_DB=todo_db
REDIS_PASSWORD=
# Database connection string and SQLAlchemy pool tuning.
DATABASE_URL=
DATABASE_POOL_SIZE=20
DATABASE_MAX_OVERFLOW=10
DATABASE_POOL_TIMEOUT=30
DATABASE_POOL_RECYCLE=3600
# Redis connection used by shared infrastructure such as rate limiting or caching.
REDIS_URL=
# JWT signing secret. Change this in every deployed environment.
SECRET_KEY=
# Maximum request body size in bytes.
MAX_REQUEST_SIZE_MB=5242880 #5mb
# JWT signing, validation, and token lifetime settings.
ALGORITHM=HS256
JWT_ISSUER=todo-modulith-api
JWT_AUDIENCE=todo-modulith-client
ACCESS_TOKEN_EXPIRE_MINUTES=30
REFRESH_TOKEN_EXPIRE_MINUTES=10080
# API rate limit rule.
RATE_LIMIT="100/minute"
# CORS settings for browser clients.
CORS_ALLOW_ORIGINS=http://localhost:3000
CORS_ALLOW_METHODS=*
CORS_ALLOW_HEADERS=*
# Content Security Policy header value.
SECURITY_CONTENT_SECURITY_POLICY=default-src 'self'; frame-ancestors 'none'
# Idempotency key retention time in seconds.
IDEMPOTENCY_TTL_SECONDS=86400
# Account lockout thresholds used to slow repeated failed login attempts.
ACCOUNT_LOCKOUT_MAX_ATTEMPTS=5
ACCOUNT_LOCKOUT_WINDOW_MINUTES=15
ACCOUNT_LOCKOUT_DURATION_MINUTES=15
# Logging output format for application logs.
LOG_FORMAT=json
# Email provider selection. Options: ses, sendgrid, smtp.
EMAIL_PROVIDER=ses
# AWS SES configuration.
AWS_REGION=us-east-1
AWS_ACCESS_KEY_ID=
AWS_SECRET_ACCESS_KEY=
SES_FROM_EMAIL=noreply@example.com
# SendGrid configuration.
SENDGRID_API_KEY=
SENDGRID_FROM_EMAIL=noreply@example.com
# SMTP configuration for Gmail or other SMTP providers.
SMTP_HOST=
SMTP_PORT=587
SMTP_USERNAME=
SMTP_PASSWORD=
SMTP_FROM_EMAIL=noreply@example.com
SMTP_USE_TLS=true
# Optional admin and development users created by database seeders.
SEED_ADMIN_EMAIL=
SEED_ADMIN_PASSWORD=
SEED_ADMIN_USERNAME=admin
SEED_ADMIN_FULLNAME=System Administrator
SEED_DEVELOPMENT_USERS_PASSWORD=