-
Notifications
You must be signed in to change notification settings - Fork 76
Expand file tree
/
Copy path.env.example
More file actions
80 lines (61 loc) · 2.98 KB
/
.env.example
File metadata and controls
80 lines (61 loc) · 2.98 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
# =============================================================================
# PIA-BACK Environment Configuration
# =============================================================================
# Copy this file as .env and fill in your values.
# -----------------------------------------------------------------------------
# Application Settings
# -----------------------------------------------------------------------------
# Rails environment (development, test, production)
RAILS_ENV=
# Default host for URL generation
DEFAULT_HOST=
# -----------------------------------------------------------------------------
# Authentication & Authorization
# -----------------------------------------------------------------------------
# Enable Pundit authorization (true to enable role-based access control)
# Leave empty or false to disable authentication
ENABLE_AUTHENTICATION=
# Devise secret key for encryption (generate with: rails secret)
# REQUIRED in production
DEVISE_SECRET_KEY=
# Devise pepper for additional password security (generate with: rails secret)
# REQUIRED in production
DEVISE_PEPPER=
# -----------------------------------------------------------------------------
# LDAP Configuration (optional - for LDAP authentication)
# -----------------------------------------------------------------------------
# Enable LDAP debug logging (true/false)
DEVISE_LDAP_LOGGER=
# Use admin credentials to bind to LDAP (true/false)
DEVISE_LDAP_LOGGER_ADMIN_BIND=
# -----------------------------------------------------------------------------
# CORS (Cross-Origin Resource Sharing)
# -----------------------------------------------------------------------------
# Allowed origins for CORS (comma-separated list)
# Use * for development, specific domains for production
# Example: http://localhost:4200,https://pia-app.example.com
ALLOWED_CORS_ORIGINS=*
# -----------------------------------------------------------------------------
# Security - HTML Sanitization (optional)
# -----------------------------------------------------------------------------
# Allowed HTML tags for user input sanitization
SANITIZED_ALLOWED_TAGS="strong b em i ul ol li br a div span img h1 h2 h3 h4 h5 h6 p"
# Allowed HTML attributes for user input sanitization
SANITIZED_ALLOWED_ATTRIBUTES="href style"
# -----------------------------------------------------------------------------
# Email Configuration (optional - for production)
# -----------------------------------------------------------------------------
# SMTP settings for sending emails
# EMAIL_FROM=noreply@example.com
# SMTP_ADDRESS=smtp.example.com
# SMTP_PORT=587
# SMTP_DOMAIN=example.com
# SMTP_USERNAME=your-smtp-username
# SMTP_PASSWORD=your-smtp-password
# SMTP_AUTHENTICATION=plain
# SMTP_ENABLE_STARTTLS_AUTO=true
# -----------------------------------------------------------------------------
# Rails Secret Key Base (REQUIRED in production)
# -----------------------------------------------------------------------------
# Generate with: rails secret
# SECRET_KEY_BASE=