-
Notifications
You must be signed in to change notification settings - Fork 4
Expand file tree
/
Copy path.env.example
More file actions
74 lines (59 loc) · 2.13 KB
/
.env.example
File metadata and controls
74 lines (59 loc) · 2.13 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
# Database
DATABASE_URL=postgresql://zeal:zeal_password@localhost:5432/zeal_db?schema=public
POSTGRES_USER=zeal
POSTGRES_PASSWORD=zeal_password
POSTGRES_DB=zeal_db
# Redis
REDIS_URL=redis://default:redis_password@localhost:6379
REDIS_PASSWORD=redis_password
# CRDT Server
NEXT_PUBLIC_CRDT_SERVER_URL=ws://localhost:8080
CORS_ORIGIN=http://localhost:3000
MAX_CLIENTS_PER_ROOM=100
CLIENT_TIMEOUT_MINUTES=30
# NextAuth Configuration
NEXTAUTH_URL=http://localhost:3000
NEXTAUTH_SECRET=your-secret-key-here-generate-with-openssl-rand-base64-32
# Application
NODE_ENV=production
NEXT_PUBLIC_APP_URL=http://localhost:3000
# Rust Server Logging
RUST_LOG=info
# MinIO S3-Compatible Storage
MINIO_ENDPOINT=localhost:9000
MINIO_ACCESS_KEY=minioadmin
MINIO_SECRET_KEY=minioadmin123
MINIO_BUCKET=zeal-uploads
MINIO_USE_SSL=false
NEXT_PUBLIC_MINIO_URL=http://localhost:9000
# ========================================
# Authorization Configuration (Optional)
# ========================================
# Authorization is DISABLED by default for easier development
# Set ZEAL_AUTH_ENABLED=true to enable authorization
# Enable/Disable Authorization
ZEAL_AUTH_ENABLED=false
ZEAL_AUTH_MODE=development
# Secret key for HMAC token signing (required for SDK token generation)
# Generate a secure random key: openssl rand -base64 32
ZEAL_SECRET_KEY=your-secret-key-here-change-in-production
# Development Mode Settings (when ZEAL_AUTH_MODE=development)
# ZEAL_DEV_USER_ID=dev-user
# ZEAL_DEV_TENANT_ID=dev-tenant
# ZEAL_DEV_ORG_ID=dev-org
# ZEAL_DEV_ROLES=user,developer
# ZEAL_DEV_ALLOW_ALL=false
# Production Mode - Identity Provider Configuration
# Required when ZEAL_AUTH_MODE=production
# AUTH_JWT_ISSUER=https://your-identity-provider.com
# AUTH_JWT_AUDIENCE=https://api.your-app.com
# AUTH_JWT_JWKS_URI=https://your-identity-provider.com/.well-known/jwks.json
# Claim Mappings (customize based on your identity provider)
# AUTH_CLAIM_SUBJECT_ID=sub
# AUTH_CLAIM_TENANT=tenant_id
# AUTH_CLAIM_ORGANIZATION=org_id
# AUTH_CLAIM_ROLES=roles
# AUTH_CLAIM_PERMISSIONS=permissions
# Policy Configuration
# ZEAL_AUTH_POLICIES_PATH=./auth-policies.yaml
# ZEAL_AUTH_DEFAULT_EFFECT=deny