forked from baron/baron-sso
98 lines
2.7 KiB
Plaintext
98 lines
2.7 KiB
Plaintext
APP_ENV=stage
|
|
BACKEND_LOG_LEVEL=debug
|
|
CLIENT_LOG_DEBUG=true
|
|
WORKS_ADMIN_API_BASE_URL=https://www.worksapis.com
|
|
WORKS_ADMIN_OAUTH_TOKEN_URL=REDACTED
|
|
TZ=Asia/Seoul
|
|
IDP_PROVIDER=ory
|
|
|
|
# DB & Clickhouse
|
|
DB_PORT=5432
|
|
CLICKHOUSE_PORT_HTTP=8123
|
|
CLICKHOUSE_PORT_NATIVE=9000
|
|
CLICKHOUSE_HOST=clickhouse
|
|
CLICKHOUSE_USER=baron
|
|
CLICKHOUSE_PASSWORD=REDACTED
|
|
|
|
|
|
BACKEND_PORT=3000
|
|
ADMINFRONT_PORT=5173
|
|
DEVFRONT_PORT=5174
|
|
ORGFRONT_PORT=
|
|
USERFRONT_PORT=5000
|
|
|
|
OATHKEEPER_API_URL=http://oathkeeper:4456
|
|
|
|
DB_USER=baron
|
|
DB_PASSWORD=REDACTED
|
|
DB_NAME=baron_sso
|
|
COOKIE_SECRET=REDACTED
|
|
JWT_SECRET=REDACTED
|
|
REDIS_ADDR=redis:6389
|
|
CORS_ALLOWED_ORIGINS=https://sso.hmac.kr
|
|
AUDIT_WORKER_COUNT=5
|
|
AUDIT_QUEUE_SIZE=2000
|
|
PROFILE_CACHE_TTL=30m
|
|
ORGFRONT_ORGCHART_CACHE_TTL_SECONDS=3600
|
|
NAVER_CLOUD_ACCESS_KEY=REDACTED
|
|
NAVER_CLOUD_SECRET_KEY=REDACTED
|
|
NAVER_CLOUD_SERVICE_ID=ncp:sms:kr:364022321777:baroncs
|
|
NAVER_SENDER_PHONE_NUMBER=0262857755
|
|
AWS_REGION=ap-northeast-2
|
|
AWS_ACCESS_KEY_ID=REDACTED
|
|
AWS_SECRET_ACCESS_KEY=REDACTED
|
|
AWS_SES_SENDER=support@baroncs.co.kr
|
|
ADMIN_EMAIL=admin@hmac.kr
|
|
ADMIN_PASSWORD=REDACTED
|
|
USERFRONT_URL=https://sso.hmac.kr
|
|
ADMINFRONT_URL=https://sadmin.hmac.kr
|
|
DEVFRONT_URL=https://sdev.hmac.kr
|
|
ORGFRONT_URL=https://sorg.hmac.kr
|
|
BACKEND_PUBLIC_URL=${USERFRONT_URL}
|
|
BACKEND_URL=${USERFRONT_URL}
|
|
OATHKEEPER_PUBLIC_URL=https://sso.hmac.kr
|
|
|
|
ORY_POSTGRES_TAG=17-trixie
|
|
ORY_POSTGRES_USER=ory
|
|
ORY_POSTGRES_PASSWORD=REDACTED
|
|
ORY_POSTGRES_DB=ory
|
|
KRATOS_DB=ory_kratos
|
|
HYDRA_DB=ory_hydra
|
|
KETO_DB=ory_keto
|
|
KRATOS_VERSION=v26.2.0-distroless
|
|
KRATOS_UI_NODE_VERSION=v26.2.0
|
|
HYDRA_VERSION=v26.2.0-distroless
|
|
KETO_VERSION=v26.2.0-distroless
|
|
ORY_SDK_URL=http://kratos:4433
|
|
KRATOS_PUBLIC_URL=http://kratos:4433
|
|
KRATOS_ADMIN_URL=http://kratos:4434
|
|
KRATOS_BROWSER_URL=https://sso.hmac.kr/auth
|
|
KRATOS_UI_URL=https://sso.hmac.kr
|
|
HYDRA_ADMIN_URL=http://hydra:4445
|
|
HYDRA_PUBLIC_URL=https://sso.hmac.kr/oidc
|
|
JWKS_URL=http://oathkeeper:4456/.well-known/jwks.json
|
|
OATHKEEPER_VERSION=v26.2.0
|
|
OATHKEEPER_UID=1001
|
|
OATHKEEPER_GID=1001
|
|
OATHKEEPER_HEALTH_URL=http://oathkeeper:4456/health/ready
|
|
OATHKEEPER_HEALTH_INTERVAL_SECONDS=10
|
|
OATHKEEPER_HEALTH_TIMEOUT_SECONDS=2
|
|
OATHKEEPER_HEALTH_ENABLED=true
|
|
CSRF_COOKIE_NAME=REDACTED
|
|
CSRF_COOKIE_SECRET=REDACTED
|
|
|
|
# Frontend/Ory URL configs for Staging
|
|
VITE_OIDC_AUTHORITY=https://sso.hmac.kr/oidc
|
|
ADMINFRONT_CALLBACK_URLS=https://sadmin.hmac.kr/auth/callback
|
|
DEVFRONT_CALLBACK_URLS=https://sdev.hmac.kr/auth/callback
|
|
ORGFRONT_CALLBACK_URLS=https://sorg.hmac.kr/auth/callback
|
|
KRATOS_ALLOWED_RETURN_URLS_JSON=
|
|
KRATOS_ALLOWED_RETURN_URLS_EXTRA=
|
|
# OATHKEEPER_INTROSPECT_CLIENT_ID=
|
|
# OATHKEEPER_INTROSPECT_CLIENT_SECRET=
|
|
|
|
# Monitoring & Alerts
|
|
SMS_WEBHOOK_PORT=8080
|
|
MONITOR_RECIPIENT_PHONES=01012345678,01098765432
|
|
LOKI_URL=http://llm_gateway_loki:3100/loki/api/v1/push
|