-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
1 changed file
with
214 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,214 @@ | ||
| # –––––––––––––––– REQUIRED –––––––––––––––– | ||
|
|
||
| #NODE_ENV=production | ||
|
|
||
| # Generate a hex-encoded 32-byte random key. You should use `openssl rand -hex 32` | ||
| # in your terminal to generate a random value. | ||
| SECRET_KEY=db6542344ab16868b53d5679c672ae906ffac9e37b4dce172b89efe7c1605e92 | ||
|
|
||
|
|
||
| # Generate a unique random key. The format is not important but you could still use | ||
| # `openssl rand -hex 32` in your terminal to produce this. | ||
| UTILS_SECRET=7540efadc97395c3701554c93ed65d824f37b4db43a660337ac521084efd67bd | ||
|
|
||
|
|
||
| # For production point these at your databases, in development the default | ||
| # should work out of the box. | ||
| # –––––––––––––––– POSTGRES相关参数 –––––––––––––––– | ||
| POSTGRES_HOST=olpostgres | ||
| POSTGRES_USER=admin | ||
| POSTGRES_PASSWORD=admin123 | ||
| POSTGRES_DB=outline | ||
| # –––––––––––––––– REDIS相关参数 –––––––––––––––– | ||
| REDIS_HOST=olredis | ||
| REDIS_URL=redis://olredis:6379 | ||
| # –––––––––––––––– MINIO相关参数 –––––––––––––––– | ||
| MINIO_HOST=olminio | ||
| MINIO_ROOT_USER=admin | ||
| MINIO_ROOT_PASSWORD=admin123 | ||
| # –––––––––––––––– OUTLINE相关参数 –––––––––––––––– | ||
| OUTLINE_HOST=outline | ||
| #SECRET_KEY=c344e03be80679185357463d8e4b6e7c8395bb96efd16cc864647ac59cd6388c | ||
| #UTILS_SECRET=500435ac8059e8ecf4ba3ec25cee20b01e4849ff469b8225eaf216115757121c | ||
| URL=http://localhost:3300 | ||
| PORT=3000 | ||
|
|
||
| DATABASE_URL=postgres://admin:admin123@olpostgres:5432/outline | ||
| #DATABASE_URL_TEST=postgres://user:pass@localhost:5432/outline-test | ||
| #DATABASE_CONNECTION_POOL_MIN= | ||
| #DATABASE_CONNECTION_POOL_MAX= | ||
| # Uncomment this to disable SSL for connecting to Postgres | ||
| PGSSLMODE=disable | ||
|
|
||
| # For redis you can either specify an ioredis compatible url like this | ||
| # or alternatively, if you would like to provide additional connection options, | ||
| # use a base64 encoded JSON connection option object. Refer to the ioredis documentation | ||
| # for a list of available options. | ||
| # Example: Use Redis Sentinel for high availability | ||
| # {"sentinels":[{"host":"sentinel-0","port":26379},{"host":"sentinel-1","port":26379}],"name":"mymaster"} | ||
| # #REDIS_URL=ioredis://eyJzZW50aW5lbHMiOlt7Imhvc3QiOiJzZW50aW5lbC0wIiwicG9ydCI6MjYzNzl9LHsiaG9zdCI6InNlbnRpbmVsLTEiLCJwb3J0IjoyNjM3OX1dLCJuYW1lIjoibXltYXN0ZXIifQ== | ||
|
|
||
| # URL should point to the fully qualified, publicly accessible URL. If using a | ||
| # proxy the port in URL and PORT may be different. | ||
| #URL=172.16.100.101 | ||
| #PORT=3000 | ||
|
|
||
| # See [documentation](docs/SERVICES.md) on running a separate collaboration | ||
| # server, for normal operation this does not need to be set. | ||
| COLLABORATION_URL= | ||
|
|
||
| # To support uploading of images for avatars and document attachments an | ||
| # s3-compatible storage must be provided. AWS S3 is recommended for redundancy | ||
| # however if you want to keep all file storage local an alternative such as | ||
| # minio (https://github.com/minio/minio) can be used. | ||
|
|
||
| # A more detailed guide on setting up S3 is available here: | ||
| # => https://wiki.generaloutline.com/share/125de1cc-9ff6-424b-8415-0d58c809a40f | ||
| #minio用户名 | ||
| AWS_ACCESS_KEY_ID=admin | ||
| AWS_SECRET_ACCESS_KEY=admin123 | ||
| AWS_REGION=us-east-2 | ||
| AWS_S3_FORCE_PATH_STYLE=true | ||
| AWS_S3_UPLOAD_BUCKET_NAME=outline | ||
| AWS_S3_UPLOAD_BUCKET_URL=http://172.16.100.101:9000 | ||
| AWS_S3_UPLOAD_MAX_SIZE=26214400 | ||
| AWS_S3_ACL=private | ||
|
|
||
| #AWS_SECRET_ACCESS_KEY=get_the_secret_of_above_key | ||
| #AWS_REGION=us-east-2 | ||
| #AWS_S3_ACCELERATE_URL= | ||
| #AWS_S3_UPLOAD_BUCKET_URL=http://s3:4569 | ||
| #AWS_S3_UPLOAD_BUCKET_NAME=bucket_name_here | ||
| #AWS_S3_UPLOAD_MAX_SIZE=26214400 | ||
| #AWS_S3_FORCE_PATH_STYLE=true | ||
| #AWS_S3_ACL=private | ||
|
|
||
|
|
||
| # –––––––––––––– AUTHENTICATION –––––––––––––– | ||
|
|
||
| # Third party signin credentials, at least ONE OF EITHER Google, Slack, | ||
| # or Microsoft is required for a working installation or you'll have no sign-in | ||
| # options. | ||
|
|
||
| # To configure Slack auth, you'll need to create an Application at | ||
| # => https://api.slack.com/apps | ||
| # | ||
| # When configuring the Client ID, add a redirect URL under "OAuth & Permissions": | ||
| # https://<URL>/auth/slack.callback | ||
| #SLACK_CLIENT_ID=get_a_key_from_slack | ||
| #SLACK_CLIENT_SECRET=get_the_secret_of_above_key | ||
| SLACK_KEY=4854126147378.4878055691888 | ||
| SLACK_SECRET=28d854df173c974438f003f199742735 | ||
| # To configure Google auth, you'll need to create an OAuth Client ID at | ||
| # => https://console.cloud.google.com/apis/credentials | ||
| # | ||
| # When configuring the Client ID, add an Authorized redirect URI: | ||
| # https://<URL>/auth/google.callback | ||
| GOOGLE_CLIENT_ID= | ||
| GOOGLE_CLIENT_SECRET= | ||
|
|
||
| # To configure Microsoft/Azure auth, you'll need to create an OAuth Client. See | ||
| # the guide for details on setting up your Azure App: | ||
| # => https://wiki.generaloutline.com/share/dfa77e56-d4d2-4b51-8ff8-84ea6608faa4 | ||
| AZURE_CLIENT_ID= | ||
| AZURE_CLIENT_SECRET= | ||
| AZURE_RESOURCE_APP_ID= | ||
|
|
||
| # To configure generic OIDC auth, you'll need some kind of identity provider. | ||
| # See documentation for whichever IdP you use to acquire the following info: | ||
| # Redirect URI is https://<URL>/auth/oidc.callback | ||
| OIDC_CLIENT_ID=4c1764ec-b7e0-11ed-afa1-0242ac120002 | ||
| OIDC_CLIENT_SECRET=5caf7a06-b7e0-11ed-afa1-0242ac120002 | ||
| OIDC_AUTH_URI=http://172.16.100.101:3900/dialog/authorize | ||
| OIDC_TOKEN_URI=http://172.16.100.101:3900/oauth/token | ||
| OIDC_USERINFO_URI=http://172.16.100.101:3900/api/outline/oidc | ||
|
|
||
| # Specify which claims to derive user information from | ||
| # Supports any valid JSON path with the JWT payload | ||
| #OIDC_USERNAME_CLAIM=preferred_username | ||
|
|
||
| # Display name for OIDC authentication | ||
| #OIDC_AUTH_URI=http://172.16.100.101:8099/oauth/authorize | ||
| #OIDC_TOKEN_URI=http://172.16.100.101:8099/oauth/token | ||
| #OIDC_USERINFO_URI=http://172.16.100.101:8099/oauth/userinfo | ||
| #OIDC_USERNAME_CLAIM=root | ||
| #OIDC_DISPLAY_NAME=Szyw@2022! | ||
| #OIDC_SCOPES=openid email | ||
| #OIDC_DISPLAY_NAME=OpenID | ||
|
|
||
| # Space separated auth scopes. | ||
| #OIDC_SCOPES=openid profile email | ||
|
|
||
|
|
||
| # –––––––––––––––– OPTIONAL –––––––––––––––– | ||
|
|
||
| # Base64 encoded private key and certificate for HTTPS termination. This is only | ||
| # required if you do not use an external reverse proxy. See documentation: | ||
| # https://wiki.generaloutline.com/share/1c922644-40d8-41fe-98f9-df2b67239d45 | ||
| SSL_KEY= | ||
| SSL_CERT= | ||
|
|
||
| # If using a Cloudfront/Cloudflare distribution or similar it can be set below. | ||
| # This will cause paths to javascript, stylesheets, and images to be updated to | ||
| # the hostname defined in CDN_URL. In your CDN configuration the origin server | ||
| # should be set to the same as URL. | ||
| CDN_URL= | ||
|
|
||
| # Auto-redirect to https in production. The default is true but you may set to | ||
| # false if you can be sure that SSL is terminated at an external loadbalancer. | ||
| FORCE_HTTPS=true | ||
|
|
||
| # Have the installation check for updates by sending anonymized statistics to | ||
| # the maintainers | ||
| ENABLE_UPDATES=true | ||
|
|
||
| # How many processes should be spawned. As a reasonable rule divide your servers | ||
| # available memory by 512 for a rough estimate | ||
| WEB_CONCURRENCY=1 | ||
|
|
||
| # Override the maximum size of document imports, could be required if you have | ||
| # especially large Word documents with embedded imagery | ||
| MAXIMUM_IMPORT_SIZE=5120000 | ||
|
|
||
| # You can remove this line if your reverse proxy already logs incoming http | ||
| # requests and this ends up being duplicative | ||
| DEBUG=http | ||
|
|
||
| # For a complete Slack integration with search and posting to channels the | ||
| # following configs are also needed, some more details | ||
| # => https://wiki.generaloutline.com/share/be25efd1-b3ef-4450-b8e5-c4a4fc11e02a | ||
| # | ||
| SLACK_VERIFICATION_TOKEN=your_token | ||
| SLACK_APP_ID=A0XXXXXXX | ||
| SLACK_MESSAGE_ACTIONS=true | ||
|
|
||
| # Optionally enable google analytics to track pageviews in the knowledge base | ||
| GOOGLE_ANALYTICS_ID= | ||
|
|
||
| # Optionally enable Sentry (sentry.io) to track errors and performance, | ||
| # and optionally add a Sentry proxy tunnel for bypassing ad blockers in the UI: | ||
| # https://docs.sentry.io/platforms/javascript/troubleshooting/#using-the-tunnel-option) | ||
| SENTRY_DSN= | ||
| SENTRY_TUNNEL= | ||
|
|
||
| # To support sending outgoing transactional emails such as "document updated" or | ||
| # "you've been invited" you'll need to provide authentication for an SMTP server | ||
| SMTP_HOST= | ||
| SMTP_PORT= | ||
| SMTP_USERNAME= | ||
| SMTP_PASSWORD= | ||
| SMTP_FROM_EMAIL= | ||
| SMTP_REPLY_EMAIL= | ||
| SMTP_TLS_CIPHERS= | ||
| SMTP_SECURE=true | ||
|
|
||
| # The default interface language. See translate.getoutline.com for a list of | ||
| # available language codes and their rough percentage translated. | ||
| DEFAULT_LANGUAGE=en_US | ||
|
|
||
| # Optionally enable rate limiter at application web server | ||
| RATE_LIMITER_ENABLED=true | ||
|
|
||
| # Configure default throttling parameters for rate limiter | ||
| RATE_LIMITER_REQUESTS=1000 | ||
| RATE_LIMITER_DURATION_WINDOW=60 |