dragonflight/.env.example

# Database Configuration
POSTGRES_DB=wilddragon
POSTGRES_USER=wilddragon
POSTGRES_PASSWORD=changeme

# Database Connection
DATABASE_URL=postgres://wilddragon:changeme@db:5432/wilddragon

# Redis Configuration
REDIS_URL=redis://queue:6379

# S3 Configuration
S3_ENDPOINT=https://broadcastmgmt.cloud
S3_BUCKET=wild-dragon
S3_ACCESS_KEY=changeme
S3_SECRET_KEY=changeme
S3_REGION=us-east-1

# Session Configuration
SESSION_SECRET=changeme

# MAM API Configuration
MAM_API_URL=http://mam-api:3000

# Auth — default to ON in production. Setting to 'false' is a dev-only escape
# hatch that disables all auth checks and attaches a synthetic 'dev' user to
# every request. Never run with AUTH_ENABLED=false on a network you don't control.
AUTH_ENABLED=true

# CORS allowlist — comma-separated origins that may carry credentials to the API.
# Same-origin requests via the nginx reverse proxy do not need to be listed here.
# Leave empty to allow any origin (DEV ONLY).
ALLOWED_ORIGINS=

# Reverse-proxy trust — set 'true' when the API sits behind nginx terminating HTTPS,
# so secure-cookie + X-Forwarded-Proto behave correctly. ALSO required for accurate
# per-IP login rate-limiting (otherwise req.ip is always the nginx IP).
TRUST_PROXY=false
add .env.example 2026-04-07 21:58:17 -04:00			`# Database Configuration`
			`POSTGRES_DB=wilddragon`
			`POSTGRES_USER=wilddragon`
			`POSTGRES_PASSWORD=changeme`

			`# Database Connection`
			`DATABASE_URL=postgres://wilddragon:changeme@db:5432/wilddragon`

			`# Redis Configuration`
			`REDIS_URL=redis://queue:6379`

			`# S3 Configuration`
			`S3_ENDPOINT=https://broadcastmgmt.cloud`
			`S3_BUCKET=wild-dragon`
			`S3_ACCESS_KEY=changeme`
			`S3_SECRET_KEY=changeme`
fix(infra+workers): S3 creds, ffprobe, BullMQ awaits, thumbnail seek, bin optional, docker-compose vars, jobs Redis, recorders stop codes: .env.example 2026-05-16 00:29:45 -04:00			`S3_REGION=us-east-1`
add .env.example 2026-04-07 21:58:17 -04:00
			`# Session Configuration`
			`SESSION_SECRET=changeme`

			`# MAM API Configuration`
			`MAM_API_URL=http://mam-api:3000`
fix(infra+workers): S3 creds, ffprobe, BullMQ awaits, thumbnail seek, bin optional, docker-compose vars, jobs Redis, recorders stop codes: .env.example 2026-05-16 00:29:45 -04:00
docs(auth): flip AUTH_ENABLED default + document setup + recovery 2026-05-27 15:25:29 -04:00			`# Auth — default to ON in production. Setting to 'false' is a dev-only escape`
			`# hatch that disables all auth checks and attaches a synthetic 'dev' user to`
			`# every request. Never run with AUTH_ENABLED=false on a network you don't control.`
			`AUTH_ENABLED=true`

			`# CORS allowlist — comma-separated origins that may carry credentials to the API.`
			`# Same-origin requests via the nginx reverse proxy do not need to be listed here.`
			`# Leave empty to allow any origin (DEV ONLY).`
			`ALLOWED_ORIGINS=`

			`# Reverse-proxy trust — set 'true' when the API sits behind nginx terminating HTTPS,`
			`# so secure-cookie + X-Forwarded-Proto behave correctly. ALSO required for accurate`
			`# per-IP login rate-limiting (otherwise req.ip is always the nginx IP).`
			`TRUST_PROXY=false`