mirror of
https://github.com/gravitl/netmaker.git
synced 2024-09-20 23:36:18 +08:00
bfc61fa359
* feat(NET-584): wip: session mgmt for RAC * feat(NET-584): session mgmt for RAC * feat(NET-584): session mgmt for RAC * feat(NET-584): session mgmt for RAC * feat(NET-584): session mgmt for RAC * feat(NET-584): session mgmt for RAC * feat(NET-584): session mgmt for RAC * feat(NET-584): session mgmt for RAC * feat(NET-584): only enable if client is disabled * feat(NET-584): check only for normal users * feat(NET-584): fix condition
85 lines
2.9 KiB
Bash
85 lines
2.9 KiB
Bash
# Email used for SSL certificates
|
|
NM_EMAIL=
|
|
# The base domain of netmaker
|
|
NM_DOMAIN=
|
|
# Public IP of machine
|
|
SERVER_HOST=
|
|
# The admin master key for accessing the API. Change this in any production installation.
|
|
MASTER_KEY=
|
|
# The username to set for turn api access
|
|
TURN_USERNAME=
|
|
# The password to set for turn api access
|
|
TURN_PASSWORD=
|
|
# The username to set for MQ access
|
|
MQ_USERNAME=
|
|
# The password to set for MQ access
|
|
MQ_PASSWORD=
|
|
INSTALL_TYPE=
|
|
NETMAKER_TENANT_ID=
|
|
LICENSE_KEY=
|
|
SERVER_IMAGE_TAG=
|
|
UI_IMAGE_TAG=
|
|
NETCLIENT_ENDPOINT_DETECTION=disabled
|
|
# used for HA - identifies this server vs other servers
|
|
NODE_ID=netmaker-server-1
|
|
METRICS_EXPORTER=off
|
|
PROMETHEUS=off
|
|
# Enables DNS Mode, meaning all nodes will set hosts file for private dns settings
|
|
DNS_MODE=on
|
|
# Enable auto update of netclient ? ENUM:- enabled,disabled | default=enabled
|
|
NETCLIENT_AUTO_UPDATE=enabled
|
|
# The HTTP API port for Netmaker. Used for API calls / communication from front end.
|
|
# If changed, need to change port of BACKEND_URL for netmaker-ui.
|
|
API_PORT=8081
|
|
EXPORTER_API_PORT=8085
|
|
# The "allowed origin" for API requests. Change to restrict where API requests can come from with comma-separated
|
|
# URLs. ex:- https://dashboard.netmaker.domain1.com,https://dashboard.netmaker.domain2.com
|
|
CORS_ALLOWED_ORIGIN=*
|
|
# Show keys permanently in UI (until deleted) as opposed to 1-time display.
|
|
DISPLAY_KEYS=on
|
|
# Database to use - sqlite, postgres, or rqlite
|
|
DATABASE=sqlite
|
|
# The address of the mq server. If running from docker compose it will be "mq". Otherwise, need to input address.
|
|
# If using "host networking", it will find and detect the IP of the mq container.
|
|
# For EMQX websockets use `SERVER_BROKER_ENDPOINT=ws://mq:8083/mqtt`
|
|
SERVER_BROKER_ENDPOINT=ws://mq:1883
|
|
# The reachable port of STUN on the server
|
|
STUN_PORT=3478
|
|
# Logging verbosity level - 1, 2, or 3
|
|
VERBOSITY=1
|
|
# Port to access turn server
|
|
TURN_PORT=3479
|
|
# Config for using turn, accepts either true/false
|
|
USE_TURN=true
|
|
DEBUG_MODE=off
|
|
TURN_API_PORT=8089
|
|
# Enables the REST backend (API running on API_PORT at SERVER_HTTP_HOST).
|
|
# Change to "off" to turn off.
|
|
REST_BACKEND=on
|
|
# If turned "on", Server will not set Host based on remote IP check.
|
|
# This is already overridden if SERVER_HOST is set. Turned "off" by default.
|
|
DISABLE_REMOTE_IP_CHECK=off
|
|
# Whether or not to send telemetry data to help improve Netmaker. Switch to "off" to opt out of sending telemetry.
|
|
TELEMETRY=on
|
|
###
|
|
#
|
|
# OAuth section
|
|
#
|
|
###
|
|
# "<azure-ad|github|google|oidc>"
|
|
AUTH_PROVIDER=
|
|
# "<client id of your oauth provider>"
|
|
CLIENT_ID=
|
|
# "<client secret of your oauth provider>"
|
|
CLIENT_SECRET=
|
|
# "https://dashboard.<netmaker base domain>"
|
|
FRONTEND_URL=
|
|
# "<only for azure, you may optionally specify the tenant for the OAuth>"
|
|
AZURE_TENANT=
|
|
# https://oidc.yourprovider.com - URL of oidc provider
|
|
OIDC_ISSUER=
|
|
# Duration of JWT token validity in seconds
|
|
JWT_VALIDITY_DURATION=43200
|
|
# Auto disable a user's connecteds clients bassed on JWT token expiration
|
|
RAC_AUTO_DISABLE="true"
|