forked from syseleven/shared-secrets
-
Notifications
You must be signed in to change notification settings - Fork 2
/
.env.default
58 lines (47 loc) · 2.44 KB
/
.env.default
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
; this is an string containing the supported RSA privated keys for encryption and decryption, the LAST RSA private key
; within the string is used to encrypt new secrets while all RSA private keys are used to decrypt secrets, this allows
; for smooth key rollovers; for share-only instances it is sufficient to set the RSA public key of the corresponding
; read-only instance here
RSA_PRIVATE_KEYS="-----BEGIN RSA PRIVATE KEY-----
...
...
...
-----END RSA PRIVATE KEY-----
-----BEGIN PUBLIC KEY-----
...
...
...
-----END PUBLIC KEY-----"
; this is the title of the service, it is shown in header of all pages
SERVICE_TITLE="Shared-Secrets"
; this is the full URL of the service, the encrypted secret will be appended to this string
SERVICE_URL="http://127.0.0.1/"
; this is the text of the imprint link
IMPRINT_TEXT="Who provides this service?"
; this is the URL the imprint link shall forward to
IMPRINT_URL="http://127.0.0.1/"
; this is the MySQL configuration, do not forget to create the corresponding database and the following table:
; > CREATE TABLE secrets ( keyid VARCHAR(64), fingerprint VARCHAR(64), time TIMESTAMP, PRIMARY KEY (keyid, fingerprint) );
MYSQL_HOST="localhost"
MYSQL_PORT=3306
MYSQL_USER=null
MYSQL_PASS=null
MYSQL_DB=null
; this is the SQLite configuration, the database will automatically be created if it does not exist
SQLITE_PATH="%{ROOT_DIR}/db/db.sqlite"
; this enables or disables the debug mode of the instance
DEBUG_MODE=false
; this is the default timezone for the execution of the script
DEFAULT_TIMEZONE="Europe/Berlin"
; this enables or disables the read-only mode of the instance,
; by using the read-only mode you need another instance to create secret sharing links,
; this separation can be useful if you only want to be internally able to create links
READ_ONLY=false
; this enables or disables the share-only mode of the instance,
; by using the share-only mode you need another instance to read secret sharing links,
; this separation can be useful if you only want to be internally able to create links
SHARE_ONLY=false
; this enables or disables the jumbo secret support,
; jumbo secrets can be up to 16384 bytes (16kb) in size,
; jumbo secret sharing links that exceed 2048 bytes (2k) in size will most likely be incompatible with older Internet Explorer versions
JUMBO_SECRETS=false