akanealw
eec8c28fb3
Some checks are pending
Go Benchmark / Performance Regression Check (push) Waiting to run
Cerberus Integration / Cerberus Security Stack Integration (push) Waiting to run
Upload Coverage to Codecov / Backend Codecov Upload (push) Waiting to run
Upload Coverage to Codecov / Frontend Codecov Upload (push) Waiting to run
CodeQL - Analyze / CodeQL analysis (go) (push) Waiting to run
CodeQL - Analyze / CodeQL analysis (javascript-typescript) (push) Waiting to run
CrowdSec Integration / CrowdSec Bouncer Integration (push) Waiting to run
Docker Build, Publish & Test / build-and-push (push) Waiting to run
Docker Build, Publish & Test / Security Scan PR Image (push) Blocked by required conditions
Quality Checks / Auth Route Protection Contract (push) Waiting to run
Quality Checks / Codecov Trigger/Comment Parity Guard (push) Waiting to run
Quality Checks / Backend (Go) (push) Waiting to run
Quality Checks / Frontend (React) (push) Waiting to run
Rate Limit integration / Rate Limiting Integration (push) Waiting to run
Security Scan (PR) / Trivy Binary Scan (push) Waiting to run
Supply Chain Verification (PR) / Verify Supply Chain (push) Waiting to run
WAF integration / Coraza WAF Integration (push) Waiting to run
53 lines
2.0 KiB
Plaintext
Executable File
53 lines
2.0 KiB
Plaintext
Executable File
# Charon Environment Configuration Example
|
|
# =========================================
|
|
# Copy this file to .env and configure with your values.
|
|
# Never commit your actual .env file to version control.
|
|
|
|
# =============================================================================
|
|
# Required Configuration
|
|
# =============================================================================
|
|
|
|
# Database encryption key - 32 bytes base64 encoded
|
|
# Generate with: openssl rand -base64 32
|
|
CHARON_ENCRYPTION_KEY=
|
|
|
|
# =============================================================================
|
|
# Emergency Reset Token (Break-Glass Recovery)
|
|
# =============================================================================
|
|
|
|
# Emergency reset token - REQUIRED for E2E tests (64 characters minimum)
|
|
# Used for break-glass recovery when locked out by ACL or other security modules.
|
|
# This token allows bypassing all security mechanisms to regain access.
|
|
#
|
|
# SECURITY WARNING: Keep this token secure and rotate it periodically (quarterly recommended).
|
|
# Only use this endpoint in genuine emergency situations.
|
|
# Never commit actual token values to the repository.
|
|
#
|
|
# Generate with (Linux/macOS):
|
|
# openssl rand -hex 32
|
|
#
|
|
# Generate with (Windows PowerShell):
|
|
# [Convert]::ToBase64String([System.Security.Cryptography.RandomNumberGenerator]::GetBytes(32))
|
|
#
|
|
# Generate with (Node.js - all platforms):
|
|
# node -e "console.log(require('crypto').randomBytes(32).toString('hex'))"
|
|
#
|
|
# REQUIRED for E2E tests - add to .env file (gitignored) or CI/CD secrets
|
|
CHARON_EMERGENCY_TOKEN=
|
|
|
|
# =============================================================================
|
|
# Optional Configuration
|
|
# =============================================================================
|
|
|
|
# Server port (default: 8080)
|
|
# CHARON_HTTP_PORT=8080
|
|
|
|
# Database path (default: /app/data/charon.db)
|
|
# CHARON_DB_PATH=/app/data/charon.db
|
|
|
|
# Enable debug mode (default: 0)
|
|
# CHARON_DEBUG=0
|
|
|
|
# Use ACME staging environment (default: false)
|
|
# CHARON_ACME_STAGING=false
|