177 lines
6.5 KiB
Bash
Executable File
177 lines
6.5 KiB
Bash
Executable File
# Symfony
|
||
APP_ENV=prod
|
||
APP_SECRET=changeme
|
||
APP_SESSIONTIME=1440
|
||
|
||
# Messenger
|
||
MESSENGER_TRANSPORT_DSN=doctrine://default?auto_setup=0
|
||
|
||
# Database
|
||
DATABASE_URL="postgresql://symfony:changeme@postgres:5432/app?serverVersion=13&charset=utf8"
|
||
|
||
# Redis Sentiel Session
|
||
REDIS_HOST='redis-sentinel'
|
||
REDIS_PORT=26379 # 6379 | 26379
|
||
REDIS_SERVICE=redismaster # master sentinel name
|
||
|
||
# Mailer
|
||
MAILER_METHOD=smtp
|
||
MAILER_DSN=smtp://mailer:1025
|
||
MAILER_NOREPLY=noreply@noreply.fr
|
||
|
||
# Basic
|
||
APP_WEBURL=localhost:8080
|
||
APP_MASTERIDENTITY=SQL # SQL | SSO | LDAP
|
||
APP_AUTH=SQL # SQL | CAS | LDAP | OPENID | à faire SAML
|
||
APP_ALIAS=/
|
||
APP_NAME=Nineskeletor
|
||
APP_MODEREGISTRATION= # null | BYADMIN | BYUSER
|
||
APP_ADMINS='["admin"]'
|
||
|
||
# Structure Organisationnelle
|
||
APP_NIVEAUUPDATABLE=0 # Quel degres de niveau est modifiable par les utilisateurs seule les admin et modo via console peuvent outre passer ce param
|
||
|
||
APP_NIVEAU01LABEL="Niveau 01"
|
||
APP_NIVEAU01LABELS="Niveaux 01"
|
||
|
||
APP_NIVEAU02USE=1
|
||
APP_NIVEAU02LABEL="Niveau 02"
|
||
APP_NIVEAU02LABELS="Niveaux 02"
|
||
APP_NIVEAU02MANDATORY='[""]'
|
||
|
||
APP_NIVEAU03USE=1
|
||
APP_NIVEAU03LABEL="Niveau 03"
|
||
APP_NIVEAU03LABELS="Niveaux 03"
|
||
APP_NIVEAU03MANDATORY='[""]'
|
||
|
||
APP_NIVEAU04USE=0
|
||
APP_NIVEAU04LABEL="Niveau 04"
|
||
APP_NIVEAU04LABELS="Niveaux 04"
|
||
APP_NIVEAU04MANDATORY='[""]'
|
||
|
||
APP_GROUPUSE=1
|
||
APP_GROUPSUBMITER='["ALL"]'
|
||
|
||
APP_ANNUSCOPEADMIN=ALL # ALL or number of niveau view : 1||2||3||4 or 0 desactivé
|
||
APP_ANNUSCOPEMODO=ALL # ALL or number of niveau view : 1||2||3||4 or 0 desactivé
|
||
APP_ANNUSCOPEMASTER=ALL # ALL or number of niveau view : 1||2||3||4 or 0 desactivé
|
||
APP_ANNUSCOPEMANAGER=ALL # ALL or number of niveau view : 1||2||3||4 or 0 desactivé
|
||
APP_ANNUSCOPEUSER=ALL # ALL or number of niveau view : 1||2||3||4 or 0 desactivé
|
||
|
||
APP_USERVIEWISVISIBLE=1 # Profil user with isvisible field
|
||
|
||
# Synchronisation
|
||
APP_SYNCHRO= # Synchronisation null | LDAP2NINE | NINE2LDAP | NINE2NINE
|
||
APP_SYNDCHROPURGENIVEAU01=1 # Purger les niveau01s obsolète en cas de synchronisation
|
||
APP_SYNDCHROPURGENIVEAU02=1 # Purger les niveau02s obsolète en cas de synchronisation
|
||
APP_SYNDCHROPURGENIVEAU03=1 # Purger les niveau03s obsolète en cas de synchronisation
|
||
APP_SYNDCHROPURGENIVEAU04=1 # Purger les niveau04s obsolète en cas de synchronisation
|
||
APP_SYNDCHROPURGEGROUP=1 # Purger les groups obsolète en cas de synchronisation
|
||
APP_SYNDCHROPURGEUSER=1 # Purger les users obsolète en cas de synchronisation
|
||
|
||
# LDAP
|
||
LDAP_HOST=openldap # host du serveur ldap
|
||
LDAP_PORT=389 # port du serveur ldap
|
||
LDAP_USETLS=0 # connection TLS 0/1
|
||
LDAP_USERWRITER=0 # LDAP_USER compte writer ? 0/1
|
||
LDAP_USER= # DN compte access ldap admin or reader
|
||
LDAP_PASSWORD= # Password compte access ldap admin or reader
|
||
LDAP_BASEDN= # Base DN ex:dc=nine,dc=fr
|
||
LDAP_BASEORGANISATION= # Base Organisation ex:ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_BASENIVEAU01= # Base Niveau01 ex:ou=niveau01,ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_BASENIVEAU02= # Base Niveau02 ex:ou=niveau02,ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_BASENIVEAU03= # Base Niveau03 ex:ou=niveau03,ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_BASENIVEAU04= # Base Niveau04 ex:ou=niveau04,ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_BASEGROUP= # Base Group ex:ou=groups,ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_BASEUSER= # Base User ex:ou=users,ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_USERNAME=uid # Attribut id d'un user
|
||
LDAP_FIRSTNAME=givenname # Attribut firstname d'un user
|
||
LDAP_LASTNAME=sn # Attribut lastname d'un user
|
||
LDAP_EMAIL=mail # Attribut email d'un user
|
||
LDAP_AVATAR= # Attribut avatar d'un user
|
||
LDAP_MEMBEROF=memberof # Attribut memberof d'un user
|
||
LDAP_GROUPGID=gidnumber # Attribut gid d'un groupe
|
||
LDAP_GROUPNAME=cn # Attribut name d'un groupe
|
||
LDAP_GROUPMEMBER=memberuid # Attribut stockant les membres d'un groupe
|
||
LDAP_GROUPMEMBERISDN=0 # LDAP_GROUPMEMBER stocke un uid ou un dn ? 0/1
|
||
LDAP_FILTERGROUP=(cn=*) # requete ldap pour rechercher les groupes
|
||
LDAP_FILTERUSER=(uid=*) # requete ldap pour rechercher les users
|
||
LDAP_AUTOSUBMIT=1 # if APP_AUTH = LDAP autocréer les users non existant
|
||
LDAP_AUTOUPDATE=1 # if APP_AUTH = LDAP automodifier les users existant
|
||
|
||
# If APP_AUTH = CAS
|
||
CAS_HOST=
|
||
CAS_PORT=
|
||
CAS_PATH=
|
||
CAS_USERNAME=username
|
||
CAS_EMAIL=email
|
||
CAS_LASTNAME=lastname
|
||
CAS_FIRSTNAME=firstname
|
||
CAS_AVATAR=
|
||
CAS_NIVEAU01=
|
||
CAS_GROUP=
|
||
CAS_AUTOSUBMIT=1 # if APP_AUTH = CAS autocréer les users non existant
|
||
CAS_AUTOUPDATE=1 # if APP_AUTH = CAS automodifier les users existant
|
||
|
||
# If APP_AUTH = OPENID
|
||
OAUTH_CLIENTID=nineskeletor
|
||
OAUTH_CLIENTSECRET="changeme"
|
||
OAUTH_LOGINURL=http://localhost:7080/oauth2/auth
|
||
OAUTH_LOGOUTURL=http://localhost:7080/oauth2/sessions/logout
|
||
OAUTH_TOKENURL=http://hydra:4444/oauth2/token
|
||
OAUTH_USERINFO=http://hydra:4444/userinfo
|
||
OAUTH_USERNAME=username
|
||
OAUTH_EMAIL=email
|
||
OAUTH_LASTNAME=lastname
|
||
OAUTH_FIRSTNAME=firstname
|
||
OAUTH_AVATAR=
|
||
OAUTH_NIVEAU01=
|
||
OAUTH_GROUP=
|
||
OAUTH_AUTOSUBMIT=0 # if APP_AUTH = OPENID autocréer les users non existant
|
||
OAUTH_AUTOUPDATE=1 # if APP_AUTH = OPENID automodifier les users existant
|
||
|
||
# IF APP_SYNCHRO=NINE2NINE
|
||
NINE_URL=
|
||
NINE_SECRET=
|
||
|
||
# If APP_MODEREGISTRATION != NULL
|
||
APP_MODEREGISTRATIONTERM=6 # Temps en heure de la durée de validité de l'inscription
|
||
|
||
# Proxy
|
||
PROXY_USE=0
|
||
PROXY_HOST=
|
||
PROXY_PORT=
|
||
|
||
# Audit
|
||
AUDIT_USE=0
|
||
|
||
# Sonde statistic
|
||
SONDE_USE=0
|
||
SONDE_URL=
|
||
|
||
# Mercure
|
||
MERCURE_URL=http://mercure/.well-known/mercure
|
||
MERCURE_PUBLIC_URL=http://localhost:8081/.well-known/mercure
|
||
MERCURE_JWT_SECRET="!changeme!changeme!changeme!changeme!changeme!changeme!"
|
||
|
||
# Minio
|
||
MINIO_URL=http://nginx:9000
|
||
MINIO_KEY=minio
|
||
MINIO_SECRET=changeme
|
||
MINIO_BUCKET=nine
|
||
MINIO_ROOT=
|
||
MINIO_PATH_STYLE=1
|
||
MINIO_SECURE=0
|
||
|
||
# Hydra apps
|
||
HYDRA_LOGINCHALLENGE="http://hydra:4445/oauth2/auth/requests/login?login_challenge="
|
||
HYDRA_LOGINCHALLENGEACCEPT="http://hydra:4445/oauth2/auth/requests/login/accept?login_challenge="
|
||
HYDRA_CONSENTCHALLENGE="http://hydra:4445/oauth2/auth/requests/consent?consent_challenge="
|
||
HYDRA_CONSENTCHALLENGEACCEPT="http://hydra:4445/oauth2/auth/requests/consent/accept?consent_challenge="
|
||
|
||
# Lock
|
||
LOCK_DSN="postgresql://symfony:changeme@postgres:5432/app?serverVersion=13&charset=utf8"
|
||
|
||
# Sentry
|
||
SENTRY_DSN=
|