179 lines
8.0 KiB
Bash
Executable File
179 lines
8.0 KiB
Bash
Executable File
# Symfony
|
|
APP_ENV=dev
|
|
APP_SECRET=changeme
|
|
APP_SESSIONTIME=1440
|
|
|
|
# Messenger
|
|
MESSENGER_TRANSPORT_DSN=doctrine://default?auto_setup=0
|
|
|
|
# Database
|
|
DATABASE_URL="postgresql://symfony:ChangeMe@postgresql:5432/nineskeletor?serverVersion=13&charset=utf8"
|
|
|
|
# Redis Session
|
|
REDIS_HOST=redis
|
|
REDIS_PORT=6379
|
|
|
|
# Mailer
|
|
MAILER_METHOD=smtp
|
|
MAILER_DSN=smtp://mailer:1025
|
|
MAILER_NOREPLY=noreply@noreply.fr
|
|
|
|
# Basic
|
|
APP_WEBURL=localhost:8005
|
|
APP_MASTERIDENTITY=SQL # SQL | SSO | LDAP
|
|
APP_AUTH=OPENID # SQL | CAS | LDAP | OPENID
|
|
APP_ALIAS=/
|
|
APP_NAME=Nineskeletor
|
|
APP_MODEREGISTRATION= # null | BYADMIN | BYUSER
|
|
APP_ADMINS='["admin"]'
|
|
|
|
# Module = PORTAL | DOCUMENT
|
|
APP_MODULES='["PORTAL"]'
|
|
|
|
# Structure Organisationnelle
|
|
APP_NIVEAUUPDATABLE=0 # Quel degres de niveau est modifiable par les utilisateurs seule les admin et modo via console peuvent outre passer ce param
|
|
|
|
APP_NIVEAU01LABEL="Niveau 01"
|
|
APP_NIVEAU01LABELS="Niveaux 01"
|
|
|
|
APP_NIVEAU02USE=1
|
|
APP_NIVEAU02LABEL="Niveau 02"
|
|
APP_NIVEAU02LABELS="Niveaux 02"
|
|
APP_NIVEAU02MANDATORY='[""]'
|
|
|
|
APP_NIVEAU03USE=1
|
|
APP_NIVEAU03LABEL="Niveau 03"
|
|
APP_NIVEAU03LABELS="Niveaux 03"
|
|
APP_NIVEAU03MANDATORY='[""]'
|
|
|
|
APP_NIVEAU04USE=0
|
|
APP_NIVEAU04LABEL="Niveau 04"
|
|
APP_NIVEAU04LABELS="Niveaux 04"
|
|
APP_NIVEAU04MANDATORY='[""]'
|
|
|
|
APP_GROUPUSE=1
|
|
APP_GROUPSUBMITER='["ALL"]'
|
|
|
|
APP_ANNUSCOPEADMIN=ALL # ALL or number of niveau view : 1||2||3||4
|
|
APP_ANNUSCOPEMODO=ALL # ALL or number of niveau view : 1||2||3||4
|
|
APP_ANNUSCOPEMASTER=ALL # ALL or number of niveau view : 1||2||3||4
|
|
APP_ANNUSCOPEMANAGER=ALL # ALL or number of niveau view : 1||2||3||4
|
|
APP_ANNUSCOPEUSER=ALL # ALL or number of niveau view : 1||2||3||4
|
|
|
|
APP_USERVIEWISVISIBLE=1 # Profil user with isvisible field
|
|
|
|
# Synchronisation
|
|
APP_SYNCHRO=NINE2LDAP # Synchronisation null | LDAP2NINE | NINE2LDAP | NINE2NINE
|
|
APP_SYNDCHROPURGENIVEAU01=1 # Purger les niveau01s obsolète en cas de synchronisation
|
|
APP_SYNDCHROPURGENIVEAU02=1 # Purger les niveau02s obsolète en cas de synchronisation
|
|
APP_SYNDCHROPURGENIVEAU03=1 # Purger les niveau03s obsolète en cas de synchronisation
|
|
APP_SYNDCHROPURGENIVEAU04=1 # Purger les niveau04s obsolète en cas de synchronisation
|
|
APP_SYNDCHROPURGEGROUP=1 # Purger les groups obsolète en cas de synchronisation
|
|
APP_SYNDCHROPURGEUSER=1 # Purger les users obsolète en cas de synchronisation
|
|
|
|
# LDAP
|
|
LDAP_HOST=openldap # host du serveur ldap ex:openldap
|
|
LDAP_PORT=389 # port du serveur ldap ex:389
|
|
LDAP_USETLS=0 # connection TLS 0/1
|
|
LDAP_USERWRITER=1 # LDAP_USER compte writer ? 0/1
|
|
LDAP_USER="cn=admin,dc=nine,dc=fr" # DN compte access ldap
|
|
LDAP_PASSWORD=changeme # Password comte access ldap
|
|
LDAP_BASEDN= # Base DN ex:dc=nine,dc=fr
|
|
LDAP_BASEORGANISATION="ou=nineskeletor,dc=nine,dc=fr" # Base Organisation ex:ou=nineskeletor,dc=nine,dc=fr
|
|
LDAP_BASENIVEAU01="ou=niveau01,ou=nineskeletor,dc=nine,dc=fr" # Base Niveau01 ex:ou=niveau01,ou=nineskeletor,dc=nine,dc=fr
|
|
LDAP_BASENIVEAU02="ou=niveau02,ou=nineskeletor,dc=nine,dc=fr" # Base Niveau02 ex:ou=niveau02,ou=nineskeletor,dc=nine,dc=fr
|
|
LDAP_BASENIVEAU03="ou=niveau03,ou=nineskeletor,dc=nine,dc=fr" # Base Niveau03 ex:ou=niveau03,ou=nineskeletor,dc=nine,dc=fr
|
|
LDAP_BASENIVEAU04="ou=niveau04,ou=nineskeletor,dc=nine,dc=fr" # Base Niveau04 ex:ou=niveau04,ou=nineskeletor,dc=nine,dc=fr
|
|
LDAP_BASEGROUP="ou=groups,ou=nineskeletor,dc=nine,dc=fr" # Base Group ex:ou=groups,ou=nineskeletor,dc=nine,dc=fr
|
|
LDAP_BASEUSER="ou=users,ou=nineskeletor,dc=nine,dc=fr" # Base User ex:ou=users,ou=nineskeletor,dc=nine,dc=fr
|
|
LDAP_USERNAME=uid # Attribut id d'un user
|
|
LDAP_FIRSTNAME=givenname # Attribut firstname d'un user
|
|
LDAP_LASTNAME=sn # Attribut lastname d'un user
|
|
LDAP_EMAIL=mail # Attribut email d'un user
|
|
LDAP_AVATAR= # Attribut avatar d'un user
|
|
LDAP_MEMBEROF=memberof # Attribut memberof d'un user
|
|
LDAP_GROUPGID=gidnumber # Attribut gid d'un groupe
|
|
LDAP_GROUPNAME=cn # Attribut name d'un groupe
|
|
LDAP_GROUPMEMBER=memberuid # Attribut stockant les membres d'un groupe
|
|
LDAP_GROUPMEMBERISDN=0 # LDAP_GROUPMEMBER stocke un uid ou un dn ? 0/1
|
|
LDAP_FILTERGROUP=(cn=*) # requete ldap pour rechercher les groupes
|
|
LDAP_FILTERUSER=(uid=*) # requete ldap pour rechercher les users
|
|
LDAP_AUTOSUBMIT=1 # if APP_AUTH = LDAP autocréer les users non existant
|
|
LDAP_AUTOUPDATE=1 # if APP_AUTH = LDAP automodifier les users existant
|
|
|
|
# If APP_AUTH = CAS
|
|
CAS_HOST=
|
|
CAS_PORT=
|
|
CAS_PATH=
|
|
CAS_USERNAME=username
|
|
CAS_EMAIL=email
|
|
CAS_LASTNAME=lastname
|
|
CAS_FIRSTNAME=firstname
|
|
CAS_AVATAR=
|
|
CAS_NIVEAU01=
|
|
CAS_GROUP=
|
|
CAS_AUTOSUBMIT=1 # if APP_AUTH = CAS autocréer les users non existant
|
|
CAS_AUTOUPDATE=1 # if APP_AUTH = CAS automodifier les users existant
|
|
|
|
# If APP_AUTH = OPENID
|
|
OAUTH_CLIENTID=nineskeletor
|
|
OAUTH_CLIENTSECRET=changeme
|
|
OAUTH_LOGINURL="http://localhost:7080/oauth2/auth"
|
|
OAUTH_LOGOUTURL="http://localhost:7080/oauth2/sessions/logout"
|
|
OAUTH_TOKENURL="http://hydra:4444/oauth2/token"
|
|
OAUTH_USERINFO="http://hydra:4444/userinfo"
|
|
OAUTH_USERNAME=username
|
|
OAUTH_EMAIL=email
|
|
OAUTH_LASTNAME=lastname
|
|
OAUTH_FIRSTNAME=firstname
|
|
OAUTH_AVATAR=
|
|
OAUTH_NIVEAU01=
|
|
OAUTH_GROUP=
|
|
OAUTH_AUTOSUBMIT=1 # if APP_AUTH = OPENID autocréer les users non existant
|
|
OAUTH_AUTOUPDATE=1 # if APP_AUTH = OPENID automodifier les users existant
|
|
|
|
# IF APP_SYNCHRO=NINE2NINE
|
|
NINE_URL=
|
|
NINE_SECRET=
|
|
|
|
# If APP_MODEREGISTRATION != NULL
|
|
APP_MODEREGISTRATIONTERM=6 # Temps en heure de la durée de validité de l'inscription
|
|
|
|
# Proxy
|
|
PROXY_USE=0
|
|
PROXY_HOST=
|
|
PROXY_PORT=
|
|
|
|
# Audit
|
|
AUDIT_USE=0
|
|
|
|
# Sonde statistic
|
|
SONDE_USE=0
|
|
SONDE_URL=
|
|
|
|
# Mercure
|
|
MERCURE_URL=https://mercure/.well-known/mercure
|
|
MERCURE_PUBLIC_URL=https://127.0.0.1/.well-known/mercure
|
|
MERCURE_JWT_SECRET="!changeme!changeme!changeme!changeme!changeme!changeme!"
|
|
|
|
# Minio
|
|
MINIO_URL=http://nginx:9000
|
|
MINIO_KEY=minio
|
|
MINIO_SECRET=changeme
|
|
MINIO_BUCKET=nineskeletor
|
|
MINIO_ROOT=
|
|
MINIO_PATH_STYLE=1
|
|
MINIO_SECURE=0
|
|
|
|
# Hydra apps
|
|
HYDRA_LOGINCHALLENGE="http://hydra:4445/oauth2/auth/requests/login?login_challenge="
|
|
HYDRA_LOGINCHALLENGEACCEPT="http://hydra:4445/oauth2/auth/requests/login/accept?login_challenge="
|
|
HYDRA_CONSENTCHALLENGE="http://hydra:4445/oauth2/auth/requests/consent?consent_challenge="
|
|
HYDRA_CONSENTCHALLENGEACCEPT="http://hydra:4445/oauth2/auth/requests/consent/accept?consent_challenge="
|
|
|
|
# Lock
|
|
LOCK_DSN="postgresql://symfony:ChangeMe@postgresql:5432/nineskeletor?serverVersion=13&charset=utf8"
|
|
|
|
# Sentry
|
|
SENTRY_DSN=
|