# === Basic Phoenix configuration === BASE_URL=http://localhost:4000 # SAME_SITE_COOKIE=Lax # SECURE_COOKIE=false DATABASE_URL=postgres://claper:claper@db:5432/claper SECRET_KEY_BASE=0LZiQBLw4WvqPlz4cz8RsHJlxNiSqM9B48y4ChyJ5v1oA0L/TPIqRjQNdPZN3iEG # Generate with `mix phx.gen.secret` # ⚠️ Don't use this exact value for SECRET_KEY_BASE or someone would be able to sign a cookie with user_id=1 and log in as the admin! # === Storage configuration === PRESENTATION_STORAGE=local PRESENTATION_STORAGE_DIR=/app/uploads # MAX_FILE_SIZE_MB=15 # == Standard AWS environment variables # S3_ACCESS_KEY_ID=xxx # S3_SECRET_ACCESS_KEY=xxx # S3_REGION=eu-west-3 # S3_BUCKET=xxx # == If you're using an alternative S3-compatible service, port optional # S3_SCHEME=https:// # S3_HOST=www.example.com # S3_PORT=443 # == If the public S3-compatible URL is different from the one used to write data # S3_PUBLIC_URL=https://www.example.com # === Mail configuration === MAIL_TRANSPORT=local # smtp or postmark, anything else uses the local adapter MAIL_FROM=noreply@claper.co MAIL_FROM_NAME=Claper # == Use the following if MAIL_TRANSPORT=smtp # SMTP_RELAY=smtp.example.com # SMTP_PORT=465 # SMTP_RETRIES=1 # SMTP_NO_MX_LOOKUPS=false # SMTP_AUTH=always # if_available, always or never # SMTP_USERNAME=username # SMTP_PASSWORD=xxx # SMTP_SSL=false # SMTP_TLS=if_available # if_available, always or never # SMTP_SSL_DEPTH=2 # SMTP_SSL_SERVER=*.example.com # == Use the following if MAIL_TRANSPORT=postmark # POSTMARK_API_KEY=xxx # == Dev mailbox # ENABLE_MAILBOX_ROUTE=false # MAILBOX_USER=admin # MAILBOX_PASSWORD=admin # === Claper configuration === # ENABLE_ACCOUNT_CREATION=true # EMAIL_CONFIRMATION=true # ALLOW_UNLINK_EXTERNAL_PROVIDER=false # LOGOUT_REDIRECT_URL=https://google.com # GS_JPG_RESOLUTION=300x300 # LANGUAGES=en,fr,es,it,nl,de # == Legal links shown on the registration page (both must be set to display the notice) # TERMS_URL=https://example.com/terms # PRIVACY_URL=https://example.com/privacy # == Reverse proxy / IP forwarding (set these if Claper runs behind a load balancer or reverse proxy) # Comma-separated list of trusted proxy IPs or CIDR ranges whose forwarding headers will be trusted # REMOTE_IP_PROXIES=10.0.0.0/8,172.16.0.0/12,192.168.0.0/16 # Comma-separated list of headers to inspect for the real client IP (replaces the defaults: forwarded, x-forwarded-for, x-client-ip, x-real-ip) # REMOTE_IP_HEADERS=forwarded,x-forwarded-for,x-client-ip,x-real-ip # === OIDC configuration === # OIDC_PROVIDER_NAME="OpenID" # OIDC_ISSUER=https://my-idp.example/application/o/claper/ # OIDC_CLIENT_ID=XXX # OIDC_CLIENT_SECRET=XXX # OIDC_SCOPES="openid email profile" # OIDC_LOGO_URL="" # OIDC_PROPERTY_MAPPINGS="roles:custom_attributes.roles,organization:custom_attributes.organization" # OIDC_AUTO_REDIRECT_LOGIN=true