# -- COMMON LOG_LEVEL=info # -- NGINX NGINX_IMAGE_NAME=ghcr.io/dfir-iris/iriswebapp_nginx NGINX_IMAGE_TAG=latest SERVER_NAME=iris.app.dev KEY_FILENAME=iris_dev_key.pem CERT_FILENAME=iris_dev_cert.pem # -- DATABASE DB_IMAGE_NAME=ghcr.io/dfir-iris/iriswebapp_db DB_IMAGE_TAG=latest POSTGRES_USER=postgres POSTGRES_PASSWORD=__MUST_BE_CHANGED__ POSTGRES_ADMIN_USER=raptor POSTGRES_ADMIN_PASSWORD=__MUST_BE_CHANGED__ POSTGRES_DB=iris_db POSTGRES_SERVER=db POSTGRES_PORT=5432 # -- IRIS APP_IMAGE_NAME=ghcr.io/dfir-iris/iriswebapp_app APP_IMAGE_TAG=latest DOCKERIZED=1 IRIS_SECRET_KEY=AVerySuperSecretKey-SoNotThisOne IRIS_SECURITY_PASSWORD_SALT=ARandomSalt-NotThisOneEither IRIS_UPSTREAM_SERVER=app IRIS_UPSTREAM_PORT=8000 IRIS_FRONTEND_SERVER=frontend IRIS_FRONTEND_PORT=5173 IRIS_SVELTEKIT_FRONTEND_DIR=../iris-frontend # -- WORKER CELERY_BROKER=amqp://rabbitmq # -- AUTH IRIS_AUTHENTICATION_TYPE=local ## optional #IRIS_ADM_PASSWORD=MySuperAdminPassword! #IRIS_ADM_API_KEY=B8BA5D730210B50F41C06941582D7965D57319D5685440587F98DFDC45A01594 #IRIS_ADM_EMAIL=admin@localhost #IRIS_ADM_USERNAME=administrator # requests the just-in-time creation of users with ldap authentification (see https://github.com/dfir-iris/iris-web/issues/203) #IRIS_AUTHENTICATION_CREATE_USER_IF_NOT_EXIST=True # the group to which newly created users are initially added, default value is Analysts #IRIS_NEW_USERS_DEFAULT_GROUP= # -- FOR LDAP AUTHENTICATION #IRIS_AUTHENTICATION_TYPE=ldap #LDAP_SERVER=127.0.0.1 #LDAP_AUTHENTICATION_TYPE=SIMPLE #LDAP_PORT=3890 #LDAP_USER_PREFIX=uid= #LDAP_USER_SUFFIX=ou=people,dc=example,dc=com #LDAP_USE_SSL=False # base DN in which to search for users #LDAP_SEARCH_DN=ou=users,dc=example,dc=org # unique identifier to search the user #LDAP_ATTRIBUTE_IDENTIFIER=cn # name of the attribute to retrieve the user's display name #LDAP_ATTRIBUTE_DISPLAY_NAME=displayName # name of the attribute to retrieve the user's email address #LDAP_ATTRIBUTE_MAIL=mail #LDAP_VALIDATE_CERTIFICATE=True #LDAP_TLS_VERSION=1.2 #LDAP_SERVER_CERTIFICATE= #LDAP_PRIVATE_KEY= #LDAP_PRIVATE_KEY_PASSWORD= # -- FOR OIDC AUTHENTICATION # IRIS_AUTHENTICATION_TYPE=oidc # OIDC_ISSUER_URL= # OIDC_CLIENT_ID= # OIDC_CLIENT_SECRET= # endpoints only required if provider doesn't support metadata discovery # OIDC_AUTH_ENDPOINT= # OIDC_TOKEN_ENDPOINT= # optional to include logout from oidc provider # OIDC_END_SESSION_ENDPOINT= # OIDC redirect URL for your IDP: https:///oidc-authorize # -- LISTENING PORT INTERFACE_HTTPS_PORT=443 # -- FOR OIDC AUTHENTICATION #IRIS_AUTHENTICATION_TYPE=oidc #OIDC_ISSUER_URL= #OIDC_CLIENT_ID= #OIDC_CLIENT_SECRET= # endpoints only required if provider doesn't support metadata discovery #OIDC_AUTH_ENDPOINT= #OIDC_TOKEN_ENDPOINT= # optional to include logout from oidc provider #OIDC_END_SESSION_ENDPOINT=