| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104 |
- # -- COMMON
- LOG_LEVEL=info
- # -- NGINX
- NGINX_IMAGE_NAME=ghcr.io/dfir-iris/iriswebapp_nginx
- NGINX_IMAGE_TAG=latest
- SERVER_NAME=iris.app.dev
- KEY_FILENAME=iris_dev_key.pem
- CERT_FILENAME=iris_dev_cert.pem
- # -- DATABASE
- DB_IMAGE_NAME=ghcr.io/dfir-iris/iriswebapp_db
- DB_IMAGE_TAG=latest
- POSTGRES_USER=postgres
- POSTGRES_PASSWORD=__MUST_BE_CHANGED__
- POSTGRES_ADMIN_USER=raptor
- POSTGRES_ADMIN_PASSWORD=__MUST_BE_CHANGED__
- POSTGRES_DB=iris_db
- POSTGRES_SERVER=db
- POSTGRES_PORT=5432
- # -- IRIS
- APP_IMAGE_NAME=ghcr.io/dfir-iris/iriswebapp_app
- APP_IMAGE_TAG=latest
- DOCKERIZED=1
- IRIS_SECRET_KEY=AVerySuperSecretKey-SoNotThisOne
- IRIS_SECURITY_PASSWORD_SALT=ARandomSalt-NotThisOneEither
- IRIS_UPSTREAM_SERVER=app
- IRIS_UPSTREAM_PORT=8000
- IRIS_FRONTEND_SERVER=frontend
- IRIS_FRONTEND_PORT=5173
- IRIS_SVELTEKIT_FRONTEND_DIR=../iris-frontend
- # -- WORKER
- CELERY_BROKER=amqp://rabbitmq
- # -- AUTH
- IRIS_AUTHENTICATION_TYPE=local
- ## optional
- IRIS_ADM_PASSWORD=MySuperAdminPassword!
- #IRIS_ADM_API_KEY=B8BA5D730210B50F41C06941582D7965D57319D5685440587F98DFDC45A01594
- #IRIS_ADM_EMAIL=admin@localhost
- IRIS_ADM_USERNAME=administrator
- # requests the just-in-time creation of users with ldap authentification (see https://github.com/dfir-iris/iris-web/issues/203)
- #IRIS_AUTHENTICATION_CREATE_USER_IF_NOT_EXIST=True
- # the group to which newly created users are initially added, default value is Analysts
- #IRIS_NEW_USERS_DEFAULT_GROUP=
- # -- FOR LDAP AUTHENTICATION
- #IRIS_AUTHENTICATION_TYPE=ldap
- #LDAP_SERVER=127.0.0.1
- #LDAP_AUTHENTICATION_TYPE=SIMPLE
- #LDAP_PORT=3890
- #LDAP_USER_PREFIX=uid=
- #LDAP_USER_SUFFIX=ou=people,dc=example,dc=com
- #LDAP_USE_SSL=False
- # base DN in which to search for users
- #LDAP_SEARCH_DN=ou=users,dc=example,dc=org
- # unique identifier to search the user
- #LDAP_ATTRIBUTE_IDENTIFIER=cn
- # name of the attribute to retrieve the user's display name
- #LDAP_ATTRIBUTE_DISPLAY_NAME=displayName
- # name of the attribute to retrieve the user's email address
- #LDAP_ATTRIBUTE_MAIL=mail
- #LDAP_VALIDATE_CERTIFICATE=True
- #LDAP_TLS_VERSION=1.2
- #LDAP_SERVER_CERTIFICATE=
- #LDAP_PRIVATE_KEY=
- #LDAP_PRIVATE_KEY_PASSWORD=
- # -- FOR OIDC AUTHENTICATION
- # IRIS_AUTHENTICATION_TYPE=oidc
- # OIDC_ISSUER_URL=
- # OIDC_CLIENT_ID=
- # OIDC_CLIENT_SECRET=
- # endpoints only required if provider doesn't support metadata discovery
- # OIDC_AUTH_ENDPOINT=
- # OIDC_TOKEN_ENDPOINT=
- # optional to include logout from oidc provider
- # OIDC_END_SESSION_ENDPOINT=
- # OIDC redirect URL for your IDP: https://<IRIS_SERVER_NAME>/oidc-authorize
- # -- LISTENING PORT
- INTERFACE_HTTPS_PORT=443
- # -- FOR OIDC AUTHENTICATION
- #IRIS_AUTHENTICATION_TYPE=oidc
- #OIDC_ISSUER_URL=
- #OIDC_CLIENT_ID=
- #OIDC_CLIENT_SECRET=
- # endpoints only required if provider doesn't support metadata discovery
- #OIDC_AUTH_ENDPOINT=
- #OIDC_TOKEN_ENDPOINT=
- # optional to include logout from oidc provider
- #OIDC_END_SESSION_ENDPOINT=
|
