7648946c2b
EsyMailService - 2 nouvelles méthodes de vérification DNS : checkDnsEsyMail(domain) — config réception (Dovecot) : - MX → doit pointer vers ESYMAIL_HOSTNAME (mail.esy-web.dev) - SPF → doit contenir le hostname mail ou include:_spf - DKIM → sélecteur dkim._domainkey.domain (TXT ou CNAME) - DMARC → _dmarc.domain doit contenir v=DMARC1 - Retourne ok=true si les 4 checks passent checkDnsEsyMailer(domain) — config envoi (AWS SES) : - SES domaine vérifié (isDomainVerified = Success) - SES DKIM activé et vérifié (getDkimStatus enabled+verified) - SPF → doit contenir include:amazonses.com - MAIL FROM → configuré et vérifié (getMailFromStatus = Success) - Retourne ok=true si les 4 checks passent Intégration : - Les checks DNS sont exécutés seulement sur l'onglet NDD (pas sur les autres onglets pour éviter les appels réseau inutiles) - Les résultats alimentent configDnsEsyMail et configDnsEsyMailer dans la sous-ligne de chaque domaine (OK vert / KO rouge) Configuration : - .env : ESYMAIL_HOSTNAME (vide par défaut) - .env.local : ESYMAIL_HOSTNAME=mail.esy-web.dev - ansible/vault.yml : esymail_hostname pour la prod Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
130 lines
3.4 KiB
Bash
130 lines
3.4 KiB
Bash
# In all environments, the following files are loaded if they exist,
|
|
# the latter taking precedence over the former:
|
|
#
|
|
# * .env contains default values for the environment variables needed by the app
|
|
# * .env.local uncommitted file with local overrides
|
|
# * .env.$APP_ENV committed environment-specific defaults
|
|
# * .env.$APP_ENV.local uncommitted environment-specific overrides
|
|
#
|
|
# Real environment variables win over .env files.
|
|
#
|
|
# DO NOT DEFINE PRODUCTION SECRETS IN THIS FILE NOR IN ANY OTHER COMMITTED FILES.
|
|
# https://symfony.com/doc/current/configuration/secrets.html
|
|
#
|
|
# Run "composer dump-env prod" to compile .env files for production use (requires symfony/flex >=1.2).
|
|
# https://symfony.com/doc/current/best_practices.html#use-environment-variables-for-infrastructure-configuration
|
|
|
|
###> symfony/framework-bundle ###
|
|
APP_ENV=dev
|
|
APP_SECRET=a1b2c3d4e5f6g7h8i9j0k1l2m3n4o5p6
|
|
APP_SHARE_DIR=var/share
|
|
###< symfony/framework-bundle ###
|
|
|
|
###> symfony/routing ###
|
|
DEFAULT_URI=https://esyweb.local
|
|
###< symfony/routing ###
|
|
|
|
###> doctrine/doctrine-bundle ###
|
|
DATABASE_URL="postgresql://app:secret@pgbouncer:6432/e_ticket?serverVersion=16&charset=utf8"
|
|
###< doctrine/doctrine-bundle ###
|
|
|
|
###> symfony/messenger ###
|
|
MESSENGER_TRANSPORT_DSN=redis://redis:6379/messages
|
|
###< symfony/messenger ###
|
|
|
|
###> session ###
|
|
SESSION_HANDLER_DSN=redis://redis:6379/1
|
|
###< session ###
|
|
|
|
###> cache ###
|
|
REDIS_CACHE_DSN=redis://redis:6379/2
|
|
###< cache ###
|
|
|
|
###> symfony/mailer ###
|
|
MAILER_DSN=smtp://mailpit:1025
|
|
###< symfony/mailer ###
|
|
|
|
###> vite ###
|
|
# 0 = dev (HMR via localhost:5173), 1 = prod (manifest build)
|
|
VITE_LOAD=0
|
|
REAL_MAIL=0
|
|
###< vite ###
|
|
STRIPE_PK=
|
|
STRIPE_SK=
|
|
STRIPE_WEBHOOK_SECRET=
|
|
STRIPE_WEBHOOK_SECRET_CONNECT=
|
|
STRIPE_MODE=test
|
|
STRIPE_FEE_RATE=0.015
|
|
STRIPE_FEE_FIXED=25
|
|
ADMIN_EMAIL=contact@siteconseil.fr
|
|
|
|
###> SonarQube ###
|
|
SONARQUBE_URL=https://sn.esy-web.dev
|
|
SONARQUBE_BADGE_TOKEN=sqb_bf06d32640147db064c99d2e893ca63a072630d7
|
|
SONARQUBE_PROJECT_KEY=crm_siteconseil
|
|
###< SonarQube ###
|
|
|
|
###> SSO SITECONSEIL (Keycloak OIDC) ###
|
|
OAUTH_KEYCLOAK_CLIENT_ID=crm_siteconseil
|
|
OAUTH_KEYCLOAK_CLIENT_SECRET=kh1WBbnEzcEZVriXmU7IaxizChReHmIx
|
|
OAUTH_KEYCLOAK_URL=https://auth.esy-web.dev
|
|
OAUTH_KEYCLOAK_REALM=master
|
|
###< SSO SITECONSEIL (Keycloak OIDC) ###
|
|
|
|
###> Keycloak Admin Service Account ###
|
|
KEYCLOAK_ADMIN_CLIENT_ID=crm_siteconseil_admin
|
|
KEYCLOAK_ADMIN_CLIENT_SECRET=5pIluXMGWgOhx8nI9EiLB43QCuShHLyw
|
|
###< Keycloak Admin Service Account ###
|
|
|
|
###> symfony/amazon-mailer ###
|
|
# MAILER_DSN=ses://ACCESS_KEY:SECRET_KEY@default?region=eu-west-1
|
|
# MAILER_DSN=ses+smtp://ACCESS_KEY:SECRET_KEY@default?region=eu-west-1
|
|
###< symfony/amazon-mailer ###
|
|
|
|
###> stripe/stripe-php ###
|
|
STRIPE_SECRET_KEY=sk_test_***
|
|
###< stripe/stripe-php ###
|
|
SMIME_PASSPHRASE=EVz5zNV8h4ndSLOCWO9JeaQnIertQm7k
|
|
SECRET_ANALYTICS=
|
|
|
|
###> aws ###
|
|
AWS_PK=
|
|
AWS_SECRET=
|
|
AWS_REGION=eu-west-3
|
|
###< aws ###
|
|
|
|
###> cloudflare ###
|
|
CLOUDFLARE_KEY=
|
|
###< cloudflare ###
|
|
|
|
###> mailcow ###
|
|
MAILCOW_URL=https://mail.esy-web.dev
|
|
MAILCOW_API_KEY=
|
|
###< mailcow ###
|
|
|
|
###> webhooks ###
|
|
WEBHOOK_BASE_URL=
|
|
###< webhooks ###
|
|
|
|
###> docuseal ###
|
|
DOCUSEAL_URL=https://signature.esy-web.dev
|
|
DOCUSEAL_API=
|
|
DOCUSEAL_WEBHOOKS_SECRET_HEADER=X-Sign
|
|
DOCUSEAL_WEBHOOKS_SECRET=
|
|
###< docuseal ###
|
|
|
|
###> discord ###
|
|
DISCORD_WEBHOOK=
|
|
###< discord ###
|
|
|
|
###> esymail ###
|
|
ESYMAIL_DATABASE_URL=
|
|
ESYMAIL_HOSTNAME=
|
|
###< esymail ###
|
|
|
|
###> ovh ###
|
|
OVH_KEY=
|
|
OVH_SECRET=
|
|
OVH_CUSTOMER=
|
|
###< ovh ###
|