98b0b41064
- New SECRET_ANALYTICS variable replaces kernel.secret for analytics - Ansible generates a random 32-char secret at each deploy - Endpoint token and encryption key change with every deployment - Existing sessions will get new visitor_id after deploy (expected) Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
28 lines
1.1 KiB
Django/Jinja
28 lines
1.1 KiB
Django/Jinja
APP_ENV=prod
|
|
APP_SECRET={{ app_secret }}
|
|
DATABASE_URL="postgresql://e-ticket:{{ db_password }}@pgbouncer:6432/e-ticket?serverVersion=16&charset=utf8"
|
|
MESSENGER_TRANSPORT_DSN=redis://:{{ redis_password }}@redis:6379/messages
|
|
SESSION_HANDLER_DSN=redis://:{{ redis_password }}@redis:6379/1
|
|
REDIS_CACHE_DSN=redis://:{{ redis_password }}@redis:6379/2
|
|
MAILER_DSN={{ mailer_dsn }}
|
|
DEFAULT_URI=https://ticket.e-cosplay.fr
|
|
VITE_LOAD=1
|
|
REAL_MAIL=1
|
|
OUTSIDE_URL=https://ticket.e-cosplay.fr
|
|
STRIPE_PK={{ stripe_pk }}
|
|
STRIPE_SK={{ stripe_sk }}
|
|
STRIPE_WEBHOOK_SECRET={{ stripe_webhook_secret }}
|
|
STRIPE_WEBHOOK_SECRET_CONNECT={{ stripe_webhook_secret_connect }}
|
|
STRIPE_MODE=live
|
|
SMIME_PASSPHRASE='{{ smime_passphrase }}'
|
|
MEILISEARCH_URL=http://meilisearch:7700
|
|
MEILISEARCH_API_KEY={{ meilisearch_api_key }}
|
|
SONARQUBE_URL=https://sn.esy-web.dev
|
|
SONARQUBE_BADGE_TOKEN={{ sonarqube_badge_token }}
|
|
SONARQUBE_PROJECT_KEY=e-ticket
|
|
OAUTH_KEYCLOAK_CLIENT_ID=e-ticket
|
|
OAUTH_KEYCLOAK_CLIENT_SECRET=1oLwbhJDNVmGH8CES1OdQtzR7dECOlII
|
|
OAUTH_KEYCLOAK_URL=https://auth.esy-web.dev
|
|
OAUTH_KEYCLOAK_REALM=e-cosplay
|
|
SECRET_ANALYTICS={{ analytics_secret }}
|