fixing

2026-02-08 17:31:32 +01:00
parent 5f4ef6faee
commit ae099f04cf
5 changed files with 83 additions and 17 deletions
--- a/.env.prod
+++ b/.env.prod
@@ -0,0 +1,78 @@
+# Parking Manager Configuration
+
+# =============================================================================
+# REQUIRED - Security
+# =============================================================================
+# MUST be set to a random string of at least 32 characters
+# Generate with: openssl rand -hex 32
+SECRET_KEY=766299d3235f79a2a9a35aafbc90bec7102f250dfe4aba83500b98e568289b7a
+
+# =============================================================================
+# Server
+# =============================================================================
+# Usa 0.0.0.0 per permettere connessioni dall'esterno del container (essenziale per Docker/Traefik)
+HOST=0.0.0.0
+PORT=8000
+
+# Database (SQLite path)
+# Percorso assoluto nel container
+DATABASE_PATH=/app/data/parking.db
+# Lascia vuoto DATABASE_URL per costruirlo automaticamente da DATABASE_PATH
+# Oppure usa: DATABASE_URL=sqlite:////app/data/parking.db
+
+# CORS (comma-separated origins)
+#ALLOWED_ORIGINS=https://parking.rocketscale.it
+
+# JWT token expiration (minutes, default 24 hours)
+ACCESS_TOKEN_EXPIRE_MINUTES=1440
+
+# Logging level (DEBUG, INFO, WARNING, ERROR)
+LOG_LEVEL=INFO
+
+# =============================================================================
+# Rate Limiting
+# =============================================================================
+# Number of requests allowed per window for sensitive endpoints (login, register)
+RATE_LIMIT_REQUESTS=5
+# Window size in seconds
+RATE_LIMIT_WINDOW=60
+
+# =============================================================================
+# Authentication
+# =============================================================================
+# Set to true when behind Authelia reverse proxy
+AUTHELIA_ENABLED=true
+
+# Header names (only change if your proxy uses different headers)
+AUTHELIA_HEADER_USER=Remote-User
+AUTHELIA_HEADER_NAME=Remote-Name
+AUTHELIA_HEADER_EMAIL=Remote-Email
+AUTHELIA_HEADER_GROUPS=Remote-Groups
+
+# LLDAP group that maps to admin role
+AUTHELIA_ADMIN_GROUP=parking_admins
+
+# External URLs for Authelia mode (used for landing page buttons)
+# Login URL - Authelia's login page (users are redirected here to authenticate)
+AUTHELIA_LOGIN_URL=https://auth.rocketscale.it
+# Registration URL - External registration portal (org-stack self-registration)
+REGISTRATION_URL=https://register.rocketscale.it
+# Logout URL
+AUTHELIA_LOGOUT_URL=https://auth.rocketscale.it/logout
+
+# =============================================================================
+# Email Notifications
+# =============================================================================
+# Set to true to enable email sending
+SMTP_ENABLED=false
+
+# SMTP server configuration
+SMTP_HOST=localhost
+SMTP_PORT=587
+SMTP_USER=
+SMTP_PASSWORD=
+SMTP_FROM=noreply@parking.local
+SMTP_USE_TLS=true
+
+# When SMTP is disabled, emails are logged to this file
+EMAIL_LOG_FILE=/tmp/parking-emails.log