mirror of
https://github.com/get-drexa/drive.git
synced 2025-12-06 08:11:39 +00:00
Kenneth
57167d5715
implement access/refresh token exchange via cookies as well as automatic access token refresh
36 lines
1.1 KiB
YAML
36 lines
1.1 KiB
YAML
# Drexa Backend Configuration
|
|
# Copy this file to config.yaml and adjust values for your environment.
|
|
|
|
server:
|
|
port: 8080
|
|
|
|
database:
|
|
postgres_url: postgres://user:password@localhost:5432/drexa?sslmode=disable
|
|
|
|
jwt:
|
|
issuer: drexa
|
|
audience: drexa-api
|
|
# Secret key can be provided via (in order of precedence):
|
|
# 1. JWT_SECRET_KEY environment variable (base64 encoded)
|
|
# 2. secret_key_base64 below (base64 encoded)
|
|
# 3. secret_key_path below (file with base64 encoded content)
|
|
# secret_key_base64: "base64encodedkey"
|
|
secret_key_path: /run/secrets/jwt_secret_key
|
|
|
|
storage:
|
|
# Mode: "flat" (UUID-based keys) or "hierarchical" (path-based keys)
|
|
# Note: S3 backend only supports "flat" mode
|
|
mode: flat
|
|
# Backend: "fs" (filesystem) or "s3" (not yet implemented)
|
|
backend: fs
|
|
# Required when backend is "fs"
|
|
root_path: /var/lib/drexa/blobs
|
|
# Required when backend is "s3"
|
|
# bucket: my-drexa-bucket
|
|
|
|
cookie:
|
|
# Domain for cross-subdomain auth cookies.
|
|
# Set this when frontend and API are on different subdomains (e.g., "app.com" for web.app.com + api.app.com).
|
|
# Leave empty for single-domain or localhost setups.
|
|
# domain: app.com
|