2022-01-07 18:41:23 +01:00
|
|
|
# Application host name
|
|
|
|
#
|
|
|
|
# Examples:
|
|
|
|
# * For local development: localhost:3000
|
2022-02-09 09:08:49 +01:00
|
|
|
# * For preproduction: staging.ds.example.org
|
|
|
|
# * For production: ds.example.org
|
2018-08-29 11:01:13 +02:00
|
|
|
APP_HOST="localhost:3000"
|
2019-11-19 15:24:57 +01:00
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# Rails key for signing sensitive data
|
|
|
|
# See https://guides.rubyonrails.org/security.html
|
|
|
|
#
|
|
|
|
# For production you MUST generate a new key, and keep it secret.
|
|
|
|
# Secrets must be long and random. Use bin/rails secret to get new unique secrets.
|
2018-09-03 15:54:49 +02:00
|
|
|
SECRET_KEY_BASE="05a2d479d8e412198dabd08ef0eee9d6e180f5cbb48661a35fd1cae287f0a93d40b5f1da08f06780d698bbd458a0ea97f730f83ee780de5d4e31f649a0130cf0"
|
2018-09-03 15:54:32 +02:00
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# Secret key for One-Time-Password codes, used for 2-factors authentication
|
2020-11-03 18:21:19 +01:00
|
|
|
OTP_SECRET_KEY=""
|
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# Database credentials
|
2018-09-03 15:57:59 +02:00
|
|
|
DB_DATABASE="tps_development"
|
|
|
|
DB_HOST="localhost"
|
2018-09-03 15:54:32 +02:00
|
|
|
DB_POOL=""
|
2018-09-03 15:57:59 +02:00
|
|
|
DB_USERNAME="tps_development"
|
|
|
|
DB_PASSWORD="tps_development"
|
2024-03-19 08:26:27 +01:00
|
|
|
DB_PORT=5432
|
2018-09-03 15:54:32 +02:00
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# Protect access to the instance with a static login/password (useful for staging environments)
|
2018-09-03 15:59:27 +02:00
|
|
|
BASIC_AUTH_ENABLED="disabled"
|
2018-09-03 15:54:32 +02:00
|
|
|
BASIC_AUTH_USERNAME=""
|
|
|
|
BASIC_AUTH_PASSWORD=""
|
|
|
|
|
2022-01-31 14:27:50 +01:00
|
|
|
# ActiveStorage service to use for attached files.
|
|
|
|
# Possible values:
|
|
|
|
# - "local": store files on the local filesystem
|
|
|
|
# - "amazon": store files remotely on an S3 storage service
|
|
|
|
# - "openstack": store files remotely on an OpenStack storage service
|
|
|
|
#
|
|
|
|
# (See config/storage.yml for the configuration of each service.)
|
2022-02-15 10:33:01 +01:00
|
|
|
ACTIVE_STORAGE_SERVICE="local"
|
2022-01-31 14:27:50 +01:00
|
|
|
|
|
|
|
# Configuration for the OpenStack storage service (if enabled)
|
2018-09-03 15:54:32 +02:00
|
|
|
FOG_OPENSTACK_API_KEY=""
|
|
|
|
FOG_OPENSTACK_USERNAME=""
|
2018-11-13 18:25:06 +01:00
|
|
|
FOG_OPENSTACK_URL=""
|
2018-09-03 15:54:32 +02:00
|
|
|
FOG_OPENSTACK_REGION=""
|
2019-10-30 16:15:38 +01:00
|
|
|
DS_PROXY_URL=""
|
2018-09-03 15:54:32 +02:00
|
|
|
|
2022-08-18 15:58:19 +02:00
|
|
|
# SAML
|
2022-01-26 11:59:59 +01:00
|
|
|
SAML_IDP_ENABLED="disabled"
|
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# External service: integration with HelpScout (optional)
|
2018-09-03 15:54:32 +02:00
|
|
|
HELPSCOUT_MAILBOX_ID=""
|
|
|
|
HELPSCOUT_CLIENT_ID=""
|
|
|
|
HELPSCOUT_CLIENT_SECRET=""
|
|
|
|
HELPSCOUT_WEBHOOK_SECRET=""
|
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# External service: external supervision
|
2018-09-03 15:59:27 +02:00
|
|
|
SENTRY_ENABLED="disabled"
|
2019-04-03 12:13:34 +02:00
|
|
|
SENTRY_CURRENT_ENV="development"
|
2018-09-03 15:54:32 +02:00
|
|
|
SENTRY_DSN_RAILS=""
|
|
|
|
SENTRY_DSN_JS=""
|
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# External service: Matomo web analytics
|
2019-03-26 16:02:08 +01:00
|
|
|
MATOMO_ENABLED="disabled"
|
2022-01-26 13:57:49 +01:00
|
|
|
MATOMO_COOKIE_DOMAIN="*.www.demarches-simplifiees.fr"
|
|
|
|
MATOMO_DOMAIN="*.www.demarches-simplifiees.fr"
|
2022-01-18 12:47:01 +01:00
|
|
|
MATOMO_ID=""
|
2022-02-02 10:44:53 +01:00
|
|
|
MATOMO_HOST="matomo.example.org"
|
2019-03-26 16:02:08 +01:00
|
|
|
|
2022-05-02 17:30:37 +02:00
|
|
|
# Alternate SMTP Provider: SendInBlue/DoList
|
2019-05-15 14:15:48 +02:00
|
|
|
SENDINBLUE_CLIENT_KEY=""
|
2019-11-05 09:38:08 +01:00
|
|
|
SENDINBLUE_SMTP_KEY=""
|
2019-11-05 09:32:35 +01:00
|
|
|
SENDINBLUE_USER_NAME=""
|
2022-01-18 12:36:03 +01:00
|
|
|
# SENDINBLUE_LOGIN_URL="https://app.sendinblue.com/account/saml/login/truc"
|
2019-11-05 09:32:35 +01:00
|
|
|
|
2022-01-19 21:30:01 +01:00
|
|
|
# Alternate SMTP Provider: Mailtrap (mail catcher for staging environments)
|
2022-01-25 15:14:58 +01:00
|
|
|
# When enabled, all emails will be sent using this provider
|
2018-09-03 15:54:32 +02:00
|
|
|
MAILTRAP_ENABLED="disabled"
|
|
|
|
MAILTRAP_USERNAME=""
|
|
|
|
MAILTRAP_PASSWORD=""
|
|
|
|
|
2022-01-25 15:14:58 +01:00
|
|
|
# Alternative SMTP Provider: Mailcatcher (Catches mail and serves it through a dream.)
|
|
|
|
# When enabled, all emails will be sent using this provider
|
|
|
|
MAILCATCHER_ENABLED="disabled"
|
|
|
|
MAILCATCHER_HOST=""
|
|
|
|
MAILCATCHER_PORT=""
|
|
|
|
|
2022-01-19 21:30:01 +01:00
|
|
|
# External service: live chat for admins (specific to démarches-simplifiées.fr)
|
|
|
|
CRISP_ENABLED="disabled"
|
|
|
|
CRISP_CLIENT_KEY=""
|
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# API Entreprise credentials
|
|
|
|
# https://api.gouv.fr/api/api-entreprise.html
|
2018-08-22 18:22:30 +02:00
|
|
|
API_ENTREPRISE_KEY=""
|
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# Networks bypassing the email login token that verifies new devices, and rack-attack throttling
|
2019-04-03 14:49:01 +02:00
|
|
|
TRUSTED_NETWORKS=""
|
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# External service: mesuring performance of the Rails app (specific to démarches-simplifiées.fr)
|
2018-09-03 15:54:32 +02:00
|
|
|
SKYLIGHT_AUTHENTICATION_KEY=""
|
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# Enable or disable Lograge logs
|
2018-09-03 15:59:27 +02:00
|
|
|
LOGRAGE_ENABLED="disabled"
|
2019-06-06 10:47:51 +02:00
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# Logs source for Lograge
|
|
|
|
#
|
|
|
|
# Examples:
|
|
|
|
# * For local development: tps_local
|
|
|
|
# * For preproduction: tps_staging
|
|
|
|
# * For production: tps_prod
|
2022-01-18 12:49:23 +01:00
|
|
|
LOGRAGE_SOURCE="tps_local"
|
2022-01-07 18:41:23 +01:00
|
|
|
|
|
|
|
# External service: timestamping a daily archive of dossiers status changes
|
2021-04-15 13:06:43 +02:00
|
|
|
UNIVERSIGN_API_URL="https://ws.universign.eu/tsa/post/"
|
2019-06-06 10:47:51 +02:00
|
|
|
UNIVERSIGN_USERPWD=""
|
2020-01-14 18:46:07 +01:00
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# External service: API Geo / Adresse
|
2020-01-14 18:46:07 +01:00
|
|
|
API_ADRESSE_URL="https://api-adresse.data.gouv.fr"
|
|
|
|
API_GEO_URL="https://geo.api.gouv.fr"
|
2020-06-02 20:13:38 +02:00
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# External service: API Education
|
2021-01-13 18:58:59 +01:00
|
|
|
API_EDUCATION_URL="https://data.education.gouv.fr/api/records/1.0"
|
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# Encryption key for sensitive columns in the database
|
2021-06-10 16:52:51 +02:00
|
|
|
ENCRYPTION_SERVICE_SALT=""
|
2021-12-29 14:00:47 +01:00
|
|
|
|
2023-05-02 14:48:58 +02:00
|
|
|
# ActiveRecord encryption keys. Generate them with bin/rails db:encryption:init (you can omit deterministic_key)
|
|
|
|
AR_ENCRYPTION_PRIMARY_KEY=""
|
|
|
|
AR_ENCRYPTION_KEY_DERIVATION_SALT=""
|
|
|
|
|
2022-01-07 18:41:23 +01:00
|
|
|
# Salt for invisible_captcha session data.
|
|
|
|
# Must be the same value for all app instances behind a load-balancer.
|
2021-12-29 14:00:47 +01:00
|
|
|
INVISIBLE_CAPTCHA_SECRET="kikooloool"
|
2022-01-28 16:20:11 +01:00
|
|
|
|
|
|
|
# Clamav antivirus usage
|
|
|
|
CLAMAV_ENABLED="disabled"
|
2022-04-25 15:50:33 +02:00
|
|
|
|
|
|
|
# Siret number used for API Entreprise, by default we use SIRET from dinum
|
|
|
|
API_ENTREPRISE_DEFAULT_SIRET="put_your_own_siret"
|
2024-02-19 13:34:59 +01:00
|
|
|
|
|
|
|
# Date from which email validation requires a TLD in email adresses.
|
|
|
|
# This change had been introduced by : cc53946d221d6f64c365ad6c6c4c544802eb94b4
|
|
|
|
# Records (users, …) created before this date won't be affected. See #9978
|
|
|
|
# To set a date, we recommend using *the day after* you have deployed this commit,
|
|
|
|
# so existing records won't be invalid.
|
|
|
|
STRICT_EMAIL_VALIDATION_STARTS_ON="2024-02-19"
|
2024-02-20 14:32:04 +01:00
|
|
|
|
|
|
|
# Weasyprint endpoint generating attestations v2
|
|
|
|
# See https://github.com/demarches-simplifiees/weasyprint_server
|
|
|
|
WEASYPRINT_URL="http://127.0.0.1:5000/pdf"
|