-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.env.example
More file actions
122 lines (100 loc) · 4.13 KB
/
.env.example
File metadata and controls
122 lines (100 loc) · 4.13 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
# =============================================================================
# BaseBlocks Environment Variables
# =============================================================================
# Copy this file to the appropriate .env.local locations:
# - apps/web/.env.local
# - packages/backend/.env.local
# =============================================================================
# --- apps/web/.env.local ---
# Convex backend URL (get from `npx convex dev`)
NEXT_PUBLIC_CONVEX_URL=https://your-deployment.convex.cloud
NEXT_PUBLIC_CONVEX_SITE_URL=https://your-deployment.convex.site
# Dev auth mode:
# - `bun run dev` / `bun run dev:local` keeps localhost as the active auth origin
# - `bun run dev:mobile` makes your Tailscale HTTPS hostname the active auth origin
# To override auto-detection for mobile mode:
# DEV_AUTH_MOBILE_ORIGIN=https://your-machine.your-tailnet.ts.net
# Root domain for multi-tenant subdomain routing
# Use localhost:3001 for local dev, your-domain.com for production
NEXT_PUBLIC_ROOT_DOMAIN=localhost:3001
# S3-compatible object storage for uploads and downloads
STORAGE_DRIVER=s3-compatible
STORAGE_PROVIDER=s3-compatible
STORAGE_BUCKET_NAME=
STORAGE_ENDPOINT=
STORAGE_REGION=
STORAGE_FORCE_PATH_STYLE=true
STORAGE_ACCESS_KEY_ID=
STORAGE_SECRET_ACCESS_KEY=
STORAGE_MAX_UPLOAD_SIZE_BYTES=
# Dedicated upload service URL used for browser uploads.
# This should point at the Railway upload service, for example:
# https://upload.baseblocks.dev
STORAGE_UPLOAD_SERVICE_URL=
# Shared HMAC secret used to mint and verify short-lived upload tickets.
# Set the same value in the upload service environment below.
STORAGE_UPLOAD_SIGNING_SECRET=
# --- packages/backend/.env.local ---
# Convex deployment identifier (get from `npx convex dev`)
CONVEX_DEPLOYMENT=dev:your-deployment-name
CONVEX_URL=https://your-deployment.convex.cloud
# Convex site URL (stable auth callback origin + HTTP endpoints)
SITE_URL=https://your-deployment.convex.site
# App origins allowed to start auth flows and receive the final redirect.
# Exact origins only, comma-separated, with no paths.
# `bun run dev:local` and `bun run dev:mobile` override this value at runtime.
APP_URL=http://localhost:3001
# Register both localhost and your Tailscale hostname in provider dashboards if
# you plan to use both modes in development:
# - Google JavaScript origins:
# http://localhost:3001
# https://your-machine.your-tailnet.ts.net
# - Google redirect URIs:
# http://localhost:3001/api/auth/callback/google
# https://your-machine.your-tailnet.ts.net/api/auth/callback/google
# - GitHub callback URLs:
# http://localhost:3001/api/auth/callback/github
# https://your-machine.your-tailnet.ts.net/api/auth/callback/github
# - Microsoft redirect URIs:
# http://localhost:3001/api/auth/callback/microsoft
# https://your-machine.your-tailnet.ts.net/api/auth/callback/microsoft
# Google OAuth (optional — needed for Google sign-in)
GOOGLE_CLIENT_ID=
GOOGLE_CLIENT_SECRET=
# GitHub OAuth
GITHUB_CLIENT_ID=
GITHUB_CLIENT_SECRET=
# Microsoft Entra ID OAuth
MICROSOFT_CLIENT_ID=
MICROSOFT_CLIENT_SECRET=
MICROSOFT_TENANT_ID=common
# S3-compatible object storage used by Convex actions and metadata writes
STORAGE_DRIVER=s3-compatible
STORAGE_PROVIDER=s3-compatible
STORAGE_BUCKET_NAME=
STORAGE_ENDPOINT=
STORAGE_REGION=
STORAGE_FORCE_PATH_STYLE=true
STORAGE_ACCESS_KEY_ID=
STORAGE_SECRET_ACCESS_KEY=
STORAGE_MAX_UPLOAD_SIZE_BYTES=
# Extraction worker callback configuration
EXTRACTION_API_URL=
EXTRACTION_API_SECRET=
# --- apps/upload/.env.local or Railway service variables ---
# Port for the standalone upload service (Railway sets PORT automatically)
PORT=3002
# Browser origins allowed to upload directly to the upload service
STORAGE_UPLOAD_ALLOWED_ORIGINS=http://localhost:3001,https://baseblocks.dev
# Shared HMAC secret used by the web app to mint upload tickets
STORAGE_UPLOAD_SIGNING_SECRET=
# S3-compatible object storage used by the upload service to stream bytes
STORAGE_DRIVER=s3-compatible
STORAGE_PROVIDER=s3-compatible
STORAGE_BUCKET_NAME=
STORAGE_ENDPOINT=
STORAGE_REGION=
STORAGE_FORCE_PATH_STYLE=true
STORAGE_ACCESS_KEY_ID=
STORAGE_SECRET_ACCESS_KEY=
STORAGE_MAX_UPLOAD_SIZE_BYTES=