forked from netbirdio/dashboard
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathsetup.env
91 lines (76 loc) · 3.03 KB
/
setup.env
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
#######################################
# Container Image Tags (optional)
#######################################
# Leave these blank to pull latest images:
NETBIRD_DASHBOARD_TAG=""
NETBIRD_SIGNAL_TAG=""
NETBIRD_MANAGEMENT_TAG=""
COTURN_TAG=""
NETBIRD_RELAY_TAG=""
#######################################
# Primary Domain (Dashboard + Management)
#######################################
# The NetBird Dashboard + Mgmt domain:
NETBIRD_DOMAIN="vpn.dcd.ltd"
#######################################
# TURN Server Settings
#######################################
# If we want the TURN server to also be "vpn.dcd.ltd", leave blank:
NETBIRD_TURN_DOMAIN=""
# If you have a separate external IP for TURN, place it here. Otherwise leave blank.
NETBIRD_TURN_EXTERNAL_IP=""
#######################################
# OIDC / Identity Provider (IdP) Settings
#######################################
# Example: "https://auth.dcd.ltd/.well-known/openid-configuration"
NETBIRD_AUTH_OIDC_CONFIGURATION_ENDPOINT="https://auth.dcd.ltd/.well-known/openid-configuration"
# If your IdP expects an audience parameter
NETBIRD_AUTH_AUDIENCE="https://auth.dcd.ltd"
# The Client ID you registered in your IdP
NETBIRD_AUTH_CLIENT_ID="digital_code_distribution_vpn"
# Comma-separated scopes (typical: "openid profile email")
NETBIRD_AUTH_SUPPORTED_SCOPES="openid profile email"
# (Optional) If you had a client secret (e.g. for Google Workspace):
# NETBIRD_AUTH_CLIENT_SECRET=""
# Indicate whether you’re using Auth0-specific logic:
NETBIRD_USE_AUTH0="false"
#######################################
# Device Authorization Flow (if needed)
#######################################
NETBIRD_AUTH_DEVICE_AUTH_PROVIDER="none"
NETBIRD_AUTH_DEVICE_AUTH_CLIENT_ID=""
NETBIRD_AUTH_DEVICE_AUTH_AUDIENCE=$NETBIRD_AUTH_AUDIENCE
NETBIRD_AUTH_DEVICE_AUTH_SCOPE="openid"
NETBIRD_AUTH_DEVICE_AUTH_USE_ID_TOKEN=false
#######################################
# PKCE Authorization Flow (if needed)
#######################################
NETBIRD_AUTH_PKCE_REDIRECT_URL_PORTS="53000"
#######################################
# IDP Management (optional)
#######################################
NETBIRD_MGMT_IDP="none"
NETBIRD_IDP_MGMT_CLIENT_ID=$NETBIRD_AUTH_CLIENT_ID
NETBIRD_IDP_MGMT_CLIENT_SECRET=""
#######################################
# Let's Encrypt Settings
#######################################
# We want NetBird to generate certificates automatically
NETBIRD_DISABLE_LETSENCRYPT=true
NETBIRD_LETSENCRYPT_EMAIL="[email protected]"
#######################################
# Anonymous Metrics
#######################################
NETBIRD_DISABLE_ANONYMOUS_METRICS=false
#######################################
# DNS Domain for Peer resolution
#######################################
NETBIRD_MGMT_DNS_DOMAIN="netbird.selfhosted"
#######################################
# Relay settings
#######################################
# If you want a separate domain for the relay, define it here,
# otherwise it will use the main domain:
NETBIRD_RELAY_DOMAIN=""
# Relay server port (defaults to 33080 if left blank):
NETBIRD_RELAY_PORT=""