# –––––––––––––––– REQUIRED –––––––––––––––– # Generate a hex-encoded 32-byte random key. You should use `openssl rand -hex 32` # in your terminal to generate a random value. SECRET_KEY=__SECRET_KEY__ # Generate a unique random key. The format is not important but you could still use # `openssl rand -hex 32` in your terminal to produce this. UTILS_SECRET=__UTILS_SECRET__ # For production point these at your databases, in development the default # should work out of the box. DATABASE_URL=postgres://__DB_NAME__:__SECRET_KEY__@localhost:5432/__DB_NAME__ DATABASE_URL_TEST=postgres://user:pass@localhost:5532/outline-test # Uncomment this to disable SSL for connecting to Postgres PGSSLMODE=disable REDIS_URL=redis://localhost:6379 # URL should point to the fully qualified, publicly accessible URL. If using a # proxy the port in URL and PORT may be different. URL=https://__DOMAIN__ PORT=__PORT__ # To support uploading of images for avatars and document attachments an # s3-compatible storage must be provided. AWS S3 is recommended for redundency # however if you want to keep all file storage local an alternative such as # minio (https://github.com/minio/minio) can be used. # A more detailed guide on setting up S3 is available here: # => https://wiki.generaloutline.com/share/125de1cc-9ff6-424b-8415-0d58c809a40f # FILE_STORAGE=local FILE_STORAGE_UPLOAD_MAX_SIZE=106214400 # –––––––––––––– AUTHENTICATION –––––––––––––– # To configure generic OIDC auth, you'll need some kind of identity provider. # See documentation for whichever IdP you use to acquire the following info: # Redirect URI is https:///auth/oidc.callback OIDC_CLIENT_ID=__OIDC_NAME__ OIDC_CLIENT_SECRET=__OIDC_SECRET__ OIDC_AUTH_URI=__DEX_AUTH_URI__ OIDC_TOKEN_URI=__DEX_TOKEN_URI__ OIDC_USERINFO_URI=__DEX_USER_URI__ # Specify which claims to derive user information from # Supports any valid JSON path with the JWT payload OIDC_USERNAME_CLAIM=preferred_username # Display name for OIDC authentication OIDC_DISPLAY_NAME=membre (mot de passe) # Space separated auth scopes. OIDC_SCOPES="openid profile email" # –––––––––––––––– OPTIONAL –––––––––––––––– # Auto-redirect to https in production. The default is true but you may set to # false if you can be sure that SSL is terminated at an external loadbalancer. FORCE_HTTPS=true # Have the installation check for updates by sending anonymized statistics to # the maintainers ENABLE_UPDATES=true # How many processes should be spawned. As a reasonable rule divide your servers # available memory by 512 for a rough estimate WEB_CONCURRENCY=1 # Override the maxium size of document imports, could be required if you have # especially large Word documents with embedded imagery MAXIMUM_IMPORT_SIZE=5120000 # You can remove this line if your reverse proxy already logs incoming http # requests and this ends up being duplicative DEBUG=cache,presenters,events,emails,mailer,utils,http,server,processors # To support sending outgoing transactional emails such as "document updated" or # "you've been invited" you'll need to provide authentication for an SMTP server SMTP_HOST='localhost' SMTP_PORT='25' SMTP_USERNAME='' SMTP_PASSWORD='' SMTP_FROM_EMAIL='__APP__@__DOMAIN__' SMTP_REPLY_EMAIL='webmaster@__DOMAIN__' SMTP_TLS_CIPHERS= SMTP_SECURE='false' # Custom logo that displays on the authentication screen, scaled to height: 60px # TEAM_LOGO=https://example.com/images/logo.png # The default interface language. See translate.getoutline.com for a list of # available language codes and their rough percentage translated. DEFAULT_LANGUAGE=__LANGUAGE_KEY__