derekc
090ebc109e
Sends alerts to a configurable Ntfy topic on: new user registration, account lockout after 5 failed login attempts, and login attempts on an already-locked account. Fire-and-forget — never raises if Ntfy is down. Configure via NTFY_URL and NTFY_TOKEN in .env. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
28 lines
809 B
Plaintext
28 lines
809 B
Plaintext
# Copy this file to .env and fill in values
|
|
# Generate SECRET_KEY with: openssl rand -hex 32
|
|
|
|
MYSQL_ROOT_PASSWORD=change_me_root
|
|
MYSQL_DATABASE=homeschool
|
|
MYSQL_USER=homeschool
|
|
MYSQL_PASSWORD=change_me_db
|
|
|
|
SECRET_KEY=change_me_generate_with_openssl_rand_hex_32
|
|
ALGORITHM=HS256
|
|
ACCESS_TOKEN_EXPIRE_MINUTES=30
|
|
REFRESH_TOKEN_EXPIRE_DAYS=30
|
|
|
|
# Comma-separated allowed CORS origins (no trailing slash)
|
|
CORS_ORIGINS=http://localhost:8054
|
|
|
|
# Super admin credentials — REQUIRED, no defaults ship with the service
|
|
ADMIN_USERNAME=admin
|
|
ADMIN_PASSWORD=change_me_strong_password_here
|
|
|
|
# Set to true only for local development (exposes /api/docs, /api/redoc)
|
|
DOCS_ENABLED=false
|
|
|
|
# Ntfy push notifications for super admin alerts (optional)
|
|
# Use https://ntfy.sh/your-secret-topic or self-hosted URL
|
|
NTFY_URL=
|
|
NTFY_TOKEN=
|