mikkel/pvm
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
pvm/docker/.env.example
Mikkel Georgsen a22ba48709 Add Zitadel OIDC setup, SMTP config, and security fixes 
- Add setup-zitadel.sh: idempotent script that creates PVM project
  and OIDC app via Zitadel Management API using machine user PAT
- Add machine user + PAT auto-generation to docker-compose via
  FIRSTINSTANCE env vars with bind-mounted machinekey directory
- Add SMTP configuration for email sending (verification, password reset)
- Fix JWT algorithm confusion attack: restrict to RS256/384/512 only
- Add docs/TODO_SECURITY.md tracking review findings
- Update .env.example files with correct local dev URLs
- Add docker/machinekey/ to .gitignore

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-08 12:34:44 +01:00

12 lines
343 B
Text
Raw Blame History

# Zitadel
ZITADEL_MASTERKEY=changeMe_must_be_exactly_32_char
ZITADEL_DB_PASSWORD=zitadel-dev-password
ZITADEL_ADMIN_PASSWORD=Admin1234!
# SMTP (Zitadel email sending)
ZITADEL_SMTP_HOST=mail.example.com
ZITADEL_SMTP_USER=noreply@example.com
ZITADEL_SMTP_PASSWORD=your-smtp-password
# PVM Application Database
PVM_DB_PASSWORD=pvm-dev-password
Reference in a new issue View git blame Copy permalink