pvm/docker/.env.example at c0cb2d25a06afc56e3706ac49dab3bcae81a93b2 - mikkel/pvm - Git @ Georgsen: Vibecoders Unite!

mikkel/pvm

Mikkel Georgsen a22ba48709 Add Zitadel OIDC setup, SMTP config, and security fixes

- Add setup-zitadel.sh: idempotent script that creates PVM project
  and OIDC app via Zitadel Management API using machine user PAT
- Add machine user + PAT auto-generation to docker-compose via
  FIRSTINSTANCE env vars with bind-mounted machinekey directory
- Add SMTP configuration for email sending (verification, password reset)
- Fix JWT algorithm confusion attack: restrict to RS256/384/512 only
- Add docs/TODO_SECURITY.md tracking review findings
- Update .env.example files with correct local dev URLs
- Add docker/machinekey/ to .gitignore

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-08 12:34:44 +01:00

12 lines

343 B

Text

Raw Blame History

 # Zitadel
 ZITADEL_MASTERKEY=changeMe_must_be_exactly_32_char
 ZITADEL_DB_PASSWORD=zitadel-dev-password
 ZITADEL_ADMIN_PASSWORD=Admin1234!
 # SMTP (Zitadel email sending)
 ZITADEL_SMTP_HOST=mail.example.com
 ZITADEL_SMTP_USER=noreply@example.com
 ZITADEL_SMTP_PASSWORD=your-smtp-password
 # PVM Application Database
 PVM_DB_PASSWORD=pvm-dev-password