fix(env): update default security and MinIO credentials in example configuration
This commit is contained in:
+6
-7
@@ -10,21 +10,20 @@ IMAGE_TAG=latest
|
|||||||
# ─── Required: API Keys ────────────────────────────────────────────────────────
|
# ─── Required: API Keys ────────────────────────────────────────────────────────
|
||||||
# LLM provider API key (Ark / Doubao / OpenAI-compatible)
|
# LLM provider API key (Ark / Doubao / OpenAI-compatible)
|
||||||
LLM_API_KEY=your-llm-api-key-here
|
LLM_API_KEY=your-llm-api-key-here
|
||||||
|
|
||||||
# Embedding + reranker API key (SiliconFlow)
|
# Embedding + reranker API key (SiliconFlow)
|
||||||
SILICONFLOW_API_KEY=your-siliconflow-api-key-here
|
SILICONFLOW_API_KEY=your-siliconflow-api-key-here
|
||||||
|
|
||||||
# ─── Required: Security ───────────────────────────────────────────────────────
|
# ─── Required: Security ───────────────────────────────────────────────────────
|
||||||
# JWT signing secret — use a strong random string in production
|
# JWT signing secret — use a strong random string in production
|
||||||
# Generate: openssl rand -hex 32
|
# Generate: openssl rand -hex 32
|
||||||
JWT_SECRET=change-me-in-production
|
JWT_SECRET=geo-web-Aa123456-change-me-in-production
|
||||||
OPS_JWT_SECRET=change-me-in-production
|
OPS_JWT_SECRET=geo-ops-Aa123456-change-me-in-production
|
||||||
OPS_DEFAULT_ADMIN_PASSWORD=change-me-before-first-start
|
OPS_DEFAULT_ADMIN_PASSWORD=Aa123456
|
||||||
SCHEDULER_INTERNAL_METRICS_TOKEN=change-me-scheduler-metrics-token
|
SCHEDULER_INTERNAL_METRICS_TOKEN=geo-scheduler-Aa123456-change-me-in-production
|
||||||
|
|
||||||
# ─── Optional: MinIO credentials ─────────────────────────────────────────────
|
# ─── Optional: MinIO credentials ─────────────────────────────────────────────
|
||||||
MINIO_ROOT_USER=minioadmin
|
MINIO_ROOT_USER=admin
|
||||||
MINIO_ROOT_PASSWORD=minioadmin
|
MINIO_ROOT_PASSWORD=Aa123456
|
||||||
|
|
||||||
# ─── Optional: Exposed ports ─────────────────────────────────────────────────
|
# ─── Optional: Exposed ports ─────────────────────────────────────────────────
|
||||||
# Defaults avoid common NAS ports such as 80, 8080, and 8090.
|
# Defaults avoid common NAS ports such as 80, 8080, and 8090.
|
||||||
|
|||||||
Reference in New Issue
Block a user