# =================================================================== # KOMPOSE - Secrets Configuration # =================================================================== # This file contains SENSITIVE data and should NOT be committed to git. # Add secrets.env to your .gitignore file! # # Generate random secrets with: ./kompose.sh --generate-secrets # =================================================================== # ------------------------------------------------------------------- # Database Passwords (Shared) # ------------------------------------------------------------------- DB_PASSWORD=CHANGE_ME_GENERATE_WITH_KOMPOSE # ------------------------------------------------------------------- # Admin Passwords # ------------------------------------------------------------------- ADMIN_PASSWORD=CHANGE_ME_GENERATE_WITH_KOMPOSE # ------------------------------------------------------------------- # Email/SMTP Passwords # ------------------------------------------------------------------- EMAIL_SMTP_PASSWORD=CHANGE_ME_GENERATE_WITH_KOMPOSE # ------------------------------------------------------------------- # AUTH Stack Secrets (Keycloak) # ------------------------------------------------------------------- AUTH_KC_ADMIN_PASSWORD=CHANGE_ME_GENERATE_WITH_KOMPOSE # ------------------------------------------------------------------- # TRACK Stack Secrets (Umami) # ------------------------------------------------------------------- # APP_SECRET for Umami (64 character hex string) TRACK_APP_SECRET=CHANGE_ME_GENERATE_WITH_KOMPOSE # ------------------------------------------------------------------- # Add more stack secrets below (scope them with stack name) # ------------------------------------------------------------------- # BLOG_SECRET_KEY=CHANGE_ME_GENERATE_WITH_KOMPOSE # CHAT_ENCRYPTION_KEY=CHANGE_ME_GENERATE_WITH_KOMPOSE # DATA_DIRECTUS_SECRET=CHANGE_ME_GENERATE_WITH_KOMPOSE # CODE_GITEA_RUNNER_TOKEN=CHANGE_ME_GENERATE_WITH_KOMPOSE # etc... # Example secrets from your current .env that should be scoped: # GITEA_RUNNER_REGISTRATION_TOKEN=CHANGE_ME_GENERATE_WITH_KOMPOSE # NEXTAUTH_SECRET=CHANGE_ME_GENERATE_WITH_KOMPOSE # JWT_TOKEN=CHANGE_ME_GENERATE_WITH_KOMPOSE # N8N_ENCRYPTION_KEY=CHANGE_ME_GENERATE_WITH_KOMPOSE # DIRECTUS_SECRET=CHANGE_ME_GENERATE_WITH_KOMPOSE # PASSWORD_HASH=CHANGE_ME_GENERATE_WITH_KOMPOSE