SysAdmin
6c05b7d0e8
- Add .gitlab-ci.yml with build, deploy, and rollback stages - Add docker-compose.production.yml (security-compliant, no hardcoded secrets) - Update .env.example with SilverPay integration variables - Add GITLAB-CI-DEPLOYMENT.md documentation Security improvements: - All secrets in VPS .env file (never in Git) - Environment variables without defaults (fail-fast) - SSH key authentication for CI/CD - VPN-only access via hq.lan Co-Authored-By: Claude <noreply@anthropic.com>
41 lines
1.9 KiB
Plaintext
41 lines
1.9 KiB
Plaintext
# LittleShop Production Environment Variables
|
|
# Copy this file to .env and update with your actual values
|
|
# NEVER commit the .env file to Git - it contains sensitive credentials
|
|
|
|
# =============================================================================
|
|
# JWT Configuration (REQUIRED)
|
|
# =============================================================================
|
|
# Generate with: openssl rand -base64 48 | cut -c1-64
|
|
JWT_SECRET_KEY=YourSuperSecretKeyThatIsAtLeast64CharactersLongForProductionUsage
|
|
|
|
# =============================================================================
|
|
# SilverPay Integration (REQUIRED for payment processing)
|
|
# =============================================================================
|
|
# SilverPay Base URL
|
|
# - For VPN/LAN access: http://bank.lan or http://10.13.13.1:8001
|
|
# - For direct access: http://31.97.57.205:8001
|
|
SILVERPAY_URL=http://bank.lan
|
|
|
|
# SilverPay API Key (get from SilverPay admin panel)
|
|
SILVERPAY_API_KEY=your-silverpay-api-key-here
|
|
|
|
# SilverPay Webhook Secret (shared secret for webhook verification)
|
|
SILVERPAY_WEBHOOK_SECRET=your-webhook-secret-here
|
|
|
|
# LittleShop Webhook URL (where SilverPay sends payment notifications)
|
|
# - For VPN/LAN: http://hq.lan/api/orders/payments/webhook
|
|
# - For public: http://srv1002428.hstgr.cloud:5100/api/orders/payments/webhook
|
|
SILVERPAY_WEBHOOK_URL=http://hq.lan/api/orders/payments/webhook
|
|
|
|
# =============================================================================
|
|
# BTCPay Server Configuration (OPTIONAL - legacy, prefer SilverPay)
|
|
# =============================================================================
|
|
BTCPAY_SERVER_URL=https://your-btcpay-server.com
|
|
BTCPAY_STORE_ID=your-store-id
|
|
BTCPAY_API_KEY=your-api-key
|
|
BTCPAY_WEBHOOK_SECRET=your-webhook-secret
|
|
|
|
# =============================================================================
|
|
# Docker Compose Configuration (OPTIONAL)
|
|
# =============================================================================
|
|
COMPOSE_PROJECT_NAME=littleshop |