TYPE=penpot DOMAIN=penpot.example.com ## Domain aliases #EXTRA_DOMAINS=', `www.${REPO_NAME_KEBAB}.example.com`' LETS_ENCRYPT_ENV=production # Generate the secret key manually and insert it e.g. # dd if=/dev/urandom bs=1 count=64 | base64 - SECRET_SECRET_KEY_VERSION=v1 SECRET_DB_PASSWORD_VERSION=v1 ## All flags take the format of enable-flag-name or disable-flag-name # List of flags: # demo-users email-verification log-emails log-invitation-tokens login-with-github login-with-gitlab login-with-google login-with-ldap login-with-oidc login-with-password registration secure-session-cookies smtp smtp-debug telemetry webhooks prepl-server PENPOT_FLAGS="enable-registration enable-login-with-password disable-email-verification enable-prepl-server disable-telemetry" ## If not set, mails will be printed to logs #PENPOT_FLAGS="$PENPOT_FLAGS enable-smtp" #SECRET_SMTP_PASSWORD_VERSION=v1 #PENPOT_SMTP_DEFAULT_FROM=penpot@example.com #PENPOT_SMTP_DEFAULT_REPLY_TO=penpot@example.com #PENPOT_SMTP_HOST=smtp.example.com #PENPOT_SMTP_PORT=25 #PENPOT_SMTP_USERNAME=username #PENPOT_SMTP_PASSWORD=password #PENPOT_SMTP_TLS=true #PENPOT_SMTP_SSL=false ## Store assets in the filesystem PENPOT_ASSETS_STORAGE_BACKEND=assets-fs PENPOT_ASSETS_FS_DIRECTORY=/opt/data/assets ## Or store them in an S3 bucket #- PENPOT_ASSETS_STORAGE_BACKEND=assets-s3 #- PENPOT_STORAGE_ASSETS_S3_ENDPOINT=http://penpot-minio:9000 #- PENPOT_STORAGE_ASSETS_S3_BUCKET= #- AWS_ACCESS_KEY_ID= #- AWS_SECRET_ACCESS_KEY= # e.g. for Keycloak https://id.example.com/auth/realms/example/ #PENPOT_FLAGS_FRONTEND="$PENPOT_FLAGS_FRONTEND enable-login-with-oidc" #PENPOT_OIDC_BASE_URI= #PENPOT_OIDC_CLIENT_ID= #PENPOT_OIDC_CLIENT_SECRET= #SECRET_OIDC_CLIENT_SECRET_VERSION=v1