update

2025-11-29 08:33:20 +00:00 · 2025-07-25 14:48:49 +05:30
parent 4185e64c65
commit f99b6496c5
3 changed files with 99 additions and 63 deletions
--- a/docs/pages/Deploying/DocsGPT-Settings.mdx
+++ b/docs/pages/Deploying/DocsGPT-Settings.mdx
@@ -37,33 +37,33 @@ While modifying `settings.py` offers more flexibility, it's generally recommende

 Here are some of the most fundamental settings you'll likely want to configure:

- **`LLM_PROVIDER`**: This setting determines which Large Language Model (LLM) provider DocsGPT will use.  It tells DocsGPT which API to interact with.
+- **`LLM_PROVIDER`**: This setting determines which Large Language Model (LLM) provider DocsGPT will use. It tells DocsGPT which API to interact with.

-    - **Common values:**
-        - `docsgpt`:  Use the DocsGPT Public API Endpoint (simple and free, as offered in `setup.sh` option 1).
-        - `openai`: Use OpenAI's API (requires an API key).
-        - `google`: Use Google's Vertex AI or Gemini models.
-        - `anthropic`: Use Anthropic's Claude models.
-        - `groq`: Use Groq's models.
-        - `huggingface`: Use HuggingFace Inference API.
-        - `azure_openai`: Use Azure OpenAI Service.
-        - `openai` (when using local inference engines like Ollama, Llama.cpp, TGI, etc.):  This signals DocsGPT to use an OpenAI-compatible API format, even if the actual LLM is running locally.
+  - **Common values:**
+    - `docsgpt`: Use the DocsGPT Public API Endpoint (simple and free, as offered in `setup.sh` option 1).
+    - `openai`: Use OpenAI's API (requires an API key).
+    - `google`: Use Google's Vertex AI or Gemini models.
+    - `anthropic`: Use Anthropic's Claude models.
+    - `groq`: Use Groq's models.
+    - `huggingface`: Use HuggingFace Inference API.
+    - `azure_openai`: Use Azure OpenAI Service.
+    - `openai` (when using local inference engines like Ollama, Llama.cpp, TGI, etc.): This signals DocsGPT to use an OpenAI-compatible API format, even if the actual LLM is running locally.

- **`LLM_NAME`**:  Specifies the specific model to use from the chosen LLM provider. The available models depend on the `LLM_PROVIDER` you've selected.
+- **`LLM_NAME`**: Specifies the specific model to use from the chosen LLM provider. The available models depend on the `LLM_PROVIDER` you've selected.

-    - **Examples:**
-        - For `LLM_PROVIDER=openai`: `gpt-4o`
-        - For `LLM_PROVIDER=google`: `gemini-2.0-flash`
-        - For local models (e.g., Ollama): `llama3.2:1b` (or any model name available in your setup).
+  - **Examples:**
+    - For `LLM_PROVIDER=openai`: `gpt-4o`
+    - For `LLM_PROVIDER=google`: `gemini-2.0-flash`
+    - For local models (e.g., Ollama): `llama3.2:1b` (or any model name available in your setup).

- **`EMBEDDINGS_NAME`**:  This setting defines which embedding model DocsGPT will use to generate vector embeddings for your documents. Embeddings are numerical representations of text that allow DocsGPT to understand the semantic meaning of your documents for efficient search and retrieval.
+- **`EMBEDDINGS_NAME`**: This setting defines which embedding model DocsGPT will use to generate vector embeddings for your documents. Embeddings are numerical representations of text that allow DocsGPT to understand the semantic meaning of your documents for efficient search and retrieval.

-    - **Default value:** `huggingface_sentence-transformers/all-mpnet-base-v2` (a good general-purpose embedding model).
-    - **Other options:** You can explore other embedding models from Hugging Face Sentence Transformers or other providers if needed.
+  - **Default value:** `huggingface_sentence-transformers/all-mpnet-base-v2` (a good general-purpose embedding model).
+  - **Other options:** You can explore other embedding models from Hugging Face Sentence Transformers or other providers if needed.

- **`API_KEY`**:  Required for most cloud-based LLM providers.  This is your authentication key to access the LLM provider's API. You'll need to obtain this key from your chosen provider's platform.
+- **`API_KEY`**: Required for most cloud-based LLM providers. This is your authentication key to access the LLM provider's API. You'll need to obtain this key from your chosen provider's platform.

- **`OPENAI_BASE_URL`**:  Specifically used when `LLM_PROVIDER` is set to `openai` but you are connecting to a local inference engine (like Ollama, Llama.cpp, etc.) that exposes an OpenAI-compatible API.  This setting tells DocsGPT where to find your local LLM server.
+- **`OPENAI_BASE_URL`**: Specifically used when `LLM_PROVIDER` is set to `openai` but you are connecting to a local inference engine (like Ollama, Llama.cpp, etc.) that exposes an OpenAI-compatible API. This setting tells DocsGPT where to find your local LLM server.

 ## Configuration Examples

@@ -93,51 +93,82 @@ OPENAI_BASE_URL=http://host.docker.internal:11434/v1 # Default Ollama API URL wi
 EMBEDDINGS_NAME=huggingface_sentence-transformers/all-mpnet-base-v2 # You can also run embeddings locally if needed
 ```

-In this case, even though you are using Ollama locally, `LLM_PROVIDER` is set to `openai` because Ollama (and many other local inference engines) are designed to be API-compatible with OpenAI.  `OPENAI_BASE_URL` points DocsGPT to the local Ollama server.
+In this case, even though you are using Ollama locally, `LLM_PROVIDER` is set to `openai` because Ollama (and many other local inference engines) are designed to be API-compatible with OpenAI. `OPENAI_BASE_URL` points DocsGPT to the local Ollama server.

 ## Authentication Settings

 DocsGPT includes a JWT (JSON Web Token) based authentication feature for managing sessions or securing local deployments while allowing access.

- **`AUTH_TYPE`**: This setting in your `.env` file or `settings.py` determines the authentication method.
-    
-    - **Possible values:**
-        - `None` (or not set): No authentication is used.
-        - `simple_jwt`: A single, long-lived JWT token is generated and used for all authenticated requests. This is useful for securing a local deployment with a shared secret.
-        - `session_jwt`: Unique JWT tokens are generated for sessions, typically for individual users or temporary access.
-    - If `AUTH_TYPE` is set to `simple_jwt` or `session_jwt`, then a `JWT_SECRET_KEY` is required.
- **`JWT_SECRET_KEY`**: This is a crucial secret key used to sign and verify JWTs.
-    
-    - It can be set directly in your `.env` file or `settings.py`.
-    - **Automatic Key Generation**: If `AUTH_TYPE` is `simple_jwt` or `session_jwt` and `JWT_SECRET_KEY` is _not_ set in your environment variables or `settings.py`, DocsGPT will attempt to:
-        1. Read the key from a file named `.jwt_secret_key` in the project's root directory.
-        2. If the file doesn't exist, it will generate a new 32-byte random key, save it to `.jwt_secret_key`, and use it for the session. This ensures that the key persists across application restarts.
-    - **Security Note**: It's vital to keep this key secure. If you set it manually, choose a strong, random string.
+### `AUTH_TYPE` Overview

-**How it works:**
+The `AUTH_TYPE` setting in your `.env` file or `settings.py` determines the authentication method used by DocsGPT. This allows you to control how users authenticate with your DocsGPT instance.

- When `AUTH_TYPE` is set to `simple_jwt`, a token is generated at startup (if not already present or configured) and printed to the console. This token should be included in the `Authorization` header of your API requests as a Bearer token (e.g., `Authorization: Bearer YOUR_SIMPLE_JWT_TOKEN`).
- When `AUTH_TYPE` is set to `session_jwt`:
-    - Clients can request a new token from the `/api/generate_token` endpoint.
-    - This token should then be included in the `Authorization` header for subsequent requests.
- The backend verifies the JWT token provided in the `Authorization` header for protected routes.
- The `/api/config` endpoint can be used to check the current `auth_type` and whether authentication is required.
+| Value         | Description                                                                                 |
+| ------------- | ------------------------------------------------------------------------------------------- |
+| `None`        | No authentication is used. Anyone can access the app.                                       |
+| `simple_jwt`  | A single, long-lived JWT token is generated at startup. All requests use this shared token. |
+| `session_jwt` | Unique JWT tokens are generated for each session/user.                                      |

-**Frontend Token Input for `simple_jwt`:**
+#### How to Configure

-<img 
-  src="/jwt-input.png" 
-  alt="Frontend prompt for JWT Token" 
-  style={{ 
-    width: '500px', 
-    maxWidth: '100%', 
-    display: 'block', 
-    margin: '1em auto' 
-  }} 
+Add the following to your `.env` file (or set in `settings.py`):
+
+```env
+# No authentication (default)
+AUTH_TYPE=None
+
+# OR: Simple JWT (shared token)
+AUTH_TYPE=simple_jwt
+JWT_SECRET_KEY=your_secret_key_here
+
+# OR: Session JWT (per-user/session tokens)
+AUTH_TYPE=session_jwt
+JWT_SECRET_KEY=your_secret_key_here
+```
+
+- If `AUTH_TYPE` is set to `simple_jwt` or `session_jwt`, a `JWT_SECRET_KEY` is required.
+- If `JWT_SECRET_KEY` is not set, DocsGPT will generate one and store it in `.jwt_secret_key` in the project root.
+
+#### How Each Method Works
+
+- **None**: No authentication. All API and UI access is open.
+- **simple_jwt**:
+  - A single JWT token is generated at startup and printed to the console.
+  - Use this token in the `Authorization` header for all API requests:
+    ```http
+    Authorization: Bearer <SIMPLE_JWT_TOKEN>
+    ```
+  - The frontend will prompt for this token if not already set.
+- **session_jwt**:
+  - Clients can request a new token from `/api/generate_token`.
+  - Use the received token in the `Authorization` header for subsequent requests.
+  - Each user/session gets a unique token.
+
+#### Security Notes
+
+- Always keep your `JWT_SECRET_KEY` secure and private.
+- If you set it manually, use a strong, random string.
+- If not set, DocsGPT will generate a secure key and persist it in `.jwt_secret_key`.
+
+#### Checking Current Auth Type
+
+- Use the `/api/config` endpoint to check the current `auth_type` and whether authentication is required.
+
+#### Frontend Token Input for `simple_jwt`
+
+If you have configured `AUTH_TYPE=simple_jwt`, the DocsGPT frontend will prompt you to enter the JWT token if it's not already set or is invalid. Paste the `SIMPLE_JWT_TOKEN` (printed to your console when the backend starts) into this field to access the application.
+
+<img
+  src="/jwt-input.png"
+  alt="Frontend prompt for JWT Token"
+  style={{
+    width: "500px",
+    maxWidth: "100%",
+    display: "block",
+    margin: "1em auto",
+  }}
 />

-If you have configured `AUTH_TYPE=simple_jwt`, the DocsGPT frontend will prompt you to enter the JWT token if it's not already set or is invalid. You'll need to paste the `SIMPLE_JWT_TOKEN` (which is printed to your console when the backend starts) into this field to access the application.
-
 ## Exploring More Settings

 These are just the basic settings to get you started. The `settings.py` file contains many more advanced options that you can explore to further customize DocsGPT, such as:
@@ -147,4 +178,4 @@ These are just the basic settings to get you started. The `settings.py` file con
 - Cache settings (`CACHE_REDIS_URL`)
 - And many more!

-For a complete list of available settings and their descriptions, refer to the `settings.py` file in `application/core`. Remember to restart your Docker containers after making changes to your `.env` file or `settings.py` for the changes to take effect.
+For a complete list of available settings and their descriptions, refer to the `settings.py` file in `application/core`. Remember to restart your Docker containers after making changes to your `.env` file or `settings.py` for the changes to take effect.