# Change the name of this file to .env after updating it! ############ # [required] # n8n credentials - you set this to whatever you want, just make it a long and secure string for both! ############ N8N_ENCRYPTION_KEY=super-secret-key N8N_USER_MANAGEMENT_JWT_SECRET=even-more-secret ############ # [required] # Supabase Secrets # YOU MUST CHANGE THESE BEFORE GOING INTO PRODUCTION # Read these docs for any help: https://supabase.com/docs/guides/self-hosting/docker # For the JWT Secret and keys, see: https://supabase.com/docs/guides/self-hosting/docker#generate-api-keys # For the other secrets, see: https://supabase.com/docs/guides/self-hosting/docker#update-secrets # You can really decide any value for POOLER_TENANT_ID like 1000. ############ POSTGRES_PASSWORD=your-super-secret-and-long-postgres-password JWT_SECRET=your-super-secret-jwt-token-with-at-least-32-characters-long ANON_KEY=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyAgCiAgICAicm9sZSI6ICJhbm9uIiwKICAgICJpc3MiOiAic3VwYWJhc2UtZGVtbyIsCiAgICAiaWF0IjogMTY0MTc2OTIwMCwKICAgICJleHAiOiAxNzk5NTM1NjAwCn0.dc_X5iR_VP_qT0zsiyj_I_OZ2T9FtRU2BBNWN8Bu4GE SERVICE_ROLE_KEY=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyAgCiAgICAicm9sZSI6ICJzZXJ2aWNlX3JvbGUiLAogICAgImlzcyI6ICJzdXBhYmFzZS1kZW1vIiwKICAgICJpYXQiOiAxNjQxNzY5MjAwLAogICAgImV4cCI6IDE3OTk1MzU2MDAKfQ.DaYlNEoUrrEn2Ig7tqibS-PHK5vgusbcbo7X36XVt4Q DASHBOARD_USERNAME=supabase DASHBOARD_PASSWORD=this_password_is_insecure_and_should_be_updated POOLER_TENANT_ID=your-tenant-id ############ # [required] # Langfuse credentials # Each of the secret keys you can set to whatever you want, just make it secure! # For the encryption key, use the command `openssl rand -hex 32` # openssl is available by defualt on Linux/Mac # For Windows, you can use the 'Git Bash' terminal installed with git ############ CLICKHOUSE_PASSWORD=super-secret-key-1 MINIO_ROOT_PASSWORD=super-secret-key-2 LANGFUSE_SALT=super-secret-key-3 NEXTAUTH_SECRET=super-secret-key-4 ENCRYPTION_KEY=generate-with-openssl # generate via `openssl rand -hex 32` ############ # [required for prod] # Caddy Config # By default listen on https://localhost:[service port] and don't use an email for SSL # To change this for production: # Uncomment all of these environment variables for the services you want exposed # Note that you might not want to expose Ollama or SearXNG since they aren't secured by default # Replace the placeholder value with the host for each service (like n8n.yourdomain.com) # Replace internal by your email (require to create a Let's Encrypt certificate) ############ # N8N_HOSTNAME=n8n.yourdomain.com # WEBUI_HOSTNAME=openwebui.yourdomain.com # FLOWISE_HOSTNAME=flowise.yourdomain.com # SUPABASE_HOSTNAME=supabase.yourdomain.com # LANGFUSE_HOSTNAME=langfuse.yourdomain.com # OLLAMA_HOSTNAME=ollama.yourdomain.com # SEARXNG_HOSTNAME=searxng.yourdomain.com # LETSENCRYPT_EMAIL=internal # Everything below this point is optional. # Default values will suffice unless you need more features/customization. # # ####### ##### # ############ # Optional SearXNG Config # If you run a very small or a very large instance, you might want to change the amount of used uwsgi workers and threads per worker # More workers (= processes) means that more search requests can be handled at the same time, but it also causes more resource usage ############ # SEARXNG_UWSGI_WORKERS=4 # SEARXNG_UWSGI_THREADS=4 ############ # Database - You can change these to any PostgreSQL database that has logical replication enabled. ############ POSTGRES_HOST=db POSTGRES_DB=postgres POSTGRES_PORT=5432 # default user is postgres ############ # Supavisor -- Database pooler and others that can be left as default values ############ POOLER_PROXY_PORT_TRANSACTION=6543 POOLER_DEFAULT_POOL_SIZE=20 POOLER_MAX_CLIENT_CONN=100 SECRET_KEY_BASE=UpNVntn3cDxHJpq99YMc1T1AQgQpc8kfYTuRgBiYa15BLrx8etQoXz3gZv1/u2oq VAULT_ENC_KEY=your-32-character-encryption-key ############ # API Proxy - Configuration for the Kong Reverse proxy. ############ KONG_HTTP_PORT=8000 KONG_HTTPS_PORT=8443 ############ # API - Configuration for PostgREST. ############ PGRST_DB_SCHEMAS=public,storage,graphql_public ############ # Flowise - Authentication Configuration for Flowise. ############ #FLOWISE_USERNAME=your_username #FLOWISE_PASSWORD=your_password ############ # Auth - Configuration for the GoTrue authentication server. ############ ## General SITE_URL=http://localhost:3000 ADDITIONAL_REDIRECT_URLS= JWT_EXPIRY=3600 DISABLE_SIGNUP=false API_EXTERNAL_URL=http://localhost:8000 ## Mailer Config MAILER_URLPATHS_CONFIRMATION="/auth/v1/verify" MAILER_URLPATHS_INVITE="/auth/v1/verify" MAILER_URLPATHS_RECOVERY="/auth/v1/verify" MAILER_URLPATHS_EMAIL_CHANGE="/auth/v1/verify" ## Email auth ENABLE_EMAIL_SIGNUP=true ENABLE_EMAIL_AUTOCONFIRM=false SMTP_ADMIN_EMAIL=admin@example.com SMTP_HOST=supabase-mail SMTP_PORT=2500 SMTP_USER=fake_mail_user SMTP_PASS=fake_mail_password SMTP_SENDER_NAME=fake_sender ENABLE_ANONYMOUS_USERS=false ## Phone auth ENABLE_PHONE_SIGNUP=true ENABLE_PHONE_AUTOCONFIRM=true ############ # Studio - Configuration for the Dashboard ############ STUDIO_DEFAULT_ORGANIZATION=Default Organization STUDIO_DEFAULT_PROJECT=Default Project STUDIO_PORT=3000 # replace if you intend to use Studio outside of localhost SUPABASE_PUBLIC_URL=http://localhost:8000 # Enable webp support IMGPROXY_ENABLE_WEBP_DETECTION=true # Add your OpenAI API key to enable SQL Editor Assistant OPENAI_API_KEY= ############ # Functions - Configuration for Functions ############ # NOTE: VERIFY_JWT applies to all functions. Per-function VERIFY_JWT is not supported yet. FUNCTIONS_VERIFY_JWT=false ############ # Logs - Configuration for Logflare # Please refer to https://supabase.com/docs/reference/self-hosting-analytics/introduction ############ LOGFLARE_LOGGER_BACKEND_API_KEY=your-super-secret-and-long-logflare-key # Change vector.toml sinks to reflect this change LOGFLARE_API_KEY=your-super-secret-and-long-logflare-key # Docker socket location - this value will differ depending on your OS DOCKER_SOCKET_LOCATION=/var/run/docker.sock # Google Cloud Project details GOOGLE_PROJECT_ID=GOOGLE_PROJECT_ID GOOGLE_PROJECT_NUMBER=GOOGLE_PROJECT_NUMBER