2022-06-24 14:50:14 +02:00
|
|
|
## Most settings are being done automatically with the sourced variables from setup.env, but you can edit if you need some customization
|
2022-03-05 11:20:04 +01:00
|
|
|
|
|
|
|
# Management API
|
|
|
|
|
|
|
|
# Management API port
|
2023-04-05 15:22:06 +02:00
|
|
|
NETBIRD_MGMT_API_PORT=${NETBIRD_MGMT_API_PORT:-33073}
|
2022-03-05 11:20:04 +01:00
|
|
|
# Management API endpoint address, used by the Dashboard
|
2022-05-22 18:53:47 +02:00
|
|
|
NETBIRD_MGMT_API_ENDPOINT=https://$NETBIRD_DOMAIN:$NETBIRD_MGMT_API_PORT
|
2022-03-05 11:20:04 +01:00
|
|
|
# Management Certficate file path. These are generated by the Dashboard container
|
2023-04-07 10:34:17 +02:00
|
|
|
NETBIRD_LETSENCRYPT_DOMAIN=$NETBIRD_DOMAIN
|
2023-04-04 00:21:40 +02:00
|
|
|
NETBIRD_MGMT_API_CERT_FILE="/etc/letsencrypt/live/$NETBIRD_LETSENCRYPT_DOMAIN/fullchain.pem"
|
2022-03-05 11:20:04 +01:00
|
|
|
# Management Certficate key file path.
|
2023-04-04 00:21:40 +02:00
|
|
|
NETBIRD_MGMT_API_CERT_KEY_FILE="/etc/letsencrypt/live/$NETBIRD_LETSENCRYPT_DOMAIN/privkey.pem"
|
2022-10-19 17:43:28 +02:00
|
|
|
# By default Management single account mode is enabled and domain set to $NETBIRD_DOMAIN, you may want to set this to your user's email domain
|
|
|
|
NETBIRD_MGMT_SINGLE_ACCOUNT_MODE_DOMAIN=$NETBIRD_DOMAIN
|
2022-12-13 13:42:43 +01:00
|
|
|
NETBIRD_MGMT_DNS_DOMAIN=${NETBIRD_MGMT_DNS_DOMAIN:-netbird.selfhosted}
|
2022-03-05 11:20:04 +01:00
|
|
|
|
2023-04-04 00:21:40 +02:00
|
|
|
# Signal
|
|
|
|
NETBIRD_SIGNAL_PROTOCOL="http"
|
2023-04-05 15:22:06 +02:00
|
|
|
NETBIRD_SIGNAL_PORT=${NETBIRD_SIGNAL_PORT:-10000}
|
2023-04-04 00:21:40 +02:00
|
|
|
|
|
|
|
# Turn credentials
|
2022-03-05 11:20:04 +01:00
|
|
|
# User
|
|
|
|
TURN_USER=self
|
|
|
|
# Password. If empty, the configure.sh will generate one with openssl
|
|
|
|
TURN_PASSWORD=
|
|
|
|
# Min port
|
2023-04-05 15:22:06 +02:00
|
|
|
TURN_MIN_PORT=${TURN_MIN_PORT:-49152}
|
2022-03-05 11:20:04 +01:00
|
|
|
# Max port
|
2023-04-05 15:22:06 +02:00
|
|
|
TURN_MAX_PORT=${TURN_MAX_PORT:-65535}
|
2022-03-05 11:20:04 +01:00
|
|
|
|
2022-05-13 14:11:21 +02:00
|
|
|
VOLUME_PREFIX="netbird-"
|
2022-05-13 21:51:41 +02:00
|
|
|
MGMT_VOLUMESUFFIX="mgmt"
|
|
|
|
SIGNAL_VOLUMESUFFIX="signal"
|
|
|
|
LETSENCRYPT_VOLUMESUFFIX="letsencrypt"
|
2022-05-13 14:11:21 +02:00
|
|
|
|
2022-08-24 14:37:18 +02:00
|
|
|
NETBIRD_AUTH_DEVICE_AUTH_PROVIDER="none"
|
2023-04-05 21:57:47 +02:00
|
|
|
NETBIRD_AUTH_DEVICE_AUTH_AUDIENCE=${NETBIRD_AUTH_DEVICE_AUTH_AUDIENCE:-$NETBIRD_AUTH_AUDIENCE}
|
|
|
|
NETBIRD_AUTH_DEVICE_AUTH_SCOPE=${NETBIRD_AUTH_DEVICE_AUTH_SCOPE:-openid}
|
|
|
|
NETBIRD_AUTH_DEVICE_AUTH_USE_ID_TOKEN=${NETBIRD_AUTH_DEVICE_AUTH_USE_ID_TOKEN:-false}
|
|
|
|
|
2022-08-24 14:37:18 +02:00
|
|
|
|
2022-10-16 13:33:46 +02:00
|
|
|
NETBIRD_DISABLE_ANONYMOUS_METRICS=${NETBIRD_DISABLE_ANONYMOUS_METRICS:-false}
|
2023-04-04 15:56:02 +02:00
|
|
|
NETBIRD_TOKEN_SOURCE=${NETBIRD_TOKEN_SOURCE:-accessToken}
|
2022-10-16 13:33:46 +02:00
|
|
|
|
2023-07-27 11:31:07 +02:00
|
|
|
# PKCE authorization flow
|
|
|
|
NETBIRD_AUTH_PKCE_REDIRECT_URL_PORTS=${NETBIRD_AUTH_PKCE_REDIRECT_URL_PORTS:-"53000"}
|
|
|
|
NETBIRD_AUTH_PKCE_USE_ID_TOKEN=${NETBIRD_AUTH_PKCE_USE_ID_TOKEN:-false}
|
|
|
|
|
2022-03-05 11:20:04 +01:00
|
|
|
# exports
|
2022-05-22 18:53:47 +02:00
|
|
|
export NETBIRD_DOMAIN
|
2022-08-17 21:44:20 +02:00
|
|
|
export NETBIRD_AUTH_CLIENT_ID
|
2023-06-07 16:00:04 +02:00
|
|
|
export NETBIRD_AUTH_CLIENT_SECRET
|
2022-08-17 21:44:20 +02:00
|
|
|
export NETBIRD_AUTH_AUDIENCE
|
|
|
|
export NETBIRD_AUTH_AUTHORITY
|
|
|
|
export NETBIRD_USE_AUTH0
|
|
|
|
export NETBIRD_AUTH_SUPPORTED_SCOPES
|
|
|
|
export NETBIRD_AUTH_JWT_CERTS
|
2022-05-22 18:53:47 +02:00
|
|
|
export NETBIRD_LETSENCRYPT_EMAIL
|
|
|
|
export NETBIRD_MGMT_API_PORT
|
|
|
|
export NETBIRD_MGMT_API_ENDPOINT
|
2023-04-07 10:34:17 +02:00
|
|
|
export NETBIRD_LETSENCRYPT_DOMAIN
|
2022-05-22 18:53:47 +02:00
|
|
|
export NETBIRD_MGMT_API_CERT_FILE
|
|
|
|
export NETBIRD_MGMT_API_CERT_KEY_FILE
|
2022-08-24 14:37:18 +02:00
|
|
|
export NETBIRD_AUTH_DEVICE_AUTH_PROVIDER
|
|
|
|
export NETBIRD_AUTH_DEVICE_AUTH_CLIENT_ID
|
|
|
|
export NETBIRD_AUTH_OIDC_CONFIGURATION_ENDPOINT
|
2022-10-12 12:25:46 +02:00
|
|
|
export NETBIRD_AUTH_REDIRECT_URI
|
|
|
|
export NETBIRD_AUTH_SILENT_REDIRECT_URI
|
2022-03-05 11:20:04 +01:00
|
|
|
export TURN_USER
|
|
|
|
export TURN_PASSWORD
|
|
|
|
export TURN_MIN_PORT
|
|
|
|
export TURN_MAX_PORT
|
2022-05-13 21:51:41 +02:00
|
|
|
export VOLUME_PREFIX
|
|
|
|
export MGMT_VOLUMESUFFIX
|
|
|
|
export SIGNAL_VOLUMESUFFIX
|
|
|
|
export LETSENCRYPT_VOLUMESUFFIX
|
2022-10-16 13:33:46 +02:00
|
|
|
export NETBIRD_DISABLE_ANONYMOUS_METRICS
|
2022-12-13 13:42:43 +01:00
|
|
|
export NETBIRD_MGMT_SINGLE_ACCOUNT_MODE_DOMAIN
|
2023-04-04 00:21:40 +02:00
|
|
|
export NETBIRD_MGMT_DNS_DOMAIN
|
|
|
|
export NETBIRD_SIGNAL_PROTOCOL
|
|
|
|
export NETBIRD_SIGNAL_PORT
|
2023-04-04 15:56:02 +02:00
|
|
|
export NETBIRD_AUTH_USER_ID_CLAIM
|
|
|
|
export NETBIRD_AUTH_DEVICE_AUTH_AUDIENCE
|
2023-04-05 21:57:47 +02:00
|
|
|
export NETBIRD_TOKEN_SOURCE
|
|
|
|
export NETBIRD_AUTH_DEVICE_AUTH_SCOPE
|
2023-07-27 11:31:07 +02:00
|
|
|
export NETBIRD_AUTH_DEVICE_AUTH_USE_ID_TOKEN
|
|
|
|
export NETBIRD_AUTH_PKCE_AUTHORIZATION_ENDPOINT
|
|
|
|
export NETBIRD_AUTH_PKCE_USE_ID_TOKEN
|