version:'3' services: postgres: image:postgres:13-alpine container_name:postgres-13 ports: -5432:5432 environment: -POSTGRES_PASSWORD=password# feel free to change the password volumes: -./postgresql/data:/var/lib/postgresql/data# persist postgres data to ~/postgres/data/ on the host privileged:true cpus:2 mem_limit:512m
# Generate a hex-encoded 32-byte random key. You should use `openssl rand -hex 32` # in your terminal to generate a random value. SECRET_KEY=d1020471380935f0053864173d8178578910ab9331a434aa1e4ec20ae6a8bb47
# Generate a unique random key. The format is not important but you could still use # `openssl rand -hex 32` in your terminal to produce this. UTILS_SECRET=d1020471380935f0053864173d8178578910ab9331a434aa1e4ec20ae6a8bb47
# 身份认证服务的各种URL # Redirect URI is https://<URL>/auth/oidc.callback OIDC_CLIENT_ID=c49f442d-5c63-4394-8a56-78256c502b04 OIDC_CLIENT_SECRET=gto_v5ygxr3ym4a2w4tm3vjwebjr2tokr7jwjoob2zmh7swsq6h6jkda OIDC_AUTH_URI=http://gitea.xxxx.com/login/oauth/authorize OIDC_TOKEN_URI=http://gitea.xxxx.com/login/oauth/access_token OIDC_USERINFO_URI=http://gitea.xxxx.com/login/oauth/userinfo
# Specify which claims to derive user information from # Supports any valid JSON path with the JWT payload OIDC_USERNAME_CLAIM=name
# Display name for OIDC authentication OIDC_DISPLAY_NAME=Gitea
# Space separated auth scopes. OIDC_SCOPES=openid email name
# –––––––––––––––– OPTIONAL ––––––––––––––––
# If using a Cloudfront/Cloudflare distribution or similar it can be set below. # This will cause paths to javascript, stylesheets, and images to be updated to # the hostname defined in CDN_URL. In your CDN configuration the origin server # should be set to the same as URL. # CDN_URL=
# Auto-redirect to https in production. The default is true but you may set to # false if you can be sure that SSL is terminated at an external loadbalancer. FORCE_HTTPS=false
# Have the installation check for updates by sending anonymized statistics to # the maintainers ENABLE_UPDATES=false
# Optionally enable rate limiter at application web server RATE_LIMITER_ENABLED=true
# Configure default throttling parameters for rate limiter RATE_LIMITER_REQUESTS=1000 RATE_LIMITER_DURATION_WINDOW=60
# Enable unsafe-inline in script-src CSP directive # Setting it to true allows React dev tools add-on in # Firefox to successfully detect the project DEVELOPMENT_UNSAFE_INLINE_CSP=false