.env.example
sha256:3ff9c9863a9891bdcde71b4a43228f66d0493e38b7cc1d09fe9eb7de774046b2
feat: add repair-commit wire endpoint (API parity with repa…
Opus 4.8
minor
⚠ breaking
1 day ago
| 1 | # MuseHub environment configuration template |
| 2 | # Copy to .env and fill in real values for local development. |
| 3 | # NEVER commit .env, .env.staging, .env.production, or .env.prod to version control. |
| 4 | # |
| 5 | # Secret generation: |
| 6 | # openssl rand -hex 32 → for WEBHOOK_SECRET_KEY, RUNNER_TOKEN |
| 7 | # openssl rand -hex 16 → for DB_PASSWORD |
| 8 | # |
| 9 | # Environments: local | staging | production |
| 10 | # NEVER set DEBUG=true in staging or production — it exposes internals. |
| 11 | |
| 12 | # ── Core ───────────────────────────────────────────────────────────────────── |
| 13 | |
| 14 | MUSE_ENV=local |
| 15 | DEBUG=true |
| 16 | |
| 17 | # ── Database ────────────────────────────────────────────────────────────────── |
| 18 | |
| 19 | DATABASE_URL=postgresql+asyncpg://musehub:musehub@postgres:5432/musehub |
| 20 | DB_PASSWORD=changeme |
| 21 | |
| 22 | # ── Auth & secrets ──────────────────────────────────────────────────────────── |
| 23 | # Generate with: openssl rand -hex 32 |
| 24 | |
| 25 | WEBHOOK_SECRET_KEY=changeme |
| 26 | RUNNER_TOKEN=changeme |
| 27 | |
| 28 | # ── CORS ────────────────────────────────────────────────────────────────────── |
| 29 | |
| 30 | CORS_ORIGINS=http://localhost:3000,https://localhost:1337 |
| 31 | |
| 32 | # ── Object storage ──────────────────────────────────────────────────────────── |
| 33 | # Works with any S3-compatible backend: Cloudflare R2, MinIO, AWS S3. |
| 34 | # In Docker dev these are set via docker-compose.override.yml (MinIO). |
| 35 | |
| 36 | # BLOB_STORAGE_BUCKET=muse-objects |
| 37 | # BLOB_STORAGE_ENDPOINT=http://localhost:9000 |
| 38 | # BLOB_STORAGE_PUBLIC_ENDPOINT=http://localhost:9000 |
| 39 | # BLOB_STORAGE_ACCESS_KEY_ID=minioadmin |
| 40 | # BLOB_STORAGE_SECRET_ACCESS_KEY=minioadmin |
| 41 | # BLOB_STORAGE_REGION=us-east-1 |
| 42 | |
| 43 | MUSEHUB_RELEASES_DIR=/data/releases |
| 44 | |
| 45 | # ── Staging / production guidance ───────────────────────────────────────────── |
| 46 | # For staging and production deployments, values are injected into .env by |
| 47 | # deploy/secrets.sh from AWS SSM Parameter Store — do not edit .env manually. |
| 48 | # Run: MUSEHUB_ENV=staging bash deploy/secrets.sh |
| 49 | # |
| 50 | # secrets.sh sets all of the following automatically based on MUSEHUB_ENV: |
| 51 | # |
| 52 | # MUSE_ENV=staging # or 'production' |
| 53 | # DEBUG=false |
| 54 | # PUBLIC_URL=https://staging.musehub.ai # prod: https://musehub.ai |
| 55 | # CORS_ORIGINS=["https://staging.musehub.ai"] |
| 56 | # DB_PASSWORD=<from SSM /musehub/staging/DB_PASSWORD> |
| 57 | # WEBHOOK_SECRET_KEY=<from SSM /musehub/staging/WEBHOOK_SECRET_KEY> |
| 58 | # RUNNER_TOKEN=<from SSM /musehub/staging/RUNNER_TOKEN> |
| 59 | # BLOB_STORAGE_BUCKET=musehub-staging # prod: musehub-prod |
| 60 | # BLOB_STORAGE_ENDPOINT=https://<account>.r2.cloudflarestorage.com |
| 61 | # BLOB_STORAGE_REGION=auto |
| 62 | # BLOB_STORAGE_ACCESS_KEY_ID=<from SSM> |
| 63 | # BLOB_STORAGE_SECRET_ACCESS_KEY=<from SSM> |
| 64 | # |
| 65 | # SSM parameters managed at: /musehub/{staging,production}/<NAME> |
| 66 | # EC2 IAM role requires: ssm:GetParameter on /musehub/<env>/* |
File History
1 commit
sha256:3ff9c9863a9891bdcde71b4a43228f66d0493e38b7cc1d09fe9eb7de774046b2
feat: add repair-commit wire endpoint (API parity with repa…
Opus 4.8
minor
⚠
1 day ago