-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.env.example
More file actions
118 lines (105 loc) · 5.81 KB
/
.env.example
File metadata and controls
118 lines (105 loc) · 5.81 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
# =============================================================================
# Platform Engineering Copilot - Environment Configuration
# =============================================================================
# This file contains all configurable environment variables for the application.
# Copy this file to .env and update with your actual values.
# =============================================================================
# -----------------------------------------------------------------------------
# Azure Configuration (Gateway.Azure)
# -----------------------------------------------------------------------------
AZURE_SUBSCRIPTION_ID=0000000-0000-0000-0000-a00000000
AZURE_TENANT_ID=0000000-0000-0000-0000-a00000000
AZURE_CLOUD_ENVIRONMENT=AzureGovernment
AZURE_USE_MANAGED_IDENTITY=false
AZURE_ENABLED=true
# Azure Service Principal (for Azure MCP Server live resource queries AND deployments)
# These credentials allow the MCP server to query Azure resources AND deploy infrastructure
# Create a Service Principal: az ad sp create-for-rbac --name "platform-engineering-copilot" --role Contributor --scopes /subscriptions/{subscription-id}
# IMPORTANT: Use "Contributor" role (not "Reader") for deployment permissions
AZURE_CLIENT_ID=your-service-principal-client-id
AZURE_CLIENT_SECRET=your-service-principal-client-secret
# -----------------------------------------------------------------------------
# Deployment Configuration (Bicep/Terraform)
# -----------------------------------------------------------------------------
# Terraform State Storage (optional - only needed for Terraform templates)
TERRAFORM_STATE_STORAGE=yourterraformstateaccount
TERRAFORM_STATE_CONTAINER=terraform-state
TERRAFORM_STATE_RG=rg-terraform-state
# -----------------------------------------------------------------------------
# Azure OpenAI Configuration (Gateway.AzureOpenAI)
# -----------------------------------------------------------------------------
AZURE_OPENAI_API_KEY=your-openai-api-key-here
AZURE_OPENAI_ENDPOINT=https://xxx-ai.openai.azure.us/
AZURE_OPENAI_DEPLOYMENT=gpt-4o
AZURE_OPENAI_CHAT_DEPLOYMENT=gpt-4o
AZURE_OPENAI_EMBEDDING_DEPLOYMENT=text-embedding-ada-002
AZURE_OPENAI_USE_MANAGED_IDENTITY=false
# -----------------------------------------------------------------------------
# GitHub Configuration (Gateway.GitHub)
# -----------------------------------------------------------------------------
GITHUB_TOKEN=your-github-token-here
GITHUB_API_BASE_URL=https://api.github.com
GITHUB_DEFAULT_OWNER=your-github-username-or-org
GITHUB_ENABLED=true
# -----------------------------------------------------------------------------
# Gateway Timeouts
# -----------------------------------------------------------------------------
GATEWAY_CONNECTION_TIMEOUT=60
GATEWAY_REQUEST_TIMEOUT=300
# -----------------------------------------------------------------------------
# NIST Controls Configuration
# -----------------------------------------------------------------------------
NIST_CONTROLS_BASE_URL=https://raw.githubusercontent.com/usnistgov/oscal-content/main/nist.gov/SP800-53/rev5/json
NIST_CONTROLS_TIMEOUT=60
NIST_CONTROLS_CACHE_DURATION=24
NIST_CONTROLS_MAX_RETRIES=3
NIST_CONTROLS_RETRY_DELAY=2
NIST_CONTROLS_OFFLINE_FALLBACK=true
NIST_CONTROLS_DETAILED_LOGGING=false
# -----------------------------------------------------------------------------
# Email Notifications Configuration (Azure Communication Services)
# -----------------------------------------------------------------------------
EMAIL_CONNECTION_STRING=endpoint=https://your-acs-resource.communication.azure.us/;accesskey=your-access-key
EMAIL_SENDER_EMAIL=noreply@flankspeed.navy.mil
EMAIL_SENDER_NAME=Navy Flankspeed Platform
EMAIL_NNWC_TEAM=nnwc-ops@navy.mil
EMAIL_ENABLE_NOTIFICATIONS=true
EMAIL_MOCK_MODE=false
EMAIL_AZURE_PORTAL_URL=https://portal.azure.us
EMAIL_SUPPORT_TICKET_URL=https://support.navy.mil/create-ticket
EMAIL_INCLUDE_DETAILED_ERRORS=true
# -----------------------------------------------------------------------------
# Slack Notifications Configuration
# -----------------------------------------------------------------------------
SLACK_WEBHOOK_URL=https://hooks.slack.com/services/T00000000/B00000000/XXXXXXXXXXXXXXXXXXXX
SLACK_ENABLE_NOTIFICATIONS=true
SLACK_MOCK_MODE=false
SLACK_CHANNEL_NAME=#flankspeed-ops
SLACK_BOT_USERNAME=Flankspeed Platform
SLACK_BOT_ICON_EMOJI=:anchor:
SLACK_MENTION_ON_FAILURE=true
SLACK_AZURE_PORTAL_URL=https://portal.azure.us
# -----------------------------------------------------------------------------
# Teams Notifications Configuration
# -----------------------------------------------------------------------------
TEAMS_WEBHOOK_URL=
TEAMS_ENABLE_NOTIFICATIONS=false
# -----------------------------------------------------------------------------
# OpenAI Configuration (Legacy - uses same values as Azure OpenAI)
# -----------------------------------------------------------------------------
USE_AZURE_OPENAI=true
ENABLE_CHAT_RESPONSES=true
# -----------------------------------------------------------------------------
# SQL Server Configuration
# -----------------------------------------------------------------------------
SA_PASSWORD=SupervisorDB123!
# =============================================================================
# Configuration Notes:
# =============================================================================
# 1. The environment variables follow ASP.NET Core configuration naming
# 2. Hierarchical config uses __ (double underscore) in docker-compose.yml
# Example: Gateway__Azure__SubscriptionId=${AZURE_SUBSCRIPTION_ID}
# 3. Default values are provided with :- syntax in docker-compose.yml
# 4. Sensitive values (API keys, secrets) should never be committed to git
# 5. For production, use Azure Key Vault or other secure secret management
# =============================================================================