-
Notifications
You must be signed in to change notification settings - Fork 3
Expand file tree
/
Copy path.env.example
More file actions
25 lines (21 loc) · 1 KB
/
.env.example
File metadata and controls
25 lines (21 loc) · 1 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
# Legacy encryption key for credit card data (base64 encoded 32-byte key)
# NOTE: Only used when USE_KEK_DEK=false. When KEK/DEK is enabled, keys are managed automatically.
# Generate with: python -c "from cryptography.fernet import Fernet; print(Fernet.generate_key().decode())"
ENCRYPTION_KEY=your-256-bit-base64-encoded-key-here
# Token format configuration
# Options:
# - "prefix" (default): Generates tokens like "tok_abc123..."
# - "luhn": Generates tokens that look like valid credit cards (9999xxxxxxxxxxxx)
TOKEN_FORMAT=prefix
# KEK/DEK encryption (Key Encryption Key / Data Encryption Key)
# Options:
# - "false" (default): Use simple Fernet encryption
# - "true": Use KEK/DEK with key rotation support
USE_KEK_DEK=false
# Your application endpoint where tokenized requests will be forwarded
APP_ENDPOINT=http://dummy-ecommerce-app:8000
# MySQL settings (optional, defaults are in docker-compose.yml)
MYSQL_ROOT_PASSWORD=rootpassword123
MYSQL_DATABASE=tokenshield
MYSQL_USER=pciproxy
MYSQL_PASSWORD=pciproxy123