117 lines
2.8 KiB
Plaintext
117 lines
2.8 KiB
Plaintext
# Production Environment Configuration
|
|
# WICHTIG: Dieses File nach .env.production kopieren und anpassen!
|
|
|
|
# Application Settings
|
|
APP_ENV=production
|
|
APP_DEBUG=false
|
|
APP_NAME="Michael Schiemer"
|
|
APP_KEY=base64:kJH8fsd89fs8df7sdf8sdf7sd8f7sdf
|
|
APP_TIMEZONE=Europe/Berlin
|
|
APP_LOCALE=de
|
|
|
|
# Database Configuration (Production)
|
|
DB_DRIVER=pgsql
|
|
DB_HOST=db
|
|
DB_PORT=5432
|
|
DB_DATABASE=michaelschiemer
|
|
DB_USERNAME=mdb_user
|
|
DB_PASSWORD=Qo2KNgGqeYksEhKr57pgugakxlothn8J
|
|
DB_CHARSET=utf8
|
|
|
|
# Security Configuration
|
|
SECURITY_ALLOWED_HOSTS=localhost,michaelschiemer.de,www.michaelschiemer.de
|
|
SECURITY_RATE_LIMIT_PER_MINUTE=30
|
|
SECURITY_RATE_LIMIT_BURST=5
|
|
SESSION_LIFETIME=1800
|
|
|
|
# Docker Production Configuration
|
|
RESTART_POLICY=always
|
|
VOLUME_MODE=ro
|
|
LOG_DRIVER=json-file
|
|
LOG_MAX_SIZE=10m
|
|
LOG_MAX_FILE=3
|
|
LOG_LABELS=environment=production
|
|
|
|
# PHP Production Settings
|
|
PHP_USER=www-data:www-data
|
|
PHP_IDE_CONFIG=""
|
|
XDEBUG_MODE=off
|
|
COMPOSER_INSTALL_FLAGS="--no-dev --optimize-autoloader --classmap-authoritative"
|
|
|
|
# Resource Limits (Production)
|
|
WEB_MEMORY_LIMIT=256M
|
|
WEB_CPU_LIMIT=0.5
|
|
WEB_MEMORY_RESERVATION=128M
|
|
WEB_CPU_RESERVATION=0.25
|
|
|
|
PHP_MEMORY_LIMIT=512M
|
|
PHP_CPU_LIMIT=1.0
|
|
PHP_MEMORY_RESERVATION=256M
|
|
PHP_CPU_RESERVATION=0.5
|
|
|
|
DB_MEMORY_LIMIT=1G
|
|
DB_CPU_LIMIT=1.0
|
|
DB_MEMORY_RESERVATION=512M
|
|
DB_CPU_RESERVATION=0.5
|
|
|
|
REDIS_MEMORY_LIMIT=256M
|
|
REDIS_CPU_LIMIT=0.5
|
|
REDIS_MEMORY_RESERVATION=128M
|
|
REDIS_CPU_RESERVATION=0.25
|
|
|
|
# Network Security (Production)
|
|
NETWORK_BACKEND_INTERNAL=true
|
|
NETWORK_CACHE_INTERNAL=true
|
|
|
|
# Production-specific configs
|
|
REDIS_CONFIG_PATH=./docker/redis/redis-secure.conf
|
|
# PostgreSQL doesn't need custom config path
|
|
HEALTHCHECK_START_PERIOD=30s
|
|
|
|
# Production ports (only HTTPS)
|
|
APP_PORT=
|
|
|
|
# External APIs (Production)
|
|
SHOPIFY_WEBHOOK_SECRET=SECURE_WEBHOOK_SECRET_HERE
|
|
RAPIDMAIL_USERNAME=production_username
|
|
RAPIDMAIL_PASSWORD=SECURE_API_PASSWORD_HERE
|
|
RAPIDMAIL_TEST_MODE=false
|
|
|
|
# SSL/TLS Configuration
|
|
APP_SSL_PORT=443
|
|
FORCE_HTTPS=true
|
|
|
|
# Docker Production Settings
|
|
COMPOSE_PROJECT_NAME=framework-production
|
|
UID=1000
|
|
GID=1000
|
|
|
|
# Performance Settings
|
|
OPCACHE_ENABLED=true
|
|
REDIS_HOST=production-redis-host
|
|
REDIS_PORT=6379
|
|
REDIS_PASSWORD=SECURE_REDIS_PASSWORD_HERE
|
|
|
|
# Analytics Configuration (Production)
|
|
ANALYTICS_ENABLED=true
|
|
ANALYTICS_TRACK_PAGE_VIEWS=true
|
|
ANALYTICS_TRACK_API_CALLS=true
|
|
ANALYTICS_TRACK_USER_ACTIONS=true
|
|
ANALYTICS_TRACK_ERRORS=true
|
|
# Disable debug performance tracking
|
|
ANALYTICS_TRACK_PERFORMANCE=false
|
|
|
|
# Session Fingerprinting (Production - Stricter)
|
|
SESSION_FINGERPRINT_STRICT=true
|
|
SESSION_FINGERPRINT_USER_AGENT=true
|
|
SESSION_FINGERPRINT_ACCEPT_LANGUAGE=true
|
|
SESSION_FINGERPRINT_IP_PREFIX=true
|
|
SESSION_FINGERPRINT_THRESHOLD=0.8
|
|
|
|
# JavaScript Logger Configuration
|
|
VITE_LOG_LEVEL=error
|
|
|
|
# Admin IP Whitelist (comma-separated)
|
|
# Add your office/home IP for production admin access
|
|
ADMIN_ALLOWED_IPS=127.0.0.1,::1
|