-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.env.example
More file actions
49 lines (36 loc) · 1.48 KB
/
.env.example
File metadata and controls
49 lines (36 loc) · 1.48 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
# SecureLocker Configuration Template
# Copy this file to .env and fill in your secure values
# NEVER commit the .env file to version control!
# Flask Secret Key - Generate a secure random key
# You can generate one with: python -c "import secrets; print(secrets.token_hex(32))"
SECRET_KEY=your-secret-key-here-change-this
# Database Configuration
DATABASE_URI=sqlite:///instance/locker.db
# RSA Private Key Passphrase - Used to encrypt the private key file
# Generate a strong passphrase (at least 32 characters recommended)
RSA_KEY_PASSPHRASE=your-strong-passphrase-here-change-this
# Registration Access Codes
# These control who can register for each role
STUDENT_ACCESS_CODE=STUDENT-KEY-CHANGE-ME
VERIFIER_ACCESS_CODE=TRUSTED-PARTNER-KEY-CHANGE-ME
ADMIN_ACCESS_CODE=SYSADMIN-MASTER-KEY-CHANGE-ME
# Security Settings
# OTP expiration time in seconds (default: 300 = 5 minutes)
OTP_EXPIRATION_SECONDS=300
# Maximum OTP verification attempts before lockout
OTP_MAX_ATTEMPTS=3
# Maximum login attempts before temporary lockout
MAX_LOGIN_ATTEMPTS=5
# Login lockout duration in seconds (default: 900 = 15 minutes)
LOGIN_LOCKOUT_DURATION=900
# File Upload Settings
# Maximum file size in bytes (default: 10MB)
MAX_FILE_SIZE=10485760
# Allowed file extensions (comma-separated)
ALLOWED_EXTENSIONS=pdf,png,jpg,jpeg,doc,docx
# Flask Debug Mode (set to False in production!)
DEBUG=True
# Flask Host (0.0.0.0 allows network access, 127.0.0.1 for local only)
FLASK_HOST=0.0.0.0
# Flask Port
FLASK_PORT=5000