Skip to content

Commit 655184b

Browse files
authored
feat: environment variables reference (#1986)
## Checklist I have: - [x] run the content through Grammarly - [ ] linked to sample apps when relevant - [ ] added the meta description for each page in the PR - [ ] minimized the callouts and added only when necessary - [ ] added the `queryString` parameter to the Tabs (if used) - [ ] masked PII in images. For example, login credentials, account details, and more - [ ] added images only when necessary - [ ] deleted the images that are no longer used for the updated pages in the PR - [ ] followed the image file naming convention while renaming or adding new images. (Use lowercase letters, dashes between words, and be as descriptive as possible) - [ ] used the `<figure/>` tag instead of a markdown representation for images - [ ] added the `<figcaption/>` tag to add a caption to the image - [ ] added the `alt` attribute in the `<img/>` tag - [ ] verified and updated the cross-references or created redirect rules for the changed or removed content - [ ] reviewed and applied the style changes for UI formatting. For example, Bold the UI elements(Buttons on screen) used in the doc.
1 parent 4587d41 commit 655184b

3 files changed

Lines changed: 303 additions & 1 deletion

File tree

.github/styles/Vocab/technical/accept.txt

Lines changed: 7 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,6 +20,9 @@ Okta
2020
Ping Identity
2121
application
2222
Application
23+
OAuth 2
24+
OAuth
25+
Domain
2326
Keycloak
2427
PostgreSQL
2528
Task
@@ -30,4 +33,7 @@ ECS
3033
RDS
3134
SAML
3235
Bind
33-
36+
OIDC
37+
Login
38+
Signup
39+
reCAPTCHA
Lines changed: 295 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,295 @@
1+
---
2+
description: Guide on configuring environment variables for Appsmith developers and DevOps engineers.
3+
toc_min_heading_level: 2
4+
toc_max_heading_level: 2
5+
---
6+
7+
# Environment Variables
8+
9+
Environment variables play a crucial role in configuring different aspects of your Appsmith instance, such as authentication, defining logging levels, customizing email settings, and more. This page provides a detailed description of each environment variable along with its purpose and usage.
10+
11+
## Google OAuth
12+
13+
The following environment variables help in configuring OAuth 2.0 authentication with Google, enabling seamless login experiences and allowing Appsmith applications to authenticate users with their existing Google credentials.
14+
15+
#### `APPSMITH_OAUTH2_GOOGLE_CLIENT_ID`
16+
17+
<dd>
18+
This variable stores the Client ID provided by Google during OAuth 2.0 configuration. It's unique to your application, identifying you during the authentication process with Google's servers. Set this variable to the Google OAuth 2.0 Client ID available in your Google Cloud Platform console under the credentials section for your project.
19+
</dd>
20+
21+
#### `APPSMITH_OAUTH2_GOOGLE_CLIENT_SECRET`
22+
23+
<dd>
24+
This variable holds the Client Secret provided by Google for OAuth 2.0. The secret is confidential and used in server-to-server communications. Assign this variable with the Google OAuth 2.0 Client Secret obtained from the Google Cloud Platform console where you configured your OAuth credentials.
25+
</dd>
26+
27+
## GitHub OAuth
28+
29+
The following environment variables help in configuring OAuth 2.0 authentication with GitHub, enabling seamless login experiences and allowing Appsmith applications to authenticate users with their existing GitHub credentials.
30+
31+
#### `APPSMITH_OAUTH2_GITHUB_CLIENT_ID`
32+
33+
<dd>
34+
This variable represents the GitHub OAuth 2.0 Client ID used for authenticating users via GitHub. It's a public identifier for your application. Get your GitHub OAuth 2.0 Client ID by registering your Appsmith instance as a GitHub OAuth application and setting it as the variable's value.
35+
</dd>
36+
37+
#### `APPSMITH_OAUTH2_GITHUB_CLIENT_SECRET`
38+
39+
<dd>
40+
This variable, in conjunction with the Client ID, holds the secret key provided by GitHub OAuth 2.0 to authenticate your application's requests securely. Set this variable with the Client Secret provided by GitHub upon creating your OAuth application. Ensure that you store it securely and do not expose it publicly.
41+
</dd>
42+
43+
## OIDC OAuth
44+
45+
The following environment variables help in configuring OAuth 2.0 authentication with your OIDC provider, enabling seamless login experiences and allowing Appsmith applications to authenticate users with their existing OIDC credentials.
46+
47+
#### `APPSMITH_OAUTH2_OIDC_CLIENT_ID`
48+
49+
<dd>
50+
This variable represents your OIDC OAuth 2.0 Client ID used for authenticating users via the OIDC provider. It's a public identifier for your application. Get your OIDC OAuth 2.0 Client ID by registering your Appsmith instance with your provider and setting it as the variable's value.
51+
</dd>
52+
53+
#### `APPSMITH_OAUTH2_OIDC_CLIENT_SECRET`
54+
55+
<dd>
56+
This variable, in conjunction with the OIDC Client ID, holds the secret key provided by your OIDC provider to authenticate your application's requests securely. Set this variable with the Client Secret provided by your provider upon creating your OIDC application. Ensure that you store it securely and do not expose it publicly.
57+
</dd>
58+
59+
60+
## Form Login and Signup
61+
62+
With Appsmith, you can manage user access and authentication methods in your instance. This helps streamline logins and control who can create accounts on the platform.
63+
64+
#### `APPSMITH_FORM_LOGIN_DISABLED`
65+
66+
<dd>
67+
68+
Set to `true` to turn off the default username and password login. Useful for administrators who want to enforce Single Sign-On (SSO) or limit authentication methods for added security and control.
69+
</dd>
70+
71+
#### `APPSMITH_SIGNUP_DISABLED`
72+
73+
<dd>
74+
75+
Set to `true` to stop new user account creation. Useful when you want to restrict access to your Appsmith instance, allowing only users who have been specifically invited to join.
76+
</dd>
77+
78+
79+
## Client logging
80+
81+
Appsmith provides a way to enhance the log levels of your applications, aiding in monitoring client-side operations and troubleshooting issues. The following environment variable helps define the verbosity level of the logs that Appsmith will generate for client-side activities.
82+
83+
#### `APPSMITH_CLIENT_LOG_LEVEL`
84+
85+
<dd>
86+
This variable determines the level of detail that your client-side logs will capture. Ordered by their severity logging levels can also be adjusted based on the needs of your environment. The available levels are:
87+
88+
* `debug`: Provides informational logs useful for debugging. Set the level to `0` to turn on the `debug` log level.
89+
* `error`: Logs error events that might signify a problem and warrant investigation. Set the level to `1` to turn on the `error` log level.
90+
91+
</dd>
92+
93+
## Email server
94+
95+
Configure your email server in Appsmith to handle application emailing needs. The following environment variables enable you to set up and manage these email-related capabilities for your Appsmith instance.
96+
97+
#### `APPSMITH_EMAIL_ENABLED`
98+
99+
<dd>
100+
101+
Controls whether Appsmith can send emails. Use `true` to enable email capabilities or `false` to disable it.
102+
103+
</dd>
104+
105+
#### `APPSMITH_EMAIL_SERVER_HOST`
106+
107+
<dd>
108+
109+
Specifies the host address of the email server that Appsmith will use to send emails. This is part of the SMTP server configuration necessary for email delivery. Set this variable to the fully qualified domain name or IP address of your email server.
110+
111+
</dd>
112+
113+
#### `APPSMITH_EMAIL_SERVER_PORT`
114+
115+
<dd>
116+
117+
Indicates the port number on which the email server is listening. Different services use different ports; for example, port 25 for non-encrypted transport, 587 for submission with StartTLS, and 465 for SMTPS (deprecated). Select the appropriate port that corresponds to your email server's setup and protocols.
118+
119+
</dd>
120+
121+
#### `APPSMITH_EMAIL_SERVER_USERNAME`
122+
123+
<dd>
124+
125+
Used to authenticate with the email server and allows logging into your SMTP server. Provide the username configured at your email server for sending emails.
126+
127+
</dd>
128+
129+
#### `APPSMITH_EMAIL_SERVER_PASSWORD`
130+
131+
<dd>
132+
133+
The password corresponds to the username for the SMTP server. You must protect the secret as it grants access to your email-sending capabilities. Enter the password associated with your `APPSMITH_EMAIL_SERVER_USERNAME` to authenticate with the email server.
134+
</dd>
135+
136+
#### `APPSMITH_EMAIL_FROM_ADDRESS`
137+
138+
<dd>
139+
140+
This is the email address displayed in the **From** field of the emails sent through Appsmith, essentially representing who the email is from. Set this to a valid email address that recipients of your emails can recognize and associate with.
141+
</dd>
142+
143+
#### `APPSMITH_EMAIL_REPLY_TO_ADDRESS`
144+
145+
<dd>
146+
147+
The **ReplyTo** address is the email displayed in the response field of Appsmith emails, indicating where replies will be sent. Set this to a valid email address that recipients can recognize and associate with the response destination.
148+
149+
</dd>
150+
151+
#### `APPSMITH_SMTP_AUTH_ENABLED`
152+
153+
<dd>
154+
Defines to use of SMTP authentication when sending emails. Set it to `true` to authenticate your emails by the server, reducing the likelihood of them being marked as spam.
155+
</dd>
156+
157+
#### `APPSMITH_TLS_ENABLED`
158+
159+
<dd>
160+
161+
Determines whether the email server connection uses Transport Layer Security (TLS) for enhanced security, protecting email contents and credentials. Set to `true` to enable TLS.
162+
163+
</dd>
164+
165+
166+
## Telemetry
167+
168+
Monitoring the performance of your Appsmith instance is crucial for making informed decisions about feature improvements and resource allocation.
169+
170+
#### `APPSMITH_TELEMETRY_ENABLED`
171+
172+
<dd>
173+
174+
Controls whether Appsmith sends telemetry data to its servers. You may choose to turn off the setting if it conflicts with your privacy policies or preferences. Set to `true` to allow Appsmith to collect anonymous telemetry data or `false` to opt out.
175+
176+
</dd>
177+
178+
## Google reCAPTCHA
179+
Ensure the safety of your applications and data by configuring security settings, including reCAPTCHA, to safeguard your instance against automated threats. Use the environment variables below to manage these settings:
180+
181+
#### `APPSMITH_RECAPTCHA_ENABLED`
182+
183+
<dd>
184+
185+
Enables Google reCAPTCHA verification on your Appsmith instance by embedding a reCAPTCHA in the login page, offering protection against spam and abuse by automated bots. Configure this to true after setting up reCAPTCHA with your domain to activate this feature.
186+
187+
</dd>
188+
189+
#### `APPSMITH_RECAPTCHA_SITE_KEY`
190+
191+
<dd>
192+
Public key provided by Google reCAPTCHA for integrating the service into your web application. Set this variable with the site key you received after registering your Appsmith instance as a site under Google reCAPTCHA.
193+
</dd>
194+
195+
196+
#### `APPSMITH_RECAPTCHA_SECRET_KEY`
197+
198+
<dd>
199+
The secret key provided by Google reCAPTCHA that Google uses to verify the user input during communication between your server and the reCAPTCHA server. The secret is confidential and used in server-side code. Set this variable with the secret key provided by reCAPTCHA.
200+
</dd>
201+
202+
203+
## Database and session management
204+
205+
Appsmith can connect to external providers for MongoDB and Redis. The associated environment variables ensure that Appsmith establishes a connection to external hosting rather than using the embedded MongoDB or Redis servers.
206+
207+
#### `APPSMITH_MONGODB_URI`
208+
209+
<dd>
210+
Appsmith uses this variable to connect to an external MongoDB instance. Set it to the full MongoDB URI supplied by the hosting service. This enables Appsmith to store data in your MongoDB database, ensuring control and ownership of the application data.
211+
</dd>
212+
213+
#### `APPSMITH_MONGODB_USER`
214+
215+
<dd>
216+
Defines the username credential used by Appsmith to establish a connection with an external MongoDB instance. This setting ensures secure access to the designated database.
217+
</dd>
218+
219+
#### `APPSMITH_MONGODB_PASSWORD`
220+
221+
<dd>
222+
223+
Sets the password associated with the MongoDB user specified in `APPSMITH_MONGODB_USER`. This password is crucial for secure authentication, allowing Appsmith to connect and interact with the external MongoDB instance securely.
224+
225+
</dd>
226+
227+
#### `APPSMITH_REDIS_URL`
228+
229+
<dd>
230+
Appsmith uses this variable to establish a link to an external Redis server, which Appsmith uses for session handling and caching operations. This connection string typically includes the Redis host, port number, and optionally, authentication credentials.
231+
</dd>
232+
233+
#### `APPSMITH_ENCRYPTION_PASSWORD`
234+
235+
<dd>
236+
The encryption password is critical for safeguarding your datasource credentials through encryption. Select a strong password that exhibits a good level of entropy to prevent easy decryption.
237+
</dd>
238+
239+
#### `APPSMITH_ENCRYPTION_SALT`
240+
241+
<dd>
242+
The encryption salt contributes to the security strategy by adding a layer of complexity during the encryption process. This long, unique string enhances encryption strength, making it more resistant to attacks such as brute-force attempts.
243+
</dd>
244+
245+
## Custom Domain
246+
247+
If you prefer to host your Appsmith instance on a personalized domain, you can do so by setting up a custom domain. Appsmith also provisions an SSL certificate through Let’s Encrypt, securing your application with HTTPS.
248+
249+
#### `APPSMITH_CUSTOM_DOMAIN`
250+
251+
<dd>
252+
Set this variable with your custom domain to access Appsmith.
253+
</dd>
254+
255+
## Supervisord
256+
257+
Access the Supervisord web interface seamlessly through Appsmith by setting login credentials using environment variables. Securely control your background processes, ensuring reliable application management.
258+
259+
#### `APPSMITH_SUPERVISOR_USER`
260+
261+
<dd>
262+
Specifies the username for authentication within Supervisord. Appsmith uses this credential to interact with Supervisord, facilitating the management and monitoring of background processes and tasks.
263+
264+
</dd>
265+
266+
#### `APPSMITH_SUPERVISOR_PASSWORD`
267+
268+
<dd>
269+
270+
Sets the password associated with the Supervisord user specified in `APPSMITH_SUPERVISOR_USER`. This password is essential for secure authentication, enabling Appsmith to manage and control background processes seamlessly through Supervisord.
271+
272+
</dd>
273+
274+
## Schedule automatic backups
275+
276+
In Appsmith, you have the flexibility to automate backups for your self-hosted instance. You can use the cron expression to schedule regular backups.
277+
278+
#### `APPSMITH_BACKUP_CRON_EXPRESSION`
279+
280+
<dd>
281+
282+
Specify a `5-value` cron expression to define the schedule for automatic backups. This allows you to tailor the backup frequency according to your preferences.
283+
284+
</dd>
285+
286+
## Server timeout
287+
288+
Adjust the internal server timeout to optimize performance based on your Appsmith instance's load and expected response times.
289+
290+
#### `APPSMITH_SERVER_TIMEOUT`
291+
292+
<dd>
293+
294+
Specifies the internal Appsmith server timeout in seconds. Defaults to a `60` second timeout. Increase or decrease based on your server's load and expected response times.
295+
</dd>

website/sidebars.js

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -173,6 +173,7 @@ const sidebars = {
173173
},
174174
'getting-started/setup/instance-configuration/http-proxy',
175175
'getting-started/setup/instance-configuration/frame-ancestors',
176+
'getting-started/setup/environment-variables',
176177
],
177178
},
178179
{

0 commit comments

Comments
 (0)