🔒 SECURITY: Remove .env from history, add .env.example, sanitize README

Made-with: Cursor
2026-03-12 11:13:47 +01:00
parent 774c414f17
commit 4d95823108
3 changed files with 46 additions and 6 deletions
--- a/.env.example
+++ b/.env.example
@@ -0,0 +1,39 @@
+# ====== Environment Configuration Template ======
+# Copy to .env and fill in your values before first boot.
+
+NODE_ENV=production
+
+# Database
+POSTGRES_PASSWORD="your-secure-postgres-password"
+DB_NAME="phoenix"
+DB_HOST="phoenixDB"
+DB_PORT=5432
+DB_USERNAME="postgres"
+PHX_SYSTEM_CONNECTION_POOL_MAX=5
+PHX_WORKER_CONNECTION_POOL_MAX=2
+
+# pgAdmin (uses SUPER_ADMIN_USER_PASSWORD for default password)
+PGADMIN_DEFAULT_EMAIL="admin@yourdomain.com"
+
+# Mail server
+MAIL_SERVER="mail.yourdomain.com"
+MAIL_PORT=465
+MAIL_USERNAME="noreply@yourdomain.com"
+MAIL_PASSWORD="your-mail-password"
+SECURITY_EMAIL_SENDER="'No Reply <no-reply@yourdomain.com>'"
+
+# Phoenix ERP - used only on first boot
+SUPER_ADMIN_USER_PASSWORD=your-secure-password-here
+
+# Redis
+REDIS_PASSWORD="your-secure-redis-password"
+
+# Phoenix system
+PHOENIX_SYSTEM_REPLICAS=1
+PHX_HOST_NAME=
+CREDENTIAL_ENCRYPTION_KEY=your-32-char-encryption-key
+
+# Optional performance tuning
+# PERFORMANCE_STRUCTURED_LOGGING=false
+# PERFORMANCE_WARNING_THRESHOLD=100
+# PERFORMANCE_DETAILED_MEMORY=false