Environment variables
This is the auto-generated reference. Source of truth: ../hivecfm-core/.env.example and ../hivecfm-hub/.env.example. Regenerated by pnpm run sync and on every CI run.
Secrets must never be committed. The .env.example files carry only keys + comments. Get actual values from 1Password / team lead.
Setting these for the first time? → Secrets & environment walks through creating .env, generating local-only secrets with OpenSSL, and pulling real values from 1Password.
Showing 82 of 82
| Default | Comment | |||
|---|---|---|---|---|
| core | Other | — | Oauth credentials for Airtable integration | |
| core | ALERTS | Low CSAT alert threshold (1-5 scale) | ||
| core | ALERTS | — | Alert email recipients (comma-separated) | |
| hub | Ungrouped | API Key for authentication (required) This key is used to authenticate requests to protected endpoints The server will fail to start if this is not set | ||
| core | Other | — | Configure Azure Active Directory Login | |
| core | Other | — | — | |
| core | Other | — | — | |
| core | BASICS | — | API Secret for running cron jobs. (mandatory) You can use: `openssl rand -hex 32` to generate a secure one | |
| core | DATABASE | — | ||
| hub | Ungrouped | Database connection URL (optional). Port must match POSTGRES_PORT when you override it. Default: postgres://postgres:postgres@localhost:5432/test_db?sslmode=disable Format: postgres://username:password@host:port/database?sslmode=disable | ||
| core | Disable Features | Email Verification. If you enable Email Verification you have to setup SMTP-Settings, too. | ||
| core | BASICS | — | You can use: `openssl rand -hex 32` to generate one | |
| core | Other | — | Enterprise License Key | |
| core | GENESYS CLOUD | — | Genesys Cloud OAuth Credentials | |
| core | GENESYS CLOUD | — | — | |
| core | GENESYS CLOUD | Genesys Cloud region (mypurecloud.com, mypurecloud.ie, mypurecloud.de, etc.) | ||
| core | GENESYS CLOUD | — | Webhook signature verification (generate with: openssl rand -hex 32) | |
| core | Other | — | Configure Github Login | |
| core | Other | — | — | |
| core | Other | — | Configure Google Login | |
| core | Other | — | — | |
| core | Other | — | Oauth credentials for Google sheet integration | |
| core | Other | — | — | |
| core | Other | — | — | |
| core | DOCKER PORTS | HiveCFM Core port | ||
| core | Other | — | — | |
| core | Other | — | — | |
| core | Other | Lingo.dev API key for translation generation | ||
| core | BASICS | Set the minimum log level(debug, info, warn, error, fatal) | ||
| hub | Ungrouped | Logging level (optional) Default: info Valid values: debug, info, warn, error | ||
| core | MAIL SETUP | — | ||
| core | MAIL SETUP | — | ||
| hub | Ungrouped | Message publisher: per-event processing timeout in seconds (optional). Default: 10 | ||
| hub | Ungrouped | Message publisher: event channel buffer size (optional). Default: 1024 | ||
| core | METABASE | — | ||
| core | METABASE | — | ||
| core | METABASE | — | Metabase embedding secret key (generate with: openssl rand -hex 32) | |
| core | METABASE | — | ||
| core | S3 STORAGE | — | ||
| core | S3 STORAGE | MinIO credentials (also used for S3_ACCESS_KEY/SECRET_KEY) | ||
| core | BASICS | — | @see: https://next-auth.js.org/configuration/options#nextauth_secret You can use: `openssl rand -hex 32` to generate a secure one | |
| core | BASICS | Required for next-auth. Should be the same as WEBAPP_URL If your pplication uses a custom base path, specify the route to the API endpoint in full, e.g. NEXTAUTH_URL=https://example.com/custom-route/api/auth | ||
| core | Other | — | Oauth credentials for Notion Integration | |
| core | Other | — | — | |
| core | Disable Features | Password Reset. If you enable Password Reset functionality you have to setup SMTP-Settings, too. | ||
| hub | Ungrouped | HTTP server port (optional) Default: 8080 | ||
| core | DATABASE | PostgreSQL password (generate with: openssl rand -hex 16) | ||
| core | Other | — | Display privacy policy, imprint and terms of service links in the footer of signup & public pages. | |
| core | Other | — | — | |
| core | Other | — | Google reCAPTCHA v3 keys | |
| core | Other | The below is used for Next Caching (uses In-Memory from Next Cache if not provided) | ||
| hub | Ungrouped | — | ||
| hub | Ungrouped | River UI basic auth (optional, used when running River UI via docker compose) Defaults: admin / changeme if unset | ||
| core | S3 STORAGE | S3 configuration - auto-configured for MinIO in docker-compose | ||
| core | S3 STORAGE | — | ||
| core | S3 STORAGE | For MinIO (default): http://minio:9000 (internal docker network) For AWS S3: leave empty | ||
| core | S3 STORAGE | Force path style for S3 compatible storage (0 for disabled, 1 for enabled) Set to 1 for MinIO, 0 for AWS S3 | ||
| core | S3 STORAGE | — | ||
| core | S3 STORAGE | — | ||
| hub | Ungrouped | Graceful shutdown timeout in seconds (optional). Default: 30 | ||
| core | Other | — | Oauth credentials for Slack integration | |
| core | Other | — | — | |
| core | MAIL SETUP | — | ||
| core | MAIL SETUP | — | ||
| core | MAIL SETUP | — | ||
| core | MAIL SETUP | Enable SMTP_SECURE_ENABLED for TLS (port 465) | ||
| core | MAIL SETUP | — | ||
| core | Other | — | Stripe Billing Variables | |
| core | Other | — | — | |
| core | SUPERSET | — | ||
| core | SUPERSET | — | ||
| core | SUPERSET | — | Superset secret key (generate with: openssl rand -hex 32) | |
| core | THROTTLING | Maximum surveys per customer per month | ||
| core | THROTTLING | Minimum hours between surveys for same customer | ||
| core | Other | — | — | |
| core | TWILIO SMS | — | Twilio Account Credentials | |
| core | TWILIO SMS | — | — | |
| core | TWILIO SMS | — | Twilio phone number (E.164 format: +1234567890) | |
| core | Other | — | Unsplash API Key | |
| core | BASICS | — | ||
| hub | Ungrouped | Webhook max count (optional) Max total webhooks allowed; creation returns 403 Forbidden when limit reached. Default: 500 | ||
| hub | Ungrouped | Webhook max fan-out per event (optional) Max number of webhook jobs enqueued per event; excess is capped and logged. Default: 500 |
Was this page helpful?