Tetardtek
8c6777c980
All checks were successful
CI/CD — Build & Deploy / Build & Deploy (push) Successful in 1m2s
- Frontend: PKCE flow (oauth.ts, AuthCallback code exchange, 401 interceptor) - Backend: token introspection via SuperOAuth (no more JWT secret) - User model: superOauthId (unified) replaces oauthId+provider - Cookies httpOnly session + refresh token - POST /auth/refresh endpoint - Gitea CI workflow (vps-runner pattern) - DB_SYNC env var for initial schema creation
22 lines
510 B
Plaintext
22 lines
510 B
Plaintext
PORT=4000
|
|
NODE_ENV=development
|
|
|
|
# PostgreSQL
|
|
DATABASE_URL=postgresql://tetardpg:password@localhost:5432/tetardpg
|
|
|
|
# Redis
|
|
REDIS_URL=redis://localhost:6379
|
|
|
|
# Frontend CORS (virgule-séparé pour multi-origin)
|
|
FRONTEND_URL=http://localhost:5173
|
|
|
|
# SuperOAuth — service externe d'authentification (introspection, pas de secret JWT)
|
|
SUPER_OAUTH_URL=http://localhost:3000
|
|
|
|
# Cookie signing
|
|
COOKIE_SECRET=
|
|
|
|
# Twitch EventSub webhook
|
|
TWITCH_WEBHOOK_SECRET=<secret EventSub Twitch>
|
|
TWITCH_CLIENT_ID=<app client id>
|