forked from gazbert/bxbot
-
Notifications
You must be signed in to change notification settings - Fork 0
/
application.properties
91 lines (73 loc) · 3.65 KB
/
application.properties
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
###############################################################################
#
# BX-bot's Spring Boot application config.
#
###############################################################################
# The Spring Boot management port.
# Setting it to -1 disables management endpoints over HTTP(S).
# Locked down to prevent remote access.
management.port=-1
# The Spring Boot management address.
# Locked down to prevent remote access - it only allows access from the local machine if the
# management.port were to be changed.
management.address=127.0.0.1
# Location of BX-bot log4j2 config file.
# Spring Boot seems to need this to initialise logging successfully.
logging.config=./config/log4j2.xml
# Disable JMX - not needed.
spring.jmx.enabled=false
###############################################################################
# REST API configuration
###############################################################################
# Used for signing JWTs
bxbot.restapi.jwt.secret=ChangeMeAndKeepMeSecret!
# Token expires time (in secs)
bxbot.restapi.jwt.expiration=600
# Max allowed clock skew (in secs) when comparing token expiry time
bxbot.restapi.jwt.allowed_clock_skew=60
bxbot.restapi.jwt.issuer=bxbot
bxbot.restapi.jwt.audience=bxbot-ui
# CORS allowed origins. This MUST be locked down to specific host in Production, e.g.
# https://some-host:3000
# For dev environment, we allow any origin.
restapi.cors.allowed_origin=*
# Spring Actuator endpoints that are used by REST API.
management.endpoints.enabled-by-default=false
management.endpoint.restart.enabled=true
management.endpoint.health.enabled=true
management.endpoint.logfile.enabled=true
# We don't expose actuator endpoints directly - they can only be called via the REST API.
management.endpoints.web.exposure.exclude=*
# Lock down management security - we don't expose the management endpoints.
management.security.enabled=true
# Must be set to location of logfile for management.endpoint.logfile to work.
logging.file=./logs/bxbot.log
# Max number of lines from the logfile to be returned by the REST API /runtime/logfile endpoint.
# If the number of lines in the logfile exceeds this limit, the file content will truncated.
bxbot.restapi.maxLogfileLines=1000
# Max size (in bytes) of logfile to be downloaded from the REST API /runtime/logfile/download endpoint.
# If the size of the logfile exceeds this limit, the end of the file will be truncated before download.
bxbot.restapi.maxLogfileDownloadSize=1048576
# Root context for serving Swagger API docs JSON endpoint.
# See: https://springfox.github.io/springfox/docs/snapshot/#customizing-the-swagger-endpoints
# E.g. if set to /api-docs you would access Swagger docs using: http://localhost:8080/api-docs
# NOTE: The Swagger UI is always served at: http://localhost:8080/swagger-ui.html
springfox.documentation.swagger.v2.path=/api-docs
###############################################################################
# TLS Configuration (for securing REST API in Production)
###############################################################################
# The port the Spring Boot container will listen on for incoming HTTP requests.
# Defaults to 8080 if not set.
# Setting it to -1 disables the REST API.
# Should be set to 8443 when TLS enabled in Production environment.
server.port=8080
# Spring Boot profile for REST API.
# Must use https profile in Production environment.
spring.profiles.active=dev
#spring.profiles.active=https
# SSL (TLS) configuration to secure the REST API.
# Must be enabled in Production environment.
#security.require-ssl=true
#server.ssl.key-store=classpath:keystore.p12
#server.ssl.key-store-password=secret
#server.ssl.key-store-type=PKCS12