193 lines
4.7 KiB
Plaintext
193 lines
4.7 KiB
Plaintext
|
# KaMiXiTong 生产环境配置模板
|
|||
|
|
# 复制此文件为 .env 并填入实际值
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 🔐 必需的安全配置(必须设置)
|
|||
|
|
# ==========================================
|
|||
|
|
|
|||
|
|
# 应用密钥(32位以上随机字符串)
|
|||
|
|
SECRET_KEY=your-super-secret-key-change-this-in-production-min-32-chars
|
|||
|
|
|
|||
|
|
# 认证密钥(32位以上随机字符串)
|
|||
|
|
AUTH_SECRET_KEY=your-auth-secret-key-change-this-in-production-min-32-chars
|
|||
|
|
|
|||
|
|
# 数据库连接URL
|
|||
|
|
# MySQL格式: mysql://用户名:密码@主机:端口/数据库名
|
|||
|
|
# PostgreSQL格式: postgresql://用户名:密码@主机:端口/数据库名
|
|||
|
|
DATABASE_URL=mysql://username:password@localhost:3306/kamaxitong
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 🌐 系统配置(推荐设置)
|
|||
|
|
# ==========================================
|
|||
|
|
|
|||
|
|
# 站点名称
|
|||
|
|
SITE_NAME=KaMiXiTong软件授权管理系统
|
|||
|
|
|
|||
|
|
# 管理员邮箱
|
|||
|
|
ADMIN_EMAIL=admin@yourcompany.com
|
|||
|
|
|
|||
|
|
# 前端域名(用于设置Cookie域和跨域配置)
|
|||
|
|
FRONTEND_DOMAIN=your-domain.com
|
|||
|
|
|
|||
|
|
# API版本
|
|||
|
|
API_VERSION=v1
|
|||
|
|
|
|||
|
|
# 默认分页大小
|
|||
|
|
ITEMS_PER_PAGE=20
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 💾 数据库连接池配置(推荐)
|
|||
|
|
# ==========================================
|
|||
|
|
|
|||
|
|
# 连接池大小
|
|||
|
|
DB_POOL_SIZE=20
|
|||
|
|
|
|||
|
|
# 最大溢出连接数
|
|||
|
|
DB_MAX_OVERFLOW=30
|
|||
|
|
|
|||
|
|
# 连接回收时间(秒)
|
|||
|
|
DB_POOL_RECYCLE=3600
|
|||
|
|
|
|||
|
|
# 获取连接超时时间(秒)
|
|||
|
|
DB_POOL_TIMEOUT=30
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 🔴 Redis缓存配置(推荐启用)
|
|||
|
|
# ==========================================
|
|||
|
|
|
|||
|
|
# Redis连接URL
|
|||
|
|
# 格式: redis://用户名:密码@主机:端口/数据库编号
|
|||
|
|
REDIS_URL=redis://localhost:6379/0
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 🔒 会话安全配置(生产环境必须)
|
|||
|
|
# ==========================================
|
|||
|
|
|
|||
|
|
# 会话Cookie安全(生产环境必须为true)
|
|||
|
|
SESSION_COOKIE_SECURE=true
|
|||
|
|
|
|||
|
|
# HTTP Only(防止XSS攻击)
|
|||
|
|
SESSION_COOKIE_HTTPONLY=true
|
|||
|
|
|
|||
|
|
# SameSite策略(Lax或Strict)
|
|||
|
|
SESSION_COOKIE_SAMESITE=Lax
|
|||
|
|
|
|||
|
|
# 会话生命周期(小时)
|
|||
|
|
SESSION_LIFETIME_HOURS=24
|
|||
|
|
|
|||
|
|
# 记住我功能持续时间(天)
|
|||
|
|
REMEMBER_COOKIE_DURATION=30
|
|||
|
|
|
|||
|
|
# 记住我Cookie安全(生产环境必须为true)
|
|||
|
|
REMEMBER_COOKIE_SECURE=true
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 📝 日志配置
|
|||
|
|
# ==========================================
|
|||
|
|
|
|||
|
|
# 日志级别(DEBUG, INFO, WARNING, ERROR, CRITICAL)
|
|||
|
|
LOG_LEVEL=INFO
|
|||
|
|
|
|||
|
|
# 日志文件路径
|
|||
|
|
LOG_FILE=logs/kamaxitong.log
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 📦 文件上传配置
|
|||
|
|
# ==========================================
|
|||
|
|
|
|||
|
|
# 最大上传文件大小(字节,默认50MB)
|
|||
|
|
MAX_CONTENT_LENGTH=52428800
|
|||
|
|
|
|||
|
|
# 上传文件存储目录
|
|||
|
|
UPLOAD_FOLDER=static/uploads
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 💳 支付配置(可选)
|
|||
|
|
# ==========================================
|
|||
|
|
|
|||
|
|
# 是否启用支付功能
|
|||
|
|
PAYMENT_ENABLED=false
|
|||
|
|
|
|||
|
|
# 支付宝配置(如果启用支付)
|
|||
|
|
ALIPAY_APP_ID=
|
|||
|
|
ALIPAY_PRIVATE_KEY=
|
|||
|
|
ALIPAY_PUBLIC_KEY=
|
|||
|
|
ALIPAY_ALIPAY_PUBLIC_KEY=
|
|||
|
|
|
|||
|
|
# 支付宝网关地址
|
|||
|
|
ALIPAY_GATEWAY=https://openapi.alipay.com/gateway.do
|
|||
|
|
|
|||
|
|
# 异步通知URL
|
|||
|
|
ALIPAY_NOTIFY_URL=https://your-domain.com/api/v1/pay/alipay/notify
|
|||
|
|
|
|||
|
|
# 同步返回URL
|
|||
|
|
ALIPAY_RETURN_URL=https://your-domain.com/payment/success
|
|||
|
|
|
|||
|
|
# 支付超时时间(分钟)
|
|||
|
|
ALIPAY_TIMEOUT_EXPRESS=30
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 🏷️ 卡密配置
|
|||
|
|
# ==========================================
|
|||
|
|
|
|||
|
|
# 卡密长度
|
|||
|
|
LICENSE_KEY_LENGTH=32
|
|||
|
|
|
|||
|
|
# 卡密前缀
|
|||
|
|
LICENSE_KEY_PREFIX=
|
|||
|
|
|
|||
|
|
# 试用卡密前缀
|
|||
|
|
TRIAL_PREFIX=TRIAL_
|
|||
|
|
|
|||
|
|
# 最大解绑次数
|
|||
|
|
MAX_UNBIND_TIMES=3
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 🔐 安全策略配置
|
|||
|
|
# ==========================================
|
|||
|
|
|
|||
|
|
# 最大失败尝试次数
|
|||
|
|
MAX_FAILED_ATTEMPTS=5
|
|||
|
|
|
|||
|
|
# 锁定时间(分钟)
|
|||
|
|
LOCKOUT_MINUTES=10
|
|||
|
|
|
|||
|
|
# 离线缓存天数
|
|||
|
|
OFFLINE_CACHE_DAYS=7
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 📊 监控告警配置
|
|||
|
|
# ==========================================
|
|||
|
|
|
|||
|
|
# 监控告警Webhook URL(可选)
|
|||
|
|
MONITORING_WEBHOOK_URL=
|
|||
|
|
|
|||
|
|
# 告警邮箱(可选)
|
|||
|
|
ALERT_EMAIL=
|
|||
|
|
|
|||
|
|
# 启用健康检查
|
|||
|
|
HEALTH_CHECK_ENABLED=true
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 🌍 环境标识
|
|||
|
|
# ==========================================
|
|||
|
|
|
|||
|
|
# 环境类型(development, production, testing)
|
|||
|
|
FLASK_ENV=production
|
|||
|
|
|
|||
|
|
# 调试模式(生产环境必须为false)
|
|||
|
|
DEBUG=false
|
|||
|
|
|
|||
|
|
# ==========================================
|
|||
|
|
# 📋 生成随机密钥的命令
|
|||
|
|
# ==========================================
|
|||
|
|
# 在Linux/Mac上生成32位随机密钥:
|
|||
|
|
# openssl rand -base64 32
|
|||
|
|
# python3 -c "import secrets; print(secrets.token_urlsafe(32))"
|
|||
|
|
#
|
|||
|
|
# 在Windows上:
|
|||
|
|
# python -c "import secrets; print(secrets.token_urlsafe(32))"
|
|||
|
|
#
|
|||
|
|
# 或者访问:https://randomkeygen.com/
|
|||
|
|
# ==========================================
|