Environment Variables
Boolean flags default to false when unset.
| Variable | Type | Default | Config Keys | Description | Source |
|---|---|---|---|---|---|
AUTH_AUTHORIZATION_ASSURANCE_LEVEL_FIELD | string | "assuranceLevel" | auth.authorization.fields.assuranceLevel | Configuration value from environment. Config key: `auth.authorization.fields.assuranceLevel`. | auth.ts |
AUTH_AUTHORIZATION_AUTHENTICATION_METHODS_FIELD | string | "authenticationMethods" | auth.authorization.fields.authenticationMethods | Configuration value from environment. Config key: `auth.authorization.fields.authenticationMethods`. | auth.ts |
AUTH_AUTHORIZATION_COMPLETED_FACTORS_FIELD | string | "completedFactors" | auth.authorization.fields.completedFactors | Configuration value from environment. Config key: `auth.authorization.fields.completedFactors`. | auth.ts |
AUTH_CHECK_FIELD | string | "permissions" | auth.authorization.fields.permission | Authentication system configuration object. In this file, you can change various configuration parameters related to the authentication system. / | auth.ts |
JWT_ALGORITHM | string | "HS256" | auth.jwt.algorithm | The signing algorithm used when creating and verifying JWT tokens. Use `RS256` when signing with an RSA private key. / | auth.ts |
JWT_AUDIENCE | string | "dev.quik.land" | auth.jwt.audience | The audience is used by the sign and verify functions to create/validate a JWT Token. In the sign function, the audience is added to the token in order to easily check if the received token was created by your application and was received by the intended audience. / | auth.ts |
JWT_EXPIRE_TIME | string | "1d" | auth.jwt.expireTime | Defines how long a JWT token can be valid. Each JWT token signed by the application, except for the short-lived ones, are valid for this amount of time. / | auth.ts |
JWT_ISSUER | string | "dev.quik.land" | auth.jwt.issuer | The issuer is used by the sign and verify functions to create/validate a JWT Token. In the sign function, the issuer is added to the token in order to easily check if the received token was created by your application. / | auth.ts |
JWT_REMEMBER_ME_TIME | string | "1y" | auth.jwt.rememberMeTime | When the user of the application wants to be remembered for a longer period of time this configuration parameter is used. In order to use this `rememberMeTime` configuration parameter, you must pass the `rememberMe` parameter to the sign method. / | auth.ts |
JWT_SECRET | string | "thisisasecret" | auth.jwt.secret | The secret used to encode the JWT Token when you are signing it. Without this your JWT Token isn't secure. Also, do not share this value publicly as there will be security issues for your application. / | auth.ts |