Skip to main content

Config Keys

This list is generated from module default configuration files.

KeyDefaultEnvironmentDescriptionSource
docs.exposeDOCS_EXPOSEExpose docs endpoints. Boolean flag (defaults to false when unset).docs.ts
docs.endpointsConfiguration value.docs.ts
docs.endpoints.openapiDocs endpoints toggles.docs.ts
docs.endpoints.openapi.fileDOCS_ENDPOINTS_OPENAPIDocs endpoints toggles.docs.ts
docs.endpoints.openapi.uiDOCS_ENDPOINTS_OPENAPI_UIDocs endpoints toggles.docs.ts
docs.endpoints.scalarDOCS_ENDPOINTS_SCALARDocs endpoints toggles.docs.ts
docs.securityConfiguration value.docs.ts
docs.security.enabledDOCS_SECUREDBoolean flag (defaults to false when unset).docs.ts
docs.security.username"openapi"DOCS_USERNAMEConfiguration value.docs.ts
docs.security.password"openapi"DOCS_PASSWORDConfiguration value.docs.ts
http.listen"127.0.0.1"HTTP_LISTENThe IP address on which we want to listen for connections. If you intend to use a Proxy server in front of the application, we recommend using the default value: "127.0.0.1". Otherwise, set it to "0.0.0.0" or a specific ip. /http.ts
http.port7200HTTP_PORTThe PORT on which we listen for connections. Customize the value for this parameter as needed. /http.ts
http.pathsConfiguration value.http.ts
http.paths.api"/api/v1"API_BASE_PATHBase path for API routes.http.ts
http.paths.docs"/api/docs"DOCS_BASE_PATHBase path for documentation routes.http.ts
http.urlsA map with the default URLs that can be generated by the framework for your application. /http.ts
http.urls.appcomputedHTTP_URLS_APP, HTTP_PORTThe URL that can be used to access the application. This URL is used in various APIs that need to sign/display data about the application. For example, the Documentation API that exposes the route metadata will use this `http.urls.app` parameter to generate valid URL calls. /http.ts
http.urls.uicomputedHTTP_URLS_UI, HTTP_PORTThe URL that can be used to access the frontend application. /http.ts
http.cookieCookie configuration object. Through these parameters, we can limit the scope of our cookies and who can access the data exposed by them. We recommend that you use SECURE cookies when deployed in production. /http.ts
http.cookie.domain"localhost"COOKIE_DOMAINThe domain on which the application exposes the cookies. If your users try to use cookies outside your domain, this parameter will block them from using. We do not recommend the usage of cookies for storing important data. /http.ts
http.cookie.secureCOOKIE_SECUREFlag to mark if a cookie is secure or not. When using HTTPS, you should ALWAYS mark the cookies as secure, even when you are using a Proxy in front. /http.ts
http.cookie.secret""COOKIE_SECRETSecret used to sign cookies. When set, `req.signedCookies` will contain verified, tamper-proof values. Leave empty to disable cookie signing. /http.ts
http.corsCross-Origin Request Sharing Configuration QObject. Through this object we configure the CORS functionality of the HTTP server. Through CORS we can enable or disable access to various methods, headers etc. Also, we can limit the access to our application only for certain IPs. /http.ts
http.cors.origin"*"CORS_ORIGINThe list of IPs for which we enable the access to our application. If you want to enable access to everyone set the value to "*" or leave it as it is. /http.ts
http.cors.methods"GET,HEAD,PUT,PATCH,POST,DELETE"CORS_METHODSThe HTTP Verbs/Methods for which we want to enable CORS. /http.ts
http.cors.allowedHeadersCORS_ALLOWED_HEADERSThe allowed headers in any request protected by CORS. If you want to allow all headers, do not set any value to this parameter. /http.ts
http.cors.exposedHeadersCORS_EXPOSES_HEADERSThe exposed headers in any request protected by CORS. If you want to expose all headers, do not set any value to this parameter. /http.ts
http.cors.credentialsCORS_CREDENTIALSThe allowed credentials in any request protected by CORS. /http.ts
http.cors.maxAgeCORS_MAX_AGESets the maximum age of any CORS request. /http.ts
http.cors.optionsSuccessStatus204CORS_OPTIONS_SUCCESSProvides a status code to use for successful OPTIONS requests, since some legacy browsers (IE11, various SmartTVs) choke on 204. /http.ts
http.cors.preflightContinueCORS_PREFLIGHTPass the CORS preflight response to the next handler. /http.ts
http.sessionConfiguration value.http.ts
http.session.secret"thisIsAS3cret"SESSION_SECRETSince the session should be encoded and not to be easily seen by the user, a secret is required for the session configuration. /http.ts
http.session.store"memory"SESSION_STORESession store driver: `memory`, `file`, or `redis`. Install the required peer dependency for non-memory drivers in `@quik/http-express`: - `file`: requires `session-file-store`. - `redis`: requires `connect-redis` and `ioredis`. /http.ts
http.session.ttlSeconds86400SESSION_TTL_SECONDSSession TTL in seconds forwarded to the store driver. /http.ts
http.session.fileConfiguration value.http.ts
http.session.file.folder".sessions"SESSION_FILE_FOLDERConfiguration value.http.ts
http.session.redisConfiguration value.http.ts
http.session.redis.host"127.0.0.1"SESSION_REDIS_HOSTConfiguration value.http.ts
http.session.redis.port6379SESSION_REDIS_PORTConfiguration value.http.ts
http.session.redis.password""SESSION_REDIS_PASSWORDConfiguration value.http.ts
http.session.redis.db0SESSION_REDIS_DBConfiguration value.http.ts
http.session.redis.keyPrefix"quik:session:"SESSION_REDIS_KEY_PREFIXConfiguration value.http.ts
http.helmetHelmet security middleware options passed directly to `helmet()`. Set a key to `false` to disable that protection, or provide an object to configure it. Defaults disable `contentSecurityPolicy` and `crossOriginEmbedderPolicy` for broad compatibility. /http.ts
http.helmet.contentSecurityPolicyfalse,Configuration value.http.ts
http.helmet.crossOriginEmbedderPolicyfalseConfiguration value.http.ts
http.headersDefault response headers merged into every response. Endpoint-specific headers override these defaults. /http.ts
http.bodyRequest body parsing limits. /http.ts
http.body.jsonLimit"1mb"HTTP_BODY_JSON_LIMITHTTP body parsing limits.http.ts
http.body.urlencodedLimit"1mb"HTTP_BODY_URLENCODED_LIMITHTTP body parsing limits.http.ts
http.body.textLimit"1mb"HTTP_BODY_TEXT_LIMITHTTP body parsing limits.http.ts
http.timeoutsHTTP server timeout configuration. /http.ts
http.timeouts.requestMs0HTTP_REQUEST_TIMEOUT_MSHTTP timeout configuration.http.ts
http.timeouts.headersMs0HTTP_HEADERS_TIMEOUT_MSHTTP timeout configuration.http.ts
http.timeouts.shutdownMs15000HTTP_SHUTDOWN_TIMEOUT_MSHTTP timeout configuration.http.ts
http.staticConfiguration value.http.ts
http.static.serveHTTP_STATIC_CONTENT_SERVEBoolean flag (defaults to false when unset).http.ts
http.static.globalHTTP_STATIC_CONTENT_GLOBALBoolean flag (defaults to false when unset).http.ts
http.static.folder"./public"HTTP_STATIC_CONTENT_FOLDERConfiguration value.http.ts
http.static.path""HTTP_STATIC_CONTENT_PATHConfiguration value.http.ts
http.static.singlePageApplicationConfiguration value.http.ts
http.static.singlePageApplication.enableHTTP_STATIC_SINGLE_PAGE_APPLICATION_ENABLEBoolean flag (defaults to false when unset).http.ts
http.static.singlePageApplication.indexFile"index.html"HTTP_STATIC_SINGLE_PAGE_APPLICATION_INDEX_FILEConfiguration value.http.ts
logs.httpFormat"combined"LOG_HTTP_FORMATThe format used to display the log information for HTTP requests. The supported formats are: "combined", "compact", "dev", "short", "tiny" /logs.ts