xiaoquan
b358dbdab1
- deploy.yml 从 secrets 动态生成 .env,部署后自动删除 - docker-compose.prod.yml 支持全部业务配置注入(短信/微信/支付宝等) - .env.example 只保留 GITEA_RUNNER_TOKEN,其他密钥全部迁移到 Secrets - 更新 deploy/README.md 文档,完整列出 Secrets 配置清单 服务器上不再存储任何密码文件,安全性大幅提升 Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
46 lines
1.0 KiB
Bash
46 lines
1.0 KiB
Bash
# 数据库配置
|
|
DB_HOST=localhost
|
|
DB_PORT=3306
|
|
DB_USERNAME=root
|
|
DB_PASSWORD=xxx
|
|
DB_DATABASE=rent_platform
|
|
|
|
# Redis配置
|
|
REDIS_HOST=localhost
|
|
REDIS_PORT=6379
|
|
REDIS_PASSWORD=
|
|
|
|
# JWT配置
|
|
JWT_SECRET=your_jwt_secret_key_change_in_production
|
|
JWT_EXPIRES_IN=30d
|
|
JWT_REFRESH_EXPIRES_IN=30d
|
|
|
|
# 应用配置
|
|
PORT=3000
|
|
NODE_ENV=development
|
|
|
|
# 短信配置 (阿里云)
|
|
SMS_ACCESS_KEY_ID=
|
|
SMS_ACCESS_KEY_SECRET=
|
|
SMS_SIGN_NAME=
|
|
SMS_TEMPLATE_CODE=
|
|
|
|
# 微信小程序
|
|
WECHAT_APPID=wx6b2d69c900f8f93a
|
|
WECHAT_SECRET=
|
|
|
|
# 微信支付配置
|
|
WECHAT_MCHID=1234567890
|
|
WECHAT_SERIAL_NO=your_certificate_serial_number
|
|
WECHAT_APIV3_KEY=your_32_character_apiv3_key_here
|
|
WECHAT_PRIVATE_KEY="-----BEGIN PRIVATE KEY-----\nYOUR_PRIVATE_KEY_CONTENT_HERE\n-----END PRIVATE KEY-----"
|
|
WECHAT_PAY_NOTIFY_URL=https://yourdomain.com/api/app/payment/wechat/notify
|
|
WECHAT_REFUND_NOTIFY_URL=https://yourdomain.com/api/app/payment/wechat/refund-notify
|
|
|
|
# API基础地址
|
|
API_BASE_URL=https://yourdomain.com
|
|
|
|
# 支付宝小程序
|
|
ALIPAY_APPID=
|
|
ALIPAY_PRIVATE_KEY=
|