jyapayne/kaboot
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
kaboot/.env.example
Joey Yakimowich-Payne e480ad06df
 Add server security hardening and draft quiz persistence 
Security:
- Add AES-256-GCM encryption for user PII (email, API keys, config)
- Add rate limiting (helmet + express-rate-limit)
- Require auth for file uploads

UX:
- Persist draft quizzes to sessionStorage (survives refresh)
- Add URL-based edit routes (/edit/draft, /edit/:quizId)
- Fix QuizEditor async defaultConfig race condition
- Fix URL param accumulation in Landing
2026-01-15 10:12:05 -07:00

44 lines
1.8 KiB
Text
Raw Blame History

# ==============================================================================
# REQUIRED - Generate with: openssl rand -base64 36 | tr -d '\n'
# ==============================================================================
PG_PASS=
AUTHENTIK_SECRET_KEY=
ENCRYPTION_KEY=
# ==============================================================================
# HOST CONFIGURATION
# Set this to your machine's IP or domain for mobile/network access
# Examples: localhost, 192.168.1.100, kaboot.example.com
# ==============================================================================
KABOOT_HOST=localhost
KABOOT_FRONTEND_PORT=5173
# ==============================================================================
# OPTIONAL - Authentik Database
# ==============================================================================
PG_USER=authentik
PG_DB=authentik
# ==============================================================================
# OPTIONAL - Ports
# ==============================================================================
AUTHENTIK_PORT_HTTP=9000
AUTHENTIK_PORT_HTTPS=9443
KABOOT_BACKEND_PORT=3001
# ==============================================================================
# OPTIONAL - Authentik Settings
# ==============================================================================
AUTHENTIK_ERROR_REPORTING=false
# ==============================================================================
# OPTIONAL - Authentik Bootstrap (for automated setup)
# Generate with: openssl rand -base64 36 | tr -d '\n'
# ==============================================================================
AUTHENTIK_BOOTSTRAP_PASSWORD=
AUTHENTIK_BOOTSTRAP_TOKEN=
# ==============================================================================
# OPTIONAL - Logging
# ==============================================================================
LOG_REQUESTS=false
Reference in a new issue View git blame Copy permalink