Configuration
Self-hostedThe self-hosted version of the application is configured using environment variables.
Environment Variables
Environment Variable | Value | Description |
---|---|---|
APPLICATION_HOST_WEB | https://WEBSITE_HOSTNAME | The web application's URL. Used in emails to build a link to the application. |
SPRING_DATASOURCE_URL | jdbc:postgresql://YOUR_POSTGRES_HOST:5432/postgres | JDBC URL for PostgreSQL database. |
SPRING_DATASOURCE_USERNAME | Your Postgres Username | The username of the PostgreSQL server. |
SPRING_DATASOURCE_PASSWORD | Your Postgres Password | The password of the PostgreSQL server. |
SPRING_MAIL_HOST | Your SMTP host | SMTP server host. |
SPRING_MAIL_PORT | Your SMTP port | SMTP server port. |
SPRING_MAIL_USERNAME | Your SMTP username | Login user of the SMTP server. |
SPRING_MAIL_PASSWORD | Your SMTP password | Login password of the SMTP server. |
SPRING_MAIL_PROPERTIES_MAIL_SMTP_AUTH | true | Use basic authentication for SMTP. |
SPRING_MAIL_PROPERTIES_MAIL_SMTP_STARTTLS_ENABLE | true | Ensure that TLS is used. |
APPLICATION_MAIL_FROM | support@example.com | The sender email address. |
APPLICATION_SUPERADMINS | A comma-separated list of email addresses for users with access to /admin interface. | |
APPLICATION_DATACONTRACT_SPECIFICATIONS | dcs,odcs | The data contract specifications you want to enable. |
APPLICATION_SEARCH_ENABLED | false | Enable or disable the AI search functionality. This requires to configure an AI model and an embedding model in the organization settings. |
APPLICATION_ACCESSREQUEST_AI_ENABLED | false | Enable or disable the data governance AI check on access requests. This requires to configure an AI model. |
APPLICATION_COMPROMISEDPASSWORDCHECKER_ENABLED | false | Enable or disable the compromised password checker (using the haveibeenpwned web service) when a user registered with a password. |
Azure Entra ID
If you are using Azure Entra ID (formerly known as Azure Active Directory) for Single Sign-On (SSO), you can use the following environment variables:
Environment Variable | Value | Description |
---|---|---|
SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_AZURE_ISSUER_URI | ssoIssuerUri | The OpenID Connect metadata document URI. |
SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_CLIENT_ID | ssoClientId | The Application (client) ID. |
SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_CLIENT_SECRET | ssoClientSecret | The Secret Value. |
SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_PROVIDER | azure | The OAuth2 provider. |
SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_AUTHORIZATION_GRANT_TYPE | authorization_code | The authorization grant type. |
SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_REDIRECT_URI | {baseUrl}/{action}/oauth2/code/{registrationId} | The redirect URI. |
SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_CLIENT_AUTHENTICATION_METHOD | client_secret_basic | The client authentication method. |
SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_SCOPE | openid,profile,email | The OAuth2 scopes. |
APPLICATION_SSO_AZURE_HOSTS | $WEBSITE_HOSTNAME | The hostnames for SSO. |
If you are using another SSO provider, please contact our support.
Azure App Service
If you are deploying the application to Azure as App Service, you can use the following environment variables:
Environment Variable | Value | Description |
---|---|---|
WEBSITES_PORT | 8080 | The port on which the website will run. |
WEBSITES_ENABLE_APP_SERVICE_STORAGE | false | Enable or disable App Service storage. |
DOCKER_REGISTRY_SERVER_URL | ghcr.io | The Registry URL. |
DOCKER_REGISTRY_SERVER_USERNAME | The provided username | The Registry Username. |
DOCKER_REGISTRY_SERVER_PASSWORD | The provided password | The Registry Password. |
OpenTelemetry
For environment variables to configure observability, see the Observability page.