Configuration
Self-hostedThe self-hosted version of the application is configured using environment variables.
Environment Variables
| Environment Variable | Value | Description |
|---|---|---|
| WEBSITES_PORT | 8080 | The port on which the website will run. |
| APPLICATION_HOST_WEB | https://WEBSITE_HOSTNAME | The web application's URL. Used in emails to build a link to the application. |
| SPRING_DATASOURCE_URL | jdbc:postgresql://YOUR_POSTGRES_HOST:5432/postgres | JDBC URL for PostgreSQL database. |
| SPRING_DATASOURCE_USERNAME | Your Postgres Username | The username of the PostgreSQL server. |
| SPRING_DATASOURCE_PASSWORD | Your Postgres Password | The password of the PostgreSQL server. |
| SPRING_MAIL_HOST | Your SMTP host | SMTP server host. |
| SPRING_MAIL_PORT | Your SMTP port | SMTP server port. |
| SPRING_MAIL_USERNAME | Your SMTP username | Login user of the SMTP server. |
| SPRING_MAIL_PASSWORD | Your SMTP password | Login password of the SMTP server. |
| SPRING_MAIL_PROPERTIES_MAIL_SMTP_AUTH | true | Use basic authentication for SMTP. |
| SPRING_MAIL_PROPERTIES_MAIL_SMTP_STARTTLS_ENABLE | true | Ensure that TLS is used. |
| APPLICATION_MAIL_FROM | support@example.com | The sender email address. |
| APPLICATION_SUPERADMINS | A comma-separated list of email addresses for users with access to /admin interface. | |
| APPLICATION_DATACONTRACT_SPECIFICATIONS | dcs,odcs | The data contract specifications you want to enable. |
| APPLICATION_SEARCH_ENABLED | false | Enable or disable the AI search functionality. This requires to configure an AI model and an embedding model in the organization settings. |
| APPLICATION_ACCESSREQUEST_AI_ENABLED | false | Enable or disable the data governance AI check on access requests. This requires to configure an AI model. |
| APPLICATION_COMPROMISEDPASSWORDCHECKER_ENABLED | false | Enable or disable the compromised password checker (using the haveibeenpwned web service) when a user registered with a password. |
Azure Entra ID
If you are using Azure Entra ID (formerly known as Azure Active Directory) for Single Sign-On (SSO), you can use the following environment variables:
| Environment Variable | Value | Description |
|---|---|---|
| SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_AZURE_ISSUER_URI | ssoIssuerUri | The OpenID Connect metadata document URI. |
| SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_CLIENT_ID | ssoClientId | The Application (client) ID. |
| SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_CLIENT_SECRET | ssoClientSecret | The Secret Value. |
| SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_PROVIDER | azure | The OAuth2 provider. |
| SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_AUTHORIZATION_GRANT_TYPE | authorization_code | The authorization grant type. |
| SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_REDIRECT_URI | {baseUrl}/{action}/oauth2/code/{registrationId} | The redirect URI. |
| SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_CLIENT_AUTHENTICATION_METHOD | client_secret_basic | The client authentication method. |
| SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_AZURESSO_SCOPE | openid,profile,email | The OAuth2 scopes. |
| APPLICATION_SSO_AZURE_HOSTS | $WEBSITE_HOSTNAME | The hostnames for SSO. |
If you are using another SSO provider, please contact our support.
Azure AppServer
If you are deploying the application to Azure as App Service, you can use the following environment variables:
| Environment Variable | Value | Description |
|---|---|---|
| WEBSITES_ENABLE_APP_SERVICE_STORAGE | false | Enable or disable App Service storage. |
| DOCKER_REGISTRY_SERVER_URL | ghcr.io | The Registry URL. |
| DOCKER_REGISTRY_SERVER_USERNAME | The provided username | The Registry Username. |
| DOCKER_REGISTRY_SERVER_PASSWORD | The provided password | The Registry Password. |
OpenTelemetry
For environment variables to configure observability, see the Observability page.