9ed2cedc98
Complete sign-up pipeline: email registration via Logto Experience API, SMTP email verification, and self-service trial tenant creation. Layer 1 — Logto config: - Bootstrap Phase 8b: SMTP email connector with branded HTML templates - Bootstrap Phase 8c: enable SignInAndRegister (email+password sign-up) - Dockerfile installs official Logto connectors (ensures SMTP available) - SMTP env vars in docker-compose, installer templates, .env.example Layer 2 — Experience API (ui/sign-in/experience-api.ts): - Registration flow: initRegistration → sendVerificationCode → verifyCode → addProfile (password) → identifyUser → submit - Sign-in auto-detects email vs username identifier Layer 3 — Custom sign-in UI (ui/sign-in/SignInPage.tsx): - Three-mode state machine: signIn / register / verifyCode - Reads first_screen=register from URL query params - Toggle links between sign-in and register views Layer 4 — Post-registration onboarding: - OnboardingService: reuses VendorTenantService.createAndProvision(), adds calling user to Logto org as owner, enforces one trial per user - OnboardingController: POST /api/onboarding/tenant (authenticated only) - OnboardingPage.tsx: org name + auto-slug form - LandingRedirect: detects zero orgs → redirects to /onboarding - RegisterPage.tsx: /platform/register initiates OIDC with firstScreen Installers (install.sh + install.ps1): - Both prompt for SMTP config in SaaS mode - CLI args, env var capture, cameleer.conf persistence Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
103 lines
4.0 KiB
Plaintext
103 lines
4.0 KiB
Plaintext
# Cameleer Configuration
|
|
# Copy this file to .env and fill in the values.
|
|
# The installer generates .env automatically — this file is for reference.
|
|
|
|
# ============================================================
|
|
# Compose file assembly (set by installer)
|
|
# ============================================================
|
|
# SaaS: docker-compose.yml:docker-compose.saas.yml
|
|
# Standalone: docker-compose.yml:docker-compose.server.yml
|
|
# Add :docker-compose.tls.yml for custom TLS certificates
|
|
# Add :docker-compose.monitoring.yml for external monitoring network
|
|
COMPOSE_FILE=docker-compose.yml:docker-compose.saas.yml
|
|
|
|
# ============================================================
|
|
# Image version
|
|
# ============================================================
|
|
VERSION=latest
|
|
|
|
# ============================================================
|
|
# Public access
|
|
# ============================================================
|
|
PUBLIC_HOST=localhost
|
|
PUBLIC_PROTOCOL=https
|
|
# Auth domain (Logto). Defaults to PUBLIC_HOST for single-domain setups.
|
|
# Set to a separate subdomain (e.g. auth.cameleer.io) to split auth from the app.
|
|
# AUTH_HOST=localhost
|
|
|
|
# ============================================================
|
|
# Ports
|
|
# ============================================================
|
|
HTTP_PORT=80
|
|
HTTPS_PORT=443
|
|
# Set to 0.0.0.0 to expose Logto admin console externally (default: localhost only)
|
|
# LOGTO_CONSOLE_BIND=0.0.0.0
|
|
LOGTO_CONSOLE_PORT=3002
|
|
|
|
# ============================================================
|
|
# PostgreSQL
|
|
# ============================================================
|
|
POSTGRES_USER=cameleer
|
|
POSTGRES_PASSWORD=CHANGE_ME
|
|
# SaaS: cameleer_saas, Standalone: cameleer
|
|
POSTGRES_DB=cameleer_saas
|
|
|
|
# ============================================================
|
|
# ClickHouse
|
|
# ============================================================
|
|
CLICKHOUSE_PASSWORD=CHANGE_ME
|
|
|
|
# ============================================================
|
|
# Admin credentials (SaaS mode)
|
|
# ============================================================
|
|
SAAS_ADMIN_USER=admin
|
|
SAAS_ADMIN_PASS=CHANGE_ME
|
|
|
|
# ============================================================
|
|
# Admin credentials (standalone mode)
|
|
# ============================================================
|
|
# SERVER_ADMIN_USER=admin
|
|
# SERVER_ADMIN_PASS=CHANGE_ME
|
|
# BOOTSTRAP_TOKEN=CHANGE_ME
|
|
|
|
# ============================================================
|
|
# SMTP (for email verification during registration)
|
|
# ============================================================
|
|
# Required for self-service sign-up. Without SMTP, only admin-created users can sign in.
|
|
SMTP_HOST=
|
|
SMTP_PORT=587
|
|
SMTP_USER=
|
|
SMTP_PASS=
|
|
SMTP_FROM_EMAIL=noreply@cameleer.io
|
|
|
|
# ============================================================
|
|
# TLS
|
|
# ============================================================
|
|
# Set to 1 to reject unauthorized TLS certificates (production)
|
|
NODE_TLS_REJECT=0
|
|
# Custom TLS certificate paths (inside container, set by installer)
|
|
# CERT_FILE=/user-certs/cert.pem
|
|
# KEY_FILE=/user-certs/key.pem
|
|
# CA_FILE=/user-certs/ca.pem
|
|
|
|
# ============================================================
|
|
# Docker
|
|
# ============================================================
|
|
DOCKER_SOCKET=/var/run/docker.sock
|
|
# GID of the docker socket — detected by installer, used for container group_add
|
|
DOCKER_GID=0
|
|
|
|
# ============================================================
|
|
# Provisioning images (SaaS mode only)
|
|
# ============================================================
|
|
# CAMELEER_SAAS_PROVISIONING_SERVERIMAGE=gitea.siegeln.net/cameleer/cameleer-server:latest
|
|
# CAMELEER_SAAS_PROVISIONING_SERVERUIIMAGE=gitea.siegeln.net/cameleer/cameleer-server-ui:latest
|
|
# CAMELEER_SAAS_PROVISIONING_RUNTIMEBASEIMAGE=gitea.siegeln.net/cameleer/cameleer-runtime-base:latest
|
|
|
|
# ============================================================
|
|
# Monitoring (optional)
|
|
# ============================================================
|
|
# External Docker network name for Prometheus scraping.
|
|
# Only needed when docker-compose.monitoring.yml is in COMPOSE_FILE.
|
|
# MONITORING_NETWORK=prometheus
|