# You can leave this on "local". If you change it to production most console com

1. # You can leave this on "local". If you change it to production most console commands will ask for extra confirmation.
2. # Never set it to "testing".
3. APP_ENV=production
4.  
5. # Set to true if you want to see debug information in error screens.
6. APP_DEBUG=false
7.  
8. # This should be your email address.
9. # If you use Docker or similar, you can set this variable from a file by using SITE_OWNER_FILE
10. SITE_OWNER=you@personal.io
11.  
12. # The encryption key for your sessions. Keep this very secure.
13. # Change it to a string of exactly 32 chars or use something like `php artisan key:generate` to generate it.
14. # If you use Docker or similar, you can set this variable from a file by using APP_KEY_FILE
15. APP_KEY=7pBjBqpd7fkmppUytestVqMBHDn6test
16.  
17. # Firefly III will launch using this language (for new users and unauthenticated visitors)
18. # For a list of available languages: https://github.com/firefly-iii/firefly-iii/tree/main/resources/lang
19. #
20. # If text is still in English, remember that not everything may have been translated.
21. DEFAULT_LANGUAGE=ru_RU
22.  
23. # The locale defines how numbers are formatted.
24. # by default this value is the same as whatever the language is.
25. DEFAULT_LOCALE=ru_RU
26.  
27. # Change this value to your preferred time zone.
28. # Example: Europe/Amsterdam
29. # For a list of supported time zones, see https://en.wikipedia.org/wiki/List_of_tz_database_time_zones
30. TZ=Europe/Moscow
31.  
32. # TRUSTED_PROXIES is a useful variable when using Docker and/or a reverse proxy.
33. # Set it to ** and reverse proxies work just fine.
34. TRUSTED_PROXIES=**
35.  
36. # The log channel defines where your log entries go to.
37. # Several other options exist. You can use 'single' for one big fat error log (not recommended).
38. # Also available are 'syslog', 'errorlog' and 'stdout' which will log to the system itself.
39. # A rotating log option is 'daily', creates 5 files that (surprise) rotate.
40. # Default setting 'stack' will log to 'daily' and to 'stdout' at the same time.
41.  
42. # - Docker + versions <= 4.8.1.8 and before: use "stdout"
43. # - Docker + versions >  4.8.1.8           : use "docker_out"
44. # - Docker + versions >=  5.1.1            : use "stack"
45. # - For everything else (als not Docker)   : use 'stack'
46.  
47. LOG_CHANNEL=stack
48.  
49. # Log level. You can set this from least severe to most severe:
50. # debug, info, notice, warning, error, critical, alert, emergency
51. # If you set it to debug your logs will grow large, and fast. If you set it to emergency probably
52. # nothing will get logged, ever.
53. APP_LOG_LEVEL=notice
54.  
55. # Database credentials. Make sure the database exists. I recommend a dedicated user for Firefly III
56. # For other database types, please see the FAQ: https://docs.firefly-iii.org/support/faq
57. # If you use Docker or similar, you can set these variables from a file by appending them with _FILE
58. # Use "pgsql" for PostgreSQL
59. # Use "mysql" for MySQL and MariaDB.
60. # Use "sqlite" for SQLite.
61. DB_CONNECTION=mysql
62. DB_HOST=fireflyiiidb
63. DB_PORT=3306
64. DB_DATABASE=firefly
65. DB_USERNAME=firefly
66. DB_PASSWORD=secret_firefly_password
67.  
68. # MySQL supports SSL. You can configure it here.
69. # If you use Docker or similar, you can set these variables from a file by appending them with _FILE
70. MYSQL_USE_SSL=false
71. MYSQL_SSL_VERIFY_SERVER_CERT=true
72. # You need to set at least of these options
73. MYSQL_SSL_CAPATH=/etc/ssl/certs/
74. MYSQL_SSL_CA=
75. MYSQL_SSL_CERT=
76. MYSQL_SSL_KEY=
77. MYSQL_SSL_CIPHER=
78.  
79. # PostgreSQL supports SSL. You can configure it here.
80. # If you use Docker or similar, you can set these variables from a file by appending them with _FILE
81. PGSQL_SSL_MODE=prefer
82. PGSQL_SSL_ROOT_CERT=null
83. PGSQL_SSL_CERT=null
84. PGSQL_SSL_KEY=null
85. PGSQL_SSL_CRL_FILE=null
86.  
87. # If you're looking for performance improvements, you could install memcached.
88. CACHE_DRIVER=file
89. SESSION_DRIVER=file
90.  
91. # If you set either of these to 'redis', you might want to update these settings too
92. # If you use Docker or similar, you can set REDIS_HOST_FILE, REDIS_PASSWORD_FILE or
93. # REDIS_PORT_FILE to set the value from a file instead of from an environment variable
94.  
95. # can be tcp, unix or http
96. REDIS_SCHEME=tcp
97.  
98. # use only when using 'unix' for REDIS_SCHEME. Leave empty otherwise.
99. REDIS_PATH=
100.  
101. # use only when using 'tcp' or 'http' for REDIS_SCHEME. Leave empty otherwise.
102. REDIS_HOST=127.0.0.1
103. REDIS_PORT=6379
104.  
105. REDIS_PASSWORD=null
106. # always use quotes and make sure redis db "0" and "1" exists. Otherwise change accordingly.
107. REDIS_DB="0"
108. REDIS_CACHE_DB="1"
109.  
110. # Cookie settings. Should not be necessary to change these.
111. # If you use Docker or similar, you can set COOKIE_DOMAIN_FILE to set
112. # the value from a file instead of from an environment variable
113. COOKIE_PATH="/"
114. COOKIE_DOMAIN=
115. COOKIE_SECURE=false
116.  
117. # If you want Firefly III to mail you, update these settings
118. # For instructions, see: https://docs.firefly-iii.org/advanced-installation/email
119. # If you use Docker or similar, you can set these variables from a file by appending them with _FILE
120. MAIL_MAILER=log
121. MAIL_HOST=null
122. MAIL_PORT=2525
123. MAIL_FROM=changeme@example.com
124. MAIL_USERNAME=null
125. MAIL_PASSWORD=null
126. MAIL_ENCRYPTION=null
127.  
128. # Other mail drivers:
129. # If you use Docker or similar, you can set these variables from a file by appending them with _FILE
130. MAILGUN_DOMAIN=
131. MAILGUN_SECRET=
132.  
133.  
134. # If you are on EU region in mailgun, use api.eu.mailgun.net, otherwise use api.mailgun.net
135. # If you use Docker or similar, you can set this variable from a file by appending it with _FILE
136. MAILGUN_ENDPOINT=api.mailgun.net
137.  
138. # If you use Docker or similar, you can set these variables from a file by appending them with _FILE
139. MANDRILL_SECRET=
140. SPARKPOST_SECRET=
141.  
142. # Firefly III can send you the following messages
143. SEND_REGISTRATION_MAIL=true
144. SEND_ERROR_MESSAGE=true
145. SEND_LOGIN_NEW_IP_WARNING=true
146.  
147. # These messages contain (sensitive) transaction information:
148. SEND_REPORT_JOURNALS=true
149.  
150. # Set a Mapbox API key here (see mapbox.com) so there might be a map available at various places.
151. # If you use Docker or similar, you can set this variable from a file by appending it with _FILE
152. MAPBOX_API_KEY=
153.  
154. # The map will default to this location:
155. MAP_DEFAULT_LAT=51.983333
156. MAP_DEFAULT_LONG=5.916667
157. MAP_DEFAULT_ZOOM=6
158.  
159. # Firefly III has two options for user authentication. "eloquent" is the default,
160. # and "ldap" for LDAP servers.
161. # For full instructions on these settings please visit:
162. # https://docs.firefly-iii.org/advanced-installation/authentication
163. # If you use Docker or similar, you can set this variable from a file by appending it with _FILE
164. LOGIN_PROVIDER=eloquent
165.  
166. # It's also possible to change the way users are authenticated. You could use Authelia for example.
167. # Authentication via the REMOTE_USER header is supported. Change the value below to "remote_user_guard".
168. #
169. # This will also allow Windows SSO.
170. #
171. # If you do this please read the documentation for instructions and warnings:
172. # https://docs.firefly-iii.org/advanced-installation/authentication
173. #
174. # This function is available in Firefly III v5.3.0 and higher.
175. AUTHENTICATION_GUARD=web
176.  
177. # If the guard is changed, Firefly III uses the 'REMOTE_USER' header as per RFC 3875.
178. # You can also use another header, like AUTH_USER when using Windows SSO.
179. # Some systems use X-Auth headers. In that case, use HTTP_X_AUTH_USERNAME or HTTP_X_AUTH_EMAIL
180. # Depending on your system, REMOTE_USER may need to be changed to HTTP_REMOTE_USER
181. #
182. # If this header is 'unexpectedly empty', check out the documentation.
183. # https://docs.firefly-iii.org/advanced-installation/authentication
184. #
185. AUTHENTICATION_GUARD_HEADER=REMOTE_USER
186.  
187. #
188. # Firefly III uses email addresses as user identifiers. When you're using an external authentication guard
189. # that doesn't do this, Firefly III is incapable of emailing you. Messages sent to "Bill Gates" always fail.
190. #
191. # However, if you set this value, Firefly III will store the value from this header as the user's backup
192. # email address and use it to communicate. So user "Bill Gates" could still have
193. # the email address "[email protected]".
194. #
195. # Example value: AUTHENTICATION_GUARD_EMAIL=HTTP_X_AUTH_EMAIL
196. #
197. AUTHENTICATION_GUARD_EMAIL=
198.  
199.  
200. # It's impossible to log out users who's authentication is handled by an external system.
201. # Enter a custom URL here that will force a logout (your authentication provider can tell you).
202. # Setting this variable only works when AUTHENTICATION_GUARD != web
203. #
204. CUSTOM_LOGOUT_URI=
205.  
206. # LDAP connection configuration
207. # OpenLDAP, FreeIPA or ActiveDirectory
208. # # If you use Docker or similar, you can set this variable from a file by appending it with _FILE
209. ADLDAP_CONNECTION_SCHEME=OpenLDAP
210. ADLDAP_AUTO_CONNECT=true
211.  
212. # LDAP connection settings
213. # You can set the following variables from a file by appending them with _FILE:
214. # ADLDAP_CONTROLLERS, ADLDAP_PORT, ADLDAP_BASEDN
215. ADLDAP_CONTROLLERS=
216. ADLDAP_PORT=389
217. ADLDAP_TIMEOUT=5
218. ADLDAP_BASEDN=""
219. ADLDAP_FOLLOW_REFFERALS=false
220.  
221. # SSL/TLS settings
222. ADLDAP_USE_SSL=false
223. ADLDAP_USE_TLS=false
224. ADLDAP_SSL_CACERTDIR=
225. ADLDAP_SSL_CACERTFILE=
226. ADLDAP_SSL_CERTFILE=
227. ADLDAP_SSL_KEYFILE=
228. ADLDAP_SSL_CIPHER_SUITE=
229. ADLDAP_SSL_REQUIRE_CERT=
230.  
231. # You can set the following variables from a file by appending them with _FILE:
232. ADLDAP_ADMIN_USERNAME=
233. ADLDAP_ADMIN_PASSWORD=
234.  
235. # You can set the following variables from a file by appending them with _FILE:
236. ADLDAP_ACCOUNT_PREFIX=
237. ADLDAP_ACCOUNT_SUFFIX=
238.  
239. # LDAP authentication settings.
240. ADLDAP_PASSWORD_SYNC=false
241. ADLDAP_LOGIN_FALLBACK=false
242.  
243. ADLDAP_DISCOVER_FIELD=distinguishedname
244. ADLDAP_AUTH_FIELD=distinguishedname
245.  
246. # field to sync as local username.
247. # You can set the following variable from a file by appending it with _FILE:
248. ADLDAP_SYNC_FIELD=userprincipalname
249.  
250. # You can disable the X-Frame-Options header if it interferes with tools like
251. # Organizr. This is at your own risk. Applications running in frames run the risk
252. # of leaking information to their parent frame.
253. DISABLE_FRAME_HEADER=false
254.  
255. # You can disable the Content Security Policy header when you're using an ancient browser
256. # or any version of Microsoft Edge / Internet Explorer (which amounts to the same thing really)
257. # This leaves you with the risk of not being able to stop XSS bugs should they ever surface.
258. # This is at your own risk.
259. DISABLE_CSP_HEADER=false
260.  
261. # If you wish to track your own behavior over Firefly III, set valid analytics tracker information here.
262. # Nobody uses this except for me on the demo site. But hey, feel free to use this if you want to.
263. # Do not prepend the TRACKER_URL with http:// or https://
264. # The only tracker supported is Matomo.
265. # You can set the following variables from a file by appending them with _FILE:
266. TRACKER_SITE_ID=
267. TRACKER_URL=
268.  
269. # Firefly III can collect telemetry on how you use Firefly III. This is opt-in.
270. # In order to allow this, change the following variable to true.
271. # To read more about this feature, go to this page: https://docs.firefly-iii.org/support/telemetry
272. SEND_TELEMETRY=false
273.  
274. # You can fine tune the start-up of a Docker container by editing these environment variables.
275. # Use this at your own risk. Disabling certain checks and features may result in lost of inconsistent data.
276. # However if you know what you're doing you can significantly speed up container start times.
277. # Set each value to true to enable, or false to disable.
278.  
279. # Check if the SQLite database exists. Can be skipped if you're not using SQLite.
280. # Won't significantly speed up things.
281. DKR_CHECK_SQLITE=true
282.  
283. # Run database creation and migration commands. Disable this only if you're 100% sure the DB exists
284. # and is up to date.
285. DKR_RUN_MIGRATION=true
286.  
287. # Run database upgrade commands. Disable this only when you're 100% sure your DB is up-to-date
288. # with the latest fixes (outside of migrations!)
289. DKR_RUN_UPGRADE=true
290.  
291. # Verify database integrity. Includes all data checks and verifications.
292. # Disabling this makes Firefly III assume your DB is intact.
293. DKR_RUN_VERIFY=true
294.  
295. # Run database reporting commands. When disabled, Firefly III won't go over your data to report current state.
296. # Disabling this should have no impact on data integrity or safety but it won't warn you of possible issues.
297. DKR_RUN_REPORT=true
298.  
299. # Generate OAuth2 keys.
300. # When disabled, Firefly III won't attempt to generate OAuth2 Passport keys. This won't be an issue, IFF (if and only if)
301. # you had previously generated keys already and they're stored in your database for restoration.
302. DKR_RUN_PASSPORT_INSTALL=true
303.  
304. # Leave the following configuration vars as is.
305. # Unless you like to tinker and know what you're doing.
306. APP_NAME=FireflyIII
307. ADLDAP_CONNECTION=default
308. BROADCAST_DRIVER=log
309. QUEUE_DRIVER=sync
310. CACHE_PREFIX=firefly
311. PUSHER_KEY=
312. PUSHER_SECRET=
313. PUSHER_ID=
314. DEMO_USERNAME=
315. DEMO_PASSWORD=
316. IS_HEROKU=false
317. FIREFLY_III_LAYOUT=v1
318.  
319. #
320. APP_URL=https://finance.personal.io