f60b7261b5
- Backend: Azure AD JWKS validator with 24h cache, new POST /api/v1/auth/sso/login endpoint, sso_login() in AuthService with auto-provisioning, password_hash made nullable, auth_provider column added, Alembic migration c1d2e3f4a5b6 - Frontend: @azure/msal-browser, msal.ts config singleton, ssoLogin() API function, login page updated with SSO button and redirect callback handling - Deploy: frontend Dockerfile and docker-compose.prod.yml updated to bake Azure AD vars into the image at build time; deploy.sh validates SSO config on init/deploy Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
24 lines
481 B
Text
24 lines
481 B
Text
# Database
|
|
DATABASE_URL=postgresql+asyncpg://transcreation:transcreation@db:5432/transcreation
|
|
|
|
# Redis
|
|
REDIS_URL=redis://redis:6379/0
|
|
|
|
# Anthropic
|
|
ANTHROPIC_API_KEY=sk-ant-REPLACE_ME
|
|
|
|
# Auth
|
|
JWT_SECRET_KEY=CHANGE_ME_TO_A_RANDOM_SECRET
|
|
JWT_ALGORITHM=HS256
|
|
JWT_EXPIRY_HOURS=8
|
|
|
|
# Storage
|
|
STORAGE_ROOT=/storage
|
|
|
|
# LLM
|
|
LLM_MODEL=claude-sonnet-4-6
|
|
|
|
# Azure AD SSO (optional — set AZURE_AD_SSO_ENABLED=true to enable)
|
|
AZURE_AD_TENANT_ID=
|
|
AZURE_AD_CLIENT_ID=
|
|
AZURE_AD_SSO_ENABLED=false
|