Docs
›
Configuration
Configuration
All configuration is done via environment variables. Settings with a default value are optional.
Core
| Variable |
Description |
Default |
DATABASE_URL |
PostgreSQL connection string |
postgres://postgres:postgres@localhost:5432/garden |
SECRET_KEY |
Session cookie encryption key (min 16 chars) |
dev-secret-change-me |
DEBUG |
Enable debug mode |
false |
Authentication
| Variable |
Description |
Default |
ADMIN_PASSWORD |
Password for admin login |
(unset, login disabled unless OAuth configured) |
OAUTH_CLIENT_ID |
OAuth2/OIDC client ID |
(unset) |
OAUTH_CLIENT_SECRET |
OAuth2/OIDC client secret |
(unset) |
OAUTH_ISSUER_URL |
OAuth provider issuer URL |
(unset) |
OAUTH_REDIRECT_URI |
OAuth callback URL |
(unset) |
OAUTH_ALLOWED_GROUP |
Restrict admin access to this group |
(unset, all authenticated users) |
Storage
These can also be configured in Settings in the admin. Environment variables take effect as fallbacks when no database setting exists.
| Variable |
Description |
Default |
S3_BUCKET |
S3-compatible bucket name |
(unset) |
S3_REGION |
S3 region |
(unset) |
S3_ENDPOINT_URL |
Custom S3 endpoint (R2, MinIO) |
(unset) |
S3_ACCESS_KEY_ID |
S3 access key |
(unset) |
S3_SECRET_ACCESS_KEY |
S3 secret key |
(unset) |
S3_PREFIX |
Object key prefix |
(unset) |
S3_PUBLIC_URL |
Public CDN URL for direct media serving |
(unset) |
| Variable |
Description |
Default |
STATELESS |
Reload content and settings from DB on every request |
false |