veza/veza-stream-server/.env.example

# Veza Stream Server — Environment Template
# Copy to .env and fill with real values. Never commit .env.

# Security (required, min 32 chars)
SECRET_KEY=your-secret-key-minimum-32-characters-long
# v0.9.1 RS256: path to public key (preferred); or JWT_SECRET for HS256
# JWT_PUBLIC_KEY_PATH=/path/to/jwt-public.pem
JWT_SECRET=your-jwt-secret-minimum-32-characters-long

# Internal API key for stream-events callbacks to backend (must match STREAM_SERVER_INTERNAL_API_KEY on backend)
# Backend validates X-Internal-API-Key on POST /api/v1/internal/stream-events
INTERNAL_API_KEY=

# Database
DATABASE_URL=postgres://user:password@host:5432/veza?sslmode=disable

# Message queue (optional)
RABBITMQ_URL=amqp://user:password@host:5672/%2f

# CORS — use specific origins in production, never *
ALLOWED_ORIGINS=https://veza.fr,https://app.veza.fr

# Storage
AUDIO_DIR=audio
STREAM_PORT=18082
chore(incus): add env template, document setup Co-authored-by: Cursor <cursoragent@cursor.com> 2026-02-11 18:49:01 +00:00			`# Veza Stream Server — Environment Template`
			`# Copy to .env and fill with real values. Never commit .env.`

			`# Security (required, min 32 chars)`
			`SECRET_KEY=your-secret-key-minimum-32-characters-long`
v0.9.1 2026-03-05 18:22:31 +00:00			`# v0.9.1 RS256: path to public key (preferred); or JWT_SECRET for HS256`
			`# JWT_PUBLIC_KEY_PATH=/path/to/jwt-public.pem`
chore(incus): add env template, document setup Co-authored-by: Cursor <cursoragent@cursor.com> 2026-02-11 18:49:01 +00:00			`JWT_SECRET=your-jwt-secret-minimum-32-characters-long`

chore: consolidate CI, E2E, backend and frontend updates - CI: workflows updates (cd, ci), remove playwright.yml - E2E: global-setup, auth/playlists/profile specs - Remove playwright-report and test-results artifacts from tracking - Backend: auth, handlers, services, workers, migrations - Frontend: components, features, vite config - Add e2e-results.json to gitignore - Docs: REMEDIATION_PROGRESS, audit archive - Rust: chat-server, stream-server updates 2026-02-17 15:43:21 +00:00			`# Internal API key for stream-events callbacks to backend (must match STREAM_SERVER_INTERNAL_API_KEY on backend)`
			`# Backend validates X-Internal-API-Key on POST /api/v1/internal/stream-events`
fix(security): validate OAuth redirect URL against allowlist, require auth for internal transcode endpoint Co-authored-by: Cursor <cursoragent@cursor.com> 2026-02-11 20:28:26 +00:00			`INTERNAL_API_KEY=`

chore(incus): add env template, document setup Co-authored-by: Cursor <cursoragent@cursor.com> 2026-02-11 18:49:01 +00:00			`# Database`
			`DATABASE_URL=postgres://user:password@host:5432/veza?sslmode=disable`

			`# Message queue (optional)`
			`RABBITMQ_URL=amqp://user:password@host:5672/%2f`

			`# CORS — use specific origins in production, never *`
			`ALLOWED_ORIGINS=https://veza.fr,https://app.veza.fr`

			`# Storage`
			`AUDIO_DIR=audio`
feat: backend, stream server & infra improvements Backend (Go): - Config: CORS, RabbitMQ, rate limit, main config updates - Routes: core, distribution, tracks routing changes - Middleware: rate limiter, endpoint limiter, response cache hardening - Handlers: distribution, search handler fixes - Workers: job worker improvements - Upload validator and logging config additions - New migrations: products, orders, performance indexes - Seed tooling and data Stream Server (Rust): - Audio processing, config, routes, simple stream server updates - Dockerfile improvements Infrastructure: - docker-compose.yml updates - nginx-rtmp config changes - Makefile improvements (config, dev, high, infra) - Root package.json and lock file updates - .env.example updates Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> 2026-03-18 10:36:06 +00:00			`STREAM_PORT=18082`