-
Notifications
You must be signed in to change notification settings - Fork 41
/
secrets.yml
254 lines (241 loc) · 12.5 KB
/
secrets.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
# Be sure to restart your server when you modify this file.
# Your secret key is used for verifying the integrity of signed cookies.
# If you change this key, all old signed cookies will become invalid!
# Make sure the secret is at least 30 characters and all random,
# no regular words or you'll be exposed to dictionary attacks.
# You can use `rails secret` to generate a secure secret key.
# Make sure the secrets in this file are kept private
# if you're sharing your code publicly.
default: &default
creators_host: <%= ENV["CREATORS_HOST"] %>
creators_full_host: <%= ENV["CREATORS_FULL_HOST"] %>
admin_ip_whitelist: <%= ENV["ADMIN_IP_WHITELIST"] %>
active_record_encryption_primary_key: <%= ENV["ACTIVE_RECORD_ENCRYPTION_PRIMARY_KEY"] %>
active_record_encryption_key_derivation_salt: <%= ENV["ACTIVE_RECORD_ENCRYPTION_KEY_DERIVATION_SALT"] %>
active_record_encryption_deterministic_key: <%= ENV["ACTIVE_RECORD_ENCRYPTION_DETERMINISTIC_KEY"] %>
# (Optional) Token required to use this app's API.
api_auth_token: <%= ENV["API_AUTH_TOKEN"] %>
# (Optional) Comma separated list of IPs or CIDR strings e.g. ::1,127.0.0.1/16,1.2.3.4/32
api_ip_whitelist: <%= ENV["API_IP_WHITELIST"] %>
# Eyeshade API used for PublisherTokenRequester
api_eyeshade_base_uri: <%= ENV["API_EYESHADE_BASE_URI"] %>
api_legacy_eyeshade_base_uri: <%= ENV["API_LEGACY_EYESHADE_BASE_URI"] %>
api_eyeshade_key: <%= ENV["API_EYESHADE_KEY"] %>
api_legacy_eyeshade_key: <%= ENV["API_LEGACY_EYESHADE_KEY"] %>
# Use offline non-canonical implementation of eyeshade API.
api_eyeshade_offline: <%= ENV["API_EYESHADE_BASE_URI"].blank? %>
attr_encrypted_key: <%= ENV["ATTR_ENCRYPTED_KEY"] %>
attr_encrypted_key_old: <%= ENV["ATTR_ENCRYPTED_KEY_OLD"] %>
bat_ratios_token: <%= ENV["BAT_RATIOS_TOKEN"] %>
bat_ratios_url: <%= ENV["BAT_RATIOS_URL"] %>
# Rewards API
api_rewards_base_uri: <%= ENV["API_REWARDS_BASE_URI"] %>
# Optional. If present protects the app with HTTP Basic Auth.
basic_auth_password: <%= ENV["BASIC_AUTH_PASSWORD"] %>
basic_auth_user: <%= ENV["BASIC_AUTH_USER"] %>
fee_rate: <%= ENV["FEE_RATE"] %>
internal_email: <%= ENV["INTERNAL_EMAIL"] %>
bizdev_email: <%= ENV["BIZDEV_EMAIL"] %>
payout_contact_email: <%= ENV["PAYOUT_CONTACT_EMAIL"] %>
brand_bidding_email: <%= ENV["BRAND_BIDDING_EMAIL"] %>
new_ui_email_whitelist: <%= ENV["NEW_UI_EMAIL_WHITELIST"] %>
proxy_url: <%= ENV["PROXY_URL"] %>
# AWS S3 sttings
s3_rewards_public_domain: <%= ENV["S3_REWARDS_PUBLIC_DOMAIN"] %>
s3_rewards_access_key_id: <%= ENV["S3_REWARDS_ACCESS_KEY_ID"] %>
s3_rewards_secret_access_key: <%= ENV["S3_REWARDS_SECRET_ACCESS_KEY"] %>
s3_rewards_bucket_region: <%= ENV["S3_REWARDS_BUCKET_REGION"] %>
s3_rewards_bucket_name: <%= ENV["S3_REWARDS_BUCKET_NAME"] %>
# (Albert Wang): Separate bucket, info is behind 2 different CDN providers, which gives better privacy
s3_rewards2_public_domain: <%= ENV["S3_REWARDS2_PUBLIC_DOMAIN"] %>
s3_rewards2_access_key_id: <%= ENV["S3_REWARDS2_ACCESS_KEY_ID"] %>
s3_rewards2_secret_access_key: <%= ENV["S3_REWARDS2_SECRET_ACCESS_KEY"] %>
s3_rewards2_bucket_region: <%= ENV["S3_REWARDS2_BUCKET_REGION"] %>
s3_rewards2_bucket_name: <%= ENV["S3_REWARDS2_BUCKET_NAME"] %>
#SMTP Mailer settings
smtp_server_port: <%= ENV["SENDGRID_SMTP_PORT"] %>
smtp_server_address: <%= ENV["SENDGRID_SMTP_SERVER"] %>
mailer_sender: <%= ENV["MAILER_SENDER"] %>
redis_url: <%= ENV["REDIS_URL"] %>
secret_key_base: <%= ENV["SECRET_KEY_BASE"] %>
support_email: <%= ENV["SUPPORT_EMAIL"] %>
from_email: <%= ENV["FROM_EMAIL"] %>
# e.g. #devops-bot
slack_channel_diagnostic: <%= ENV["SLACK_CHANNEL_DIAGNOSTIC"] %>
slack_webhook_url: <%= ENV["SLACK_WEBHOOK_URL"] %>
# For access to Github API
api_auth_token_github: <%= ENV["API_AUTH_TOKEN_GITHUB"] %>
github_ofac_token: <%= ENV["API_AUTH_TOKEN_GITHUB_OFAC"] %>
# e.g. publishers.brave.com
url_host: <%= ENV["URL_HOST"] %>
uphold_authorization_endpoint: <%= ENV["UPHOLD_AUTHORIZATION_ENDPOINT"] %>
uphold_dashboard_url: <%= ENV["UPHOLD_DASHBOARD_URL"] %>
uphold_client_id: <%= ENV["UPHOLD_CLIENT_ID"] %>
uphold_client_secret: <%= ENV["UPHOLD_CLIENT_SECRET"] %>
uphold_api_uri: <%= ENV["UPHOLD_API_URI"] %>
uphold_scope: <%= ENV["UPHOLD_SCOPE"] %>
# Bitflyer env variables
bitflyer_host: <%= ENV["BITFLYER_HOST"] %>
bitflyer_client_id: <%= ENV["BITFLYER_CLIENT_ID"] %>
bitflyer_client_secret: <%= ENV["BITFLYER_CLIENT_SECRET"] %>
bitflyer_scope: <%= ENV["BITFLYER_SCOPE"] %>
# gemini
gemini_client_id: <%= ENV["GEMINI_CLIENT_ID"] %>
gemini_client_secret: <%= ENV["GEMINI_CLIENT_SECRET"] %>
# Use offline mode of publisher host inspector
host_inspector_offline: <%= ENV["HOST_INSPECTOR_OFFLINE"] %>
terms_of_service_url: <%= ENV["TERMS_OF_SERVICE_URL"] %>
google_client_id: <%= ENV["GOOGLE_CLIENT_ID"] %>
google_client_secret: <%= ENV["GOOGLE_CLIENT_SECRET"] %>
twitch_client_id: <%= ENV["TWITCH_CLIENT_ID"] %>
twitch_client_secret: <%= ENV["TWITCH_CLIENT_SECRET"] %>
twitter_client_id: <%= ENV["TWITTER_CLIENT_ID"] %>
twitter_client_secret: <%= ENV["TWITTER_CLIENT_SECRET"] %>
api_twitch_base_uri: <%= ENV["API_TWITCH_BASE_URI"] %>
youtube_api_key: <%= ENV["YOUTUBE_API_KEY"] %>
vimeo_client_id: <%= ENV["VIMEO_CLIENT_ID"] %>
vimeo_client_secret: <%= ENV["VIMEO_CLIENT_SECRET"] %>
vimeo_redirect_uri: <%= ENV["VIMEO_REDIRECT_URI"] %>
reddit_client_id: <%= ENV["REDDIT_CLIENT_ID"] %>
reddit_client_secret: <%= ENV["REDDIT_CLIENT_SECRET"] %>
reddit_redirect_uri: <%= ENV["REDDIT_REDIRECT_URI"] %>
github_client_id: <%= ENV["GITHUB_CLIENT_ID"] %>
github_client_secret: <%= ENV["GITHUB_CLIENT_SECRET"] %>
# Social media links
bat_website_url: <%= ENV["BAT_WEBSITE_URL"] %>
bat_twitter_url: <%= ENV["BAT_TWITTER_URL"] %>
bat_reddit_url: <%= ENV["BAT_REDDIT_URL"] %>
brave_website_url: <%= ENV["BRAVE_WEBSITE_URL"] %>
log_api_requests: <%= ENV["LOG_API_REQUESTS"] %>
log_verbose: <%= ENV["LOG_VERBOSE"] %>
default_api_page_size: <%= ENV["DEFAULT_API_PAGE_SIZE"] %>
api_promo_base_uri: <%= ENV["API_PROMO_BASE_URI"] %>
api_promo_key: <%= ENV["API_PROMO_KEY"] %>
payment_service_uri: <%= ENV["PAYMENT_SERVICE_URI"] || "http://localhost:3335/" %>
payment_service_key: <%= ENV["PAYMENT_SERVICE_KEY"] || "Bearer foobarfoobar" %>
peer_to_peer_cap: <%= ENV["PEER_TO_PEER_CAP"] || 1000 %>
active_promo_id: <%= ENV["ACTIVE_PROMO_ID"] %>
base_referral_url: <%= ENV["BASE_REFERRAL_URL"] %>
max_site_age: <%= ENV["MAX_SITE_AGE"] %> # Maximimum age in weeks of sites enqueued for verification
should_send_notifications: <%= ENV["SHOULD_SEND_NOTIFICATIONS"] %> # Enables eyeshade notifications
# Sendgrid
sendgrid_api_key: <%= ENV["SENDGRID_API_KEY"] %>
sendgrid_api_offline: <%= ENV["SENDGRID_API_KEY"].blank? %>
sendgrid_marketing_list_id: <%= ENV["SENDGRID_MARKETING_LIST_ID"] %>
sendgrid_publishers_list_id: <%= ENV["SENDGRID_PUBLISHERS_LIST_ID"] %>
sendgrid_transactional_asm_group_id: <%= ENV["SENDGRID_TRANSACTIONAL_ASM_GROUP_ID"] %>
# Hide FAQ links
hide_faqs: <%= ENV["HIDE_FAQS"] %>
# Zendesk
zendesk_url: <%= ENV["ZENDESK_URL"] %>
zendesk_username: <%= ENV["ZENDESK_USERNAME"] %>
zendesk_access_token: <%= ENV["ZENDESK_ACCESS_TOKEN"] %>
zendesk_publisher_group_id: <%= ENV["ZENDESK_PUBLISHER_GROUP_ID"] %>
zendesk_admin_email: <%= ENV["ZENDESK_ADMIN_EMAIL"] %>
development:
<<: *default
active_promo_id: "free-bats-2018q1"
bat_ratios_url: <%= ENV["BAT_RATIOS_URL"] %>
bat_ratios_token: <%= ENV["BAT_RATIOS_TOKEN"] %>
base_referral_url: "brave.com"
internal_email: brave-publishers@localhost.local
support_email: brave-publishers@localhost.local
from_email: Brave Creators Publishers Dev<brave-publishers@localhost.local>
attr_encrypted_key_old: 6f573963590bcd5b32f95d69020ec6de7b318b8f1c04bafde4b766fd15c4a994
attr_encrypted_key: 499a4c51df667b4edfab40c1f8b813b7ed6ce02096d59f23b5dcb095369375f7
secret_key_base: dd7b12788a804315fd75f1ff97fae33310b451c39d83d1d015543d25d0ba034c02fd312e83735f0d0aeaaf70131f26e614629e3c40531b949445b4dfacd3bad3
uphold_authorization_endpoint: <%= ENV["UPHOLD_AUTHORIZATION_ENDPOINT"] || "https://sandbox.uphold.com/authorize/<UPHOLD_CLIENT_ID>?scope=<UPHOLD_SCOPE>&intention=signup&state=<STATE>" %>
uphold_client_id: <%= ENV["UPHOLD_CLIENT_ID"] || "test_client_id" %>
uphold_client_secret: <%= ENV["UPHOLD_CLIENT_SECRET"] || "test_client_secret" %>
uphold_scope: <%= ENV["UPHOLD_SCOPE"] || "cards:read,cards:write,user:read" %>
uphold_api_uri: <%= ENV["UPHOLD_API_URI"] || "https://api-sandbox.uphold.com" %>
uphold_dashboard_url: <%= ENV["UPHOLD_DASHBOARD_URL"] || "https://sandbox.uphold.com/dashboard" %>
paypal_connect_uri: https://sandbox.paypal.com
fee_rate: 0.05
api_rewards_base_uri: "https://api.rewards.brave.com"
# Social media links
bat_medium_url: "https://medium.com/@attentiontoken"
bat_twitter_url: "https://twitter.com/@attentiontoken"
bat_reddit_url: "https://www.reddit.com/r/BATProject/"
bat_rocketchat_url: "https://basicattentiontoken.rocket.chat/"
bat_website_url: "https://basicattentiontoken.org"
brave_website_url: "https://brave.com"
max_site_age: 6
should_send_notifications: true
slack_webhook_url: <%= ENV["SLACK_WEBHOOK_URL"] %>
# these were generated just for dev, not used elsewhere
active_record_encryption_primary_key: C8ovyLSdJETQnmiVU6M5zvzTFoFK5kZu
active_record_encryption_key_derivation_salt: 6jTIgGZnbp8bqrlN1VMG1HRe0GAVSX4i
active_record_encryption_deterministic_key: s4BHU98gkDJPD12v3rCPVWVSbfOuFj0c
test:
<<: *default
creators_host: "http://localhost"
creators_full_host: "http://localhost"
admin_ip_whitelist: "127.0.0.1"
api_promo_base_uri: "" # http://127.0.0.1:8194
active_promo_id: "free-bats-2018q1"
bat_ratios_token: ""
api_auth_token: "fake_api_auth_token"
api_eyeshade_base_uri: http://127.0.0.1:3001
api_eyeshade_offline: true
host_inspector_offline: true
api_eyeshade_key: fakeapikey123
api_twitch_base_uri: "https://api.twitch.tv/helix"
fee_rate: 0.05
twitch_client_id: fakeclientid
internal_email: brave-publishers@localhost.local
support_email: brave-publishers@localhost.local
from_email: Brave Creators Publishers Test<brave-publishers@localhost.local>
attr_encrypted_key: 44c101d4dab61a9aa6f13ebd63ad361ba79567604c6ac8bb68e0874d9cf84f05
secret_key_base: 2a6a0e458f1a3513655583c806f654e0b2be3dac10be16cad9562c089384cb968f30a9774f7ed247e95d48d51f21d69edeab89b95d140a1007bae21621b284f8
uphold_authorization_endpoint: "https://uphold.example.com/authorize/<UPHOLD_CLIENT_ID>?scope=<UPHOLD_SCOPE>&intention=signup&state=<STATE>"
uphold_client_id: test_client_id
uphold_client_secret: test_client_secret
uphold_scope: cards:read,cards:write,user:read
uphold_api_uri: "https://api-sandbox.uphold.com"
uphold_dashboard_url: "https://sandbox.example.com/dashboard"
# gemini
gemini_client_id: test_client_id
gemini_client_secret: test_client_secret
# these were generated just for test, not used elsewhere
active_record_encryption_primary_key: C8ovyLSdJETQnmiVU6M5zvzTFoFK5kZu
active_record_encryption_key_derivation_salt: 6jTIgGZnbp8bqrlN1VMG1HRe0GAVSX4i
active_record_encryption_deterministic_key: s4BHU98gkDJPD12v3rCPVWVSbfOuFj0c
# Social media links
bat_medium_url: "https://medium.com/@attentiontoken"
bat_twitter_url: "https://twitter.com/@attentiontoken"
bat_reddit_url: "https://www.reddit.com/r/BATProject/"
bat_rocketchat_url: "https://basicattentiontoken.rocket.chat/"
bat_website_url: "https://basicattentiontoken.org"
brave_website_url: "https://brave.com"
max_site_age: 6
zendesk_url: https://bravesoftware1543857346.zendesk.com
zendesk_publisher_group_id: 360004379911
should_send_notifications: true
# Sendgrid
# a real api_key is needed for recording new VCR based tests
sendgrid_api_offline: true
sendgrid_api_key: <%= ENV["SENDGRID_API_KEY"] || "fakeapikey" %>
sendgrid_marketing_list_id: 10300648
sendgrid_publishers_list_id: 3986776
slack_webhook_url: false
# Ratios, also needed for VCR tests
bat_ratios_token: <%= ENV["BAT_RATIOS_TOKEN"] %>
bat_ratios_url: <%= ENV["BAT_RATIOS_URL"] %>
# Bitflyer env variables
bitflyer_host: "https://localhost/bitflyertest"
bitflyer_client_id: "client_id_abc123"
bitflyer_client_secret: "client_secret_123abc"
bitflyer_scope: "some_scope"
# AWS for pcdn
s3_rewards_public_domain: "https://TESTDOMAIN.com"
api_rewards_base_uri: "https://api.rewards.brave.com"
#Next JS proxy
next_proxy_url: http://www.example.com
next_proxy_port:
# Do not keep production secrets in the repository,
# instead read values from the environment.
production:
<<: *default
staging:
<<: *default