Configuration
The following configuration options exist can be passed either via .env file (docker-compose) or values.yaml (helm chart) to the installation.
| Value | Description | Example |
|---|---|---|
| MYSQL_ROOT_PASSWORD | A secure password so others cannot access the apps database. | {CXJ[DdZcr9'3_Z~ |
| SECRET_KEY | A random key (used as Django secret key) | ?vVUJjC!5ecK?X6& |
| INITIAL_ADMIN_PASSWORD | The password for the admin user - if not in LDAP-only mode. | 45df¨£sdf¨4dh-.l |
| INITIAL_USER_PASSWORD | The password for the regular user with no admin rights (Username: user) - if not in LDAP-only mode. | A-N=uDE2SwF;t]~D |
| ALLOWED_HOSTS | A list of hosts/domain names that the scheduler will be served on (see Django Allowed Hosts) | localhost,0.0.0.0,127.0.0.1,yourdomain.com |
| SSL_CRT_PATH | Path to the TLS/SSL .crt file - relativ to docker-compose.yml file | ./escvmscheduler-nginx-selfsigned.crt |
| SSL_KEY_PATH | Path to the TLS/SSL .key file - relativ to docker-compose.yml file | escvmscheduler-nginx-selfsigned.key |
Optional - for LDAP integration:
| Value | Description | Example |
|---|---|---|
| LDAP_SERVER_URI | Enabled authentication against an LDAP Server (e.g. AD) | ldap://0.0.0.0:389 |
| LDAP_BASE_DN | The Base DN of the LDAP Server. | "OU=users,DC=example,DC=com" |
| LDAP_GROUP_DN | The Group DN used for the LDAP query. (optional) | "CN=Scheduler-User,OU=ESC-Scheduler,OU=users,DC=example,DC=com" |
| LDAP_SUPERUSER_GROUP_DN | The Group DN used for admin users. (optional) | "CN=Scheduler-Admin,OU=ESC-Scheduler,OU=users,DC=example,DC=com" |
| LDAP_GROUP_TYPE* | The Group DN used for the LDAP query. (optional) Default: "group" (AD Group Type) | group or groupOfUniqueNames |
| LDAP_BIND_DN | The admin's Bind DN used for authentication with LDAP (optional) | "CN=read-only-admin,DC=example,DC=com" |
| LDAP_BIND_PASSWORD | The admin's password used for authentication with LDAP (optional) | readOnlyAdminPassword |
| LDAP_START_TLS | Set this to true to enable StartTLS (optional) | true |
| LDAP_IGNORE_CERT | Set this to true to ignore TLS/LDAPS certificates (optional) | true |
| LDAP_CERTIFICATE_PATH | (optional) Set this to the path where your TLS .pem certificate lies - relativ to docker-compose.yml file⚠️ Only for deployment via docker-compose! | ``./ldapt_cert.pem` |
| LDAP_WITH_LOCAL_AUTH | Enabled the local admin and user users in combination with LDAP | true |