Skip to main content

Preparation

There are some things we need to do in preparation to install this service.

Volumes

Persistent Data

This is where the service will store its own application data and ensures we can quickly update the service image.

Ensure your user has permissions to access the folder.

Environment

DB_USER
BASE_URL=https://fider.example.com
DATABASE_URL=postgres://fider:${DB_PASS}@db:5432/fider?sslmode=disable
EMAIL_NOREPLY
EMAIL_SMTP_HOST
EMAIL_SMTP_PORT
EMAIL_SMTP_USERNAME
EMAIL_SMTP_ENABLE_STARTTLS

DB_USER

This is the currentuser timename zonethat formattedwill usingbe used behind the tzscenes to log into the database.

For example: America/Vancouverfider_admin

BASE_URL

This is the numericURL ID ofthat the userservice accountwill onbe Debian.  If you are unsure, open a terminalhosted and run:accessible through.

id
For -u
example:
DATABASE_URL


fider.example.com

id -g
EMAIL_NOREPLY

This is the currentemail timeaddress zonethat formattedwill usingbe attached to email notifications and should not be replied to because the tzinbox database.is not monitored or is non existent. 

For example:  America/Vancouvernoreply@fider.example.com

EMAIL_SMTP_HOST

This is the numeric ID of the user account on Debian.  If you are unsure, open a terminal and run:

id -u
EMAIL_SMTP_PORT

This is the numeric ID of the user account's group on Debian.  If you are unsure, open a terminal and run:

id -g
EMAIL_SMTP_USERNAME

This is the current time zone formatted using the tz database.

For example: America/Vancouver

EMAIL_SMTP_ENABLE_STARTTLS

This is the numeric ID of the user account on Debian.  If you are unsure, open a terminal and run:

id -u


Passwords

Keep these securely stored in a password manager, such as VaultWarden.

DB_PASS

This is the password that will be used for root access to the database.

It is important to use secure, randomly generated password.

You can use a random alphanumeric string from a password manager, or open the terminal and run the command:

tr -dc 'A-Za-z0-9!"#$%&'\''()*+,-./:;<=>?@[\]^_`{|}~' </dev/urandom | head -c 32; echo

This pulls a random string from the 'urandom' device, removes unwanted characters and trim it to an appropriate length.

JWT_SECRET

This is the secret that will be used for validating users who are logged into the service.

It is important to use secure, randomly generated token.

You can use a random alphanumeric string from a password manager, or open the terminal and run the command:

tr -dc 'A-Za-z0-9!' </dev/urandom | head -c 32; echo

This pulls a random string from the 'urandom' device, removes unwanted characters and trim it to an appropriate length.

EMAIL_SMTP_PASSWORD

This is the password for logging into your email account for sending administrative notifications. 

When possible, you should use app passwords.

Back to top