brendan/nanodrop
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

docs: drop JWT_EXPIRY from .env.example, docker-compose, README (family TTL is canonical)

Browse Source
This commit is contained in:
Brendan Chen
2026-05-09 10:29:32 -07:00
parent cbc22dcac4
commit 3b3a56cd94
3 changed files with 2 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
.env.example
View File

@@ -1,7 +1,6 @@
PORT=3000 PORT=3000
HOST=0.0.0.0 HOST=0.0.0.0
JWT_SECRET=change-me-to-a-long-random-secret JWT_SECRET=change-me-to-a-long-random-secret
JWT_EXPIRY=7d
DB_PATH=./data/nanodrop.db DB_PATH=./data/nanodrop.db
UPLOAD_DIR=./data/uploads UPLOAD_DIR=./data/uploads
LOG_FILE=./data/nanodrop.log LOG_FILE=./data/nanodrop.log

3
README.md
View File

@@ -60,7 +60,6 @@ docker compose run --rm register-user --username alice --password secret
| Variable | Default | Description | | Variable | Default | Description |
|---|---|---| |---|---|---|
| `JWT_SECRET` | *(required)* | Secret key for signing JWTs | | `JWT_SECRET` | *(required)* | Secret key for signing JWTs |
| `JWT_EXPIRY` | `7d` | JWT token lifetime |
| `PORT` | `3000` | Port to listen on | | `PORT` | `3000` | Port to listen on |
| `HOST` | `0.0.0.0` | Host to bind | | `HOST` | `0.0.0.0` | Host to bind |
| `BASE_URL` | `http://localhost:3000` | Public base URL (used in share links) | | `BASE_URL` | `http://localhost:3000` | Public base URL (used in share links) |
@@ -71,6 +70,8 @@ docker compose run --rm register-user --username alice --password secret
| `COOKIE_SECURE` | `false` | Set `true` when serving over HTTPS | | `COOKIE_SECURE` | `false` | Set `true` when serving over HTTPS |
| `TRUST_PROXY` | `false` | Set `true` when behind a reverse proxy | | `TRUST_PROXY` | `false` | Set `true` when behind a reverse proxy |
Session lifetime is family-pinned to 30 days with sliding renewal (see `src/constants.ts`). Not configurable per deployment.
### Reverse proxy ### Reverse proxy
Set `TRUST_PROXY=true` when running behind a reverse proxy so Nanodrop sees the real client IP in logs. Set `TRUST_PROXY=true` when running behind a reverse proxy so Nanodrop sees the real client IP in logs.

1
docker-compose.yml
View File

@@ -2,7 +2,6 @@ x-env: &env
PORT: "${PORT:-3000}" PORT: "${PORT:-3000}"
HOST: "${HOST:-0.0.0.0}" HOST: "${HOST:-0.0.0.0}"
JWT_SECRET: "${JWT_SECRET}" JWT_SECRET: "${JWT_SECRET}"
JWT_EXPIRY: "${JWT_EXPIRY:-7d}"
DB_PATH: "${DB_PATH:-./data/nanodrop.db}" DB_PATH: "${DB_PATH:-./data/nanodrop.db}"
UPLOAD_DIR: "${UPLOAD_DIR:-./data/uploads}" UPLOAD_DIR: "${UPLOAD_DIR:-./data/uploads}"
LOG_FILE: "${LOG_FILE:-./data/nanodrop.log}" LOG_FILE: "${LOG_FILE:-./data/nanodrop.log}"