39a12500e3
- default.toml 敏感值改为占位符,强制通过环境变量注入 - 启动时拒绝默认 JWT 密钥和数据库 URL - 移除 super_admin_password 硬编码 fallback - 移除 From<AppError> for AuthError 反向映射,5 处调用点改为显式 map_err - .gitignore 添加 .test_token 和测试产物
27 lines
528 B
TOML
27 lines
528 B
TOML
[server]
|
|
host = "0.0.0.0"
|
|
port = 3000
|
|
|
|
[database]
|
|
url = "__MUST_SET_VIA_ENV__"
|
|
max_connections = 20
|
|
min_connections = 5
|
|
|
|
[redis]
|
|
url = "redis://localhost:6379"
|
|
|
|
[jwt]
|
|
secret = "__MUST_SET_VIA_ENV__"
|
|
access_token_ttl = "15m"
|
|
refresh_token_ttl = "7d"
|
|
|
|
[auth]
|
|
super_admin_password = "__MUST_SET_VIA_ENV__"
|
|
|
|
[log]
|
|
level = "info"
|
|
|
|
[cors]
|
|
# Comma-separated allowed origins. Use "*" for development only.
|
|
allowed_origins = "http://localhost:5173,http://localhost:5174,http://localhost:5175,http://localhost:5176,http://localhost:3000"
|