obmp-docker/.env.example

# OpenBMP stack configuration — copy to .env and fill in.
#   cp .env.example .env  &&  $EDITOR .env  &&  ./setup.sh
# The real .env is git-ignored and never committed.

# ---------------------------------------------------------------------------
# Core deployment
# ---------------------------------------------------------------------------
# Host path for all persistent data (postgres, kafka, grafana, authelia, ...).
OBMP_DATA_ROOT=/var/openbmp

# IP of this host that routers and external clients connect to
# (Kafka external listener, BMP source, ExaBGP peering).
HOST_IP=changeme

# Public domain fronting Grafana / Authelia / portal (TLS terminates upstream).
OBMP_DOMAIN=changeme.example.com

# Authelia session-cookie domain — the parent domain of OBMP_DOMAIN so the
# cookie is valid across subpaths/subdomains.
OBMP_COOKIE_DOMAIN=example.com

# ---------------------------------------------------------------------------
# ExaBGP route injector (test profile)
# ---------------------------------------------------------------------------
EXABGP_LOCAL_IP=changeme
EXABGP_LOCAL_AS=65100
EXABGP_API_PORT=5050
# Semicolon-separated peer list, each entry "ip:peer_as:description".
EXABGP_PEERS=10.100.0.100:65020:CML-R9K-CORE-01;10.100.0.200:65020:CML-R9K-CORE-02

# ---------------------------------------------------------------------------
# CML lab API + IOS-XR NETCONF (used by cml/ automation scripts)
# ---------------------------------------------------------------------------
PROX-CML_URL=http://changeme
PROX-CML_USERNAME=changeme
PROX-CML_PASSWORD=changeme

# Default IOS-XR NETCONF credentials, plus the admin-tier override for routers
# that use a separate account.
IOSXR_NETCONF_USER=changeme
IOSXR_NETCONF_PASS=changeme
IOSXR_NETCONF_ADMIN_USER=changeme
IOSXR_NETCONF_ADMIN_PASS=changeme

# ---------------------------------------------------------------------------
# Integrations
# ---------------------------------------------------------------------------
GITEA_API_KEY=changeme

# ---------------------------------------------------------------------------
# Authelia secrets — leave BLANK; setup.sh generates them with openssl on a
# fresh host and appends them here. Existing values are never overwritten.
# ---------------------------------------------------------------------------
AUTHELIA_SESSION_SECRET=
AUTHELIA_JWT_SECRET=
AUTHELIA_STORAGE_ENCRYPTION_KEY=
Add Compose profiles, setup.sh bootstrap, and config templates for portable deployment Pins the Compose project name and splits services into core / test / auth profiles so the BMP collector core can deploy standalone. Adds setup.sh (idempotent bootstrap), .env.example, and repo-resident Authelia config templates so a fresh host deploys without manual steps. Parameterizes hardcoded host IP and domain; points the Grafana InfluxDB datasource at the container name. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> 2026-05-18 19:21:04 -07:00			`# OpenBMP stack configuration — copy to .env and fill in.`
			`# cp .env.example .env && $EDITOR .env && ./setup.sh`
			`# The real .env is git-ignored and never committed.`

			`# ---------------------------------------------------------------------------`
			`# Core deployment`
			`# ---------------------------------------------------------------------------`
			`# Host path for all persistent data (postgres, kafka, grafana, authelia, ...).`
			`OBMP_DATA_ROOT=/var/openbmp`

			`# IP of this host that routers and external clients connect to`
			`# (Kafka external listener, BMP source, ExaBGP peering).`
			`HOST_IP=changeme`

			`# Public domain fronting Grafana / Authelia / portal (TLS terminates upstream).`
			`OBMP_DOMAIN=changeme.example.com`

			`# Authelia session-cookie domain — the parent domain of OBMP_DOMAIN so the`
			`# cookie is valid across subpaths/subdomains.`
			`OBMP_COOKIE_DOMAIN=example.com`

			`# ---------------------------------------------------------------------------`
			`# ExaBGP route injector (test profile)`
			`# ---------------------------------------------------------------------------`
			`EXABGP_LOCAL_IP=changeme`
			`EXABGP_LOCAL_AS=65100`
			`EXABGP_API_PORT=5050`
			`# Semicolon-separated peer list, each entry "ip:peer_as:description".`
			`EXABGP_PEERS=10.100.0.100:65020:CML-R9K-CORE-01;10.100.0.200:65020:CML-R9K-CORE-02`

			`# ---------------------------------------------------------------------------`
			`# CML lab API + IOS-XR NETCONF (used by cml/ automation scripts)`
			`# ---------------------------------------------------------------------------`
			`PROX-CML_URL=http://changeme`
			`PROX-CML_USERNAME=changeme`
			`PROX-CML_PASSWORD=changeme`

			`# Default IOS-XR NETCONF credentials, plus the admin-tier override for routers`
			`# that use a separate account.`
			`IOSXR_NETCONF_USER=changeme`
			`IOSXR_NETCONF_PASS=changeme`
			`IOSXR_NETCONF_ADMIN_USER=changeme`
			`IOSXR_NETCONF_ADMIN_PASS=changeme`

			`# ---------------------------------------------------------------------------`
			`# Integrations`
			`# ---------------------------------------------------------------------------`
			`GITEA_API_KEY=changeme`

			`# ---------------------------------------------------------------------------`
			`# Authelia secrets — leave BLANK; setup.sh generates them with openssl on a`
			`# fresh host and appends them here. Existing values are never overwritten.`
			`# ---------------------------------------------------------------------------`
			`AUTHELIA_SESSION_SECRET=`
			`AUTHELIA_JWT_SECRET=`
			`AUTHELIA_STORAGE_ENCRYPTION_KEY=`