feat: secure KYC storage, Google OAuth, terms gating
This commit is contained in:
arifal
+13
-1
@@ -2,4 +2,16 @@ DATABASE_URL="postgresql://setrip_user:setrip_password@localhost:5432/setrip_db"
|
||||
NEXTAUTH_SECRET="3GaP/mqi1IYbafyLfyI54ouPRDE0IUK5vFqpKJQM5hg="
|
||||
NEXTAUTH_URL="http://localhost:3000"
|
||||
NEXT_PUBLIC_SITE_URL="https://arifal.imola.ai"
|
||||
ADMIN_EMAILS=admin@setrip.id
|
||||
ADMIN_EMAILS=admin@setrip.id
|
||||
|
||||
# 32-byte key (hex) for AES-256-GCM encryption of KYC data (NIK + KTP/selfie files)
|
||||
# Generate with: node -e "console.log(require('crypto').randomBytes(32).toString('hex'))"
|
||||
KYC_ENCRYPTION_KEY=
|
||||
# 32-byte hex secret used as HMAC pepper for NIK uniqueness lookup
|
||||
# Generate with: node -e "console.log(require('crypto').randomBytes(32).toString('hex'))"
|
||||
KYC_NIK_PEPPER=
|
||||
# Absolute path for private KYC uploads (default: <cwd>/uploads/private)
|
||||
KYC_UPLOAD_DIR=
|
||||
|
||||
GOOGLE_CLIENT_ID="xxxxxxxx"
|
||||
GOOGLE_CLIENT_SECRET="xxxxxxxx"
|
||||
Reference in New Issue
Block a user