# ONLYOFFICE Docs Environment Configuration # Copy this file to .env and customize for your deployment # ============================================================================= # REQUIRED SETTINGS # ============================================================================= # JWT Secret Key (REQUIRED) # Generate a strong random string: openssl rand -hex 32 ONLYOFFICE_JWT_SECRET=change-me-to-a-secure-random-string # ============================================================================= # RUNTIPI VARIABLES (auto-populated by Runtipi) # ============================================================================= # App port - change if 8044 is already in use APP_PORT=8044 # App data directory (set by Runtipi) # APP_DATA_DIR=/path/to/runtipi/app-data/onlyoffice-docs # Domain configuration (set by Runtipi) # APP_DOMAIN=onlyoffice-docs.yourdomain.com # LOCAL_DOMAIN=tipi.lan # ============================================================================= # OPTIONAL: JWT SETTINGS # ============================================================================= # Enable JWT authentication (recommended: true) ONLYOFFICE_JWT_ENABLED=true # JWT HTTP header name ONLYOFFICE_JWT_HEADER=Authorization # Allow JWT token in request body ONLYOFFICE_JWT_IN_BODY=false # ============================================================================= # OPTIONAL: STORAGE & INTEGRATION # ============================================================================= # Accept self-signed SSL certificates from storage server # Enable this if using self-signed certs with Nextcloud/ownCloud ONLYOFFICE_USE_UNAUTHORIZED_STORAGE=false # Enable WOPI protocol for Microsoft Office integration ONLYOFFICE_WOPI_ENABLED=false # ============================================================================= # OPTIONAL: EXTERNAL DATABASE (for docker-compose.external-db.yml) # ============================================================================= # PostgreSQL password for external database setup ONLYOFFICE_DB_PASSWORD=onlyoffice # ============================================================================= # OPTIONAL: LETS ENCRYPT (for standalone HTTPS, not needed with Traefik) # ============================================================================= # Domain for Let's Encrypt certificate # LETS_ENCRYPT_DOMAIN=docs.yourdomain.com # Admin email for Let's Encrypt # LETS_ENCRYPT_MAIL=admin@yourdomain.com