OPENMETADATA_CLUSTER_NAME="openmetadata" SERVER_PORT="8585" SERVER_ADMIN_PORT="8586" LOG_LEVEL="INFO" # Migration MIGRATION_LIMIT_PARAM = 1200 # OpenMetadata Server Authentication Configuration AUTHORIZER_CLASS_NAME="org.openmetadata.service.security.DefaultAuthorizer" AUTHORIZER_REQUEST_FILTER="org.openmetadata.service.security.JwtFilter" AUTHORIZER_ADMIN_PRINCIPALS=[admin] AUTHORIZER_ALLOWED_REGISTRATION_DOMAIN=["all"] AUTHORIZER_INGESTION_PRINCIPALS=[ingestion-bot] AUTHORIZER_PRINCIPAL_DOMAIN="openmetadata.org" AUTHORIZER_ENFORCE_PRINCIPAL_DOMAIN="false" AUTHORIZER_ENABLE_SECURE_SOCKET="false" AUTHENTICATION_PROVIDER="basic" CUSTOM_OIDC_AUTHENTICATION_PROVIDER_NAME="" AUTHENTICATION_PUBLIC_KEYS=[http://localhost:8585/api/v1/system/config/jwks] AUTHENTICATION_AUTHORITY="https://accounts.google.com" AUTHENTICATION_CLIENT_ID="" AUTHENTICATION_CALLBACK_URL="" AUTHENTICATION_JWT_PRINCIPAL_CLAIMS=[email,preferred_username,sub] AUTHENTICATION_ENABLE_SELF_SIGNUP="true" # JWT Configuration RSA_PUBLIC_KEY_FILE_PATH="./conf/public_key.der" RSA_PRIVATE_KEY_FILE_PATH="./conf/private_key.der" JWT_ISSUER="open-metadata.org" JWT_KEY_ID="Gb389a-9f76-gdjs-a92j-0242bk94356" # OpenMetadata Server Pipeline Service Client Configuration PIPELINE_SERVICE_CLIENT_ENDPOINT="http://ingestion:8080" SERVER_HOST_API_URL="http://openmetadata-server:8585/api" PIPELINE_SERVICE_CLIENT_VERIFY_SSL="no-ssl" PIPELINE_SERVICE_CLIENT_SSL_CERT_PATH="" #Database configuration for postgresql DB_DRIVER_CLASS="org.postgresql.Driver" DB_SCHEME="postgresql" DB_USE_SSL="false" DB_USER="openmetadata_user" DB_USER_PASSWORD="openmetadata_password" DB_HOST="postgresql" DB_PORT="5432" OM_DATABASE="openmetadata_db" # ElasticSearch Configurations ELASTICSEARCH_HOST= "elasticsearch" ELASTICSEARCH_PORT="9200" ELASTICSEARCH_SCHEME="http" ELASTICSEARCH_USER="" ELASTICSEARCH_PASSWORD="" SEARCH_TYPE="elasticsearch" ELASTICSEARCH_TRUST_STORE_PATH="" ELASTICSEARCH_TRUST_STORE_PASSWORD="" ELASTICSEARCH_CONNECTION_TIMEOUT_SECS="5" ELASTICSEARCH_SOCKET_TIMEOUT_SECS="60" ELASTICSEARCH_KEEP_ALIVE_TIMEOUT_SECS="600" ELASTICSEARCH_BATCH_SIZE="10" ELASTICSEARCH_INDEX_MAPPING_LANG:="EN" # Event Monitoring configurations EVENT_MONITOR="prometheus" EVENT_MONITOR_BATCH_SIZE="10" EVENT_MONITOR_PATH_PATTERN=["/api/v1/tables/*", "/api/v1/health-check"] EVENT_MONITOR_LATENCY="[]" #PipelineServiceClient Configuration PIPELINE_SERVICE_CLIENT_CLASS_NAME="org.openmetadata.service.clients.pipeline.airflow.AirflowRESTClient" PIPELINE_SERVICE_IP_INFO_ENABLED="false" PIPELINE_SERVICE_CLIENT_HOST_IP="" PIPELINE_SERVICE_CLIENT_SECRETS_MANAGER_LOADER="noop" #Airflow Parameters AIRFLOW_USERNAME="admin" AIRFLOW_PASSWORD="admin" AIRFLOW_TIMEOUT="10" AIRFLOW_TRUST_STORE_PATH="" AIRFLOW_TRUST_STORE_PASSWORD="" FERNET_KEY="jJ/9sz0g0OHxsfxOoSfdFdmk3ysNmPRnH3TUAbz3IHA=" #secretsManagerConfiguration SECRET_MANAGER="noop" OM_SM_REGION="" OM_SM_ACCESS_KEY_ID="" OM_SM_ACCESS_KEY="" #email configuration: OM_EMAIL_ENTITY="OpenMetadata" OM_SUPPORT_URL="https://slack.open-metadata.org" AUTHORIZER_ENABLE_SMTP="false" OPENMETADATA_SERVER_URL="" OPENMETADATA_SMTP_SENDER_MAIL="" SMTP_SERVER_ENDPOINT="" SMTP_SERVER_PORT="" SMTP_SERVER_USERNAME="" SMTP_SERVER_PWD="" SMTP_SERVER_STRATEGY="SMTP_TLS" #changeEventConfig OM_URI= "http://localhost:8585" #extensionConfiguration OM_RESOURCE_PACKAGES="[]" OM_EXTENSIONS="[]" # Heap OPTS Configurations OPENMETADATA_HEAP_OPTS="-Xmx1G -Xms1G" # Application Config CUSTOM_LOGO_URL_PATH="" CUSTOM_MONOGRAM_URL_PATH="" OM_MAX_FAILED_LOGIN_ATTEMPTS=3 OM_LOGIN_ACCESS_BLOCK_TIME=600 OM_JWT_EXPIRY_TIME=3600 # Mask passwords values in UI MASK_PASSWORDS_API="false" #WebConfiguration WEB_CONF_URI_PATH="/api" WEB_CONF_HSTS_ENABLED=false WEB_CONF_HSTS_MAX_AGE="365 days" WEB_CONF_HSTS_INCLUDE_SUBDOMAINS="true" WEB_CONF_HSTS_PRELOAD="true" WEB_CONF_FRAME_OPTION_ENABLED=false WEB_CONF_FRAME_OPTION="SAMEORIGIN" WEB_CONF_FRAME_ORIGIN="" WEB_CONF_CONTENT_TYPE_OPTIONS_ENABLED=false WEB_CONF_XSS_PROTECTION_ENABLED=false WEB_CONF_XSS_PROTECTION_ON=true WEB_CONF_XSS_PROTECTION_BLOCK=true WEB_CONF_XSS_CSP_ENABLED=false WEB_CONF_XSS_CSP_POLICY="default-src 'self'" WEB_CONF_XSS_CSP_REPORT_ONLY_POLICY=""