mirror of
https://github.com/lobehub/lobe-chat.git
synced 2025-12-20 01:12:52 +08:00
aee5d7144f
Some checks failed
E2E CI / Test Web App (push) Has been cancelled
Release CI / Release (push) Has been cancelled
Test CI / Test package agent-runtime (push) Has been cancelled
Test CI / Test package context-engine (push) Has been cancelled
Test CI / Test package electron-server-ipc (push) Has been cancelled
Test CI / Test package file-loaders (push) Has been cancelled
Test CI / Test package model-runtime (push) Has been cancelled
Test CI / Test package prompts (push) Has been cancelled
Test CI / Test package python-interpreter (push) Has been cancelled
Test CI / Test package utils (push) Has been cancelled
Test CI / Test package web-crawler (push) Has been cancelled
Test CI / Test package model-bank (push) Has been cancelled
Test CI / Test Website (push) Has been cancelled
Test CI / Test Database (push) Has been cancelled
Upstream Sync / Sync latest commits from upstream repo (push) Has been cancelled
* ✨ feat: support DeepSeek Interleaved thinking (#10219) * 🐛 fix: add SSRF protection (#10152) * fix snap --------- Co-authored-by: YuTengjing <ytj2713151713@gmail.com>
306 lines
8.4 KiB
Plaintext
306 lines
8.4 KiB
Plaintext
# add a access code to lock your lobe-chat application, you can set a long password to avoid leaking. If this value contains a comma, it is a password array.
|
|
# ACCESS_CODE=lobe66
|
|
|
|
# Specify your API Key selection method, currently supporting `random` and `turn`.
|
|
# API_KEY_SELECT_MODE=random
|
|
|
|
########################################
|
|
########### Security Settings ###########
|
|
########################################
|
|
|
|
# Control Content Security Policy headers
|
|
# Set to '1' to enable X-Frame-Options and Content-Security-Policy headers
|
|
# Default is '0' (enabled)
|
|
# ENABLED_CSP=1
|
|
|
|
# SSRF Protection Settings
|
|
# Set to '1' to allow connections to private IP addresses (disable SSRF protection)
|
|
# WARNING: Only enable this in trusted environments
|
|
# Default is '0' (SSRF protection enabled)
|
|
# SSRF_ALLOW_PRIVATE_IP_ADDRESS=0
|
|
|
|
# Whitelist of allowed private IP addresses (comma-separated)
|
|
# Only takes effect when SSRF_ALLOW_PRIVATE_IP_ADDRESS is '0'
|
|
# Example: Allow specific internal servers while keeping SSRF protection
|
|
# SSRF_ALLOW_IP_ADDRESS_LIST=192.168.1.100,10.0.0.50
|
|
|
|
########################################
|
|
########## AI Provider Service #########
|
|
########################################
|
|
|
|
### OpenAI ###
|
|
|
|
# you openai api key
|
|
OPENAI_API_KEY=sk-xxxxxxxxx
|
|
|
|
# use a proxy to connect to the OpenAI API
|
|
# OPENAI_PROXY_URL=https://api.openai.com/v1
|
|
|
|
# add your custom model name, multi model separate by comma. for example gpt-3.5-1106,gpt-4-1106
|
|
# OPENAI_MODEL_LIST=gpt-3.5-turbo
|
|
|
|
|
|
### Azure OpenAI ###
|
|
|
|
# you can learn azure OpenAI Service on https://learn.microsoft.com/en-us/azure/ai-services/openai/overview
|
|
# use Azure OpenAI Service by uncomment the following line
|
|
|
|
# The API key you applied for on the Azure OpenAI account page, which can be found in the "Keys and Endpoints" section.
|
|
# AZURE_API_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
# The endpoint you applied for on the Azure OpenAI account page, which can be found in the "Keys and Endpoints" section.
|
|
# AZURE_ENDPOINT=https://docs-test-001.openai.azure.com
|
|
|
|
# Azure's API version, follows the YYYY-MM-DD format
|
|
# AZURE_API_VERSION=2024-10-21
|
|
|
|
|
|
### Anthropic Service ####
|
|
|
|
# ANTHROPIC_API_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
# use a proxy to connect to the Anthropic API
|
|
# ANTHROPIC_PROXY_URL=https://api.anthropic.com
|
|
|
|
|
|
### Google AI ####
|
|
|
|
# GOOGLE_API_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
|
|
### AWS Bedrock ###
|
|
|
|
# AWS_REGION=us-east-1
|
|
# AWS_ACCESS_KEY_ID=xxxxxxxxxxxxxxxxxxx
|
|
# AWS_SECRET_ACCESS_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
|
|
### Ollama AI ####
|
|
|
|
# You can use ollama to get and run LLM locally, learn more about it via https://github.com/ollama/ollama
|
|
|
|
# The local/remote ollama service url
|
|
# OLLAMA_PROXY_URL=http://127.0.0.1:11434
|
|
|
|
# OLLAMA_MODEL_LIST=your_ollama_model_names
|
|
|
|
|
|
### OpenRouter Service ###
|
|
|
|
# OPENROUTER_API_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
# OPENROUTER_MODEL_LIST=model1,model2,model3
|
|
|
|
|
|
### Mistral AI ###
|
|
|
|
# MISTRAL_API_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### Perplexity Service ###
|
|
|
|
# PERPLEXITY_API_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### Groq Service ####
|
|
|
|
# GROQ_API_KEY=gsk_xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
#### 01.AI Service ####
|
|
|
|
# ZEROONE_API_KEY=sk-xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### TogetherAI Service ###
|
|
|
|
# TOGETHERAI_API_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### ZhiPu AI ###
|
|
|
|
# ZHIPU_API_KEY=xxxxxxxxxxxxxxxxxxx.xxxxxxxxxxxxx
|
|
|
|
### Moonshot AI ####
|
|
|
|
# MOONSHOT_API_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### Minimax AI ####
|
|
|
|
# MINIMAX_API_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### DeepSeek AI ####
|
|
|
|
# DEEPSEEK_PROXY_URL=https://api.deepseek.com/v1
|
|
# DEEPSEEK_API_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### Qiniu AI ####
|
|
|
|
# QINIU_PROXY_URL=https://api.qnaigc.com/v1
|
|
# QINIU_API_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### Qwen AI ####
|
|
|
|
# QWEN_API_KEY=sk-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### Cloudflare Workers AI ####
|
|
|
|
# CLOUDFLARE_API_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
# CLOUDFLARE_BASE_URL_OR_ACCOUNT_ID=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### SiliconCloud AI ####
|
|
|
|
# SILICONCLOUD_API_KEY=sk-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
|
|
### TencentCloud AI ####
|
|
|
|
# TENCENT_CLOUD_API_KEY=sk-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### PPIO ####
|
|
|
|
# PPIO_API_KEY=sk-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### INFINI-AI ###
|
|
|
|
# INFINIAI_API_KEY=sk-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
|
|
### 302.AI ###
|
|
|
|
# AI302_API_KEY=sk-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### ModelScope ###
|
|
|
|
# MODELSCOPE_API_KEY=sk-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### AiHubMix ###
|
|
|
|
# AIHUBMIX_API_KEY=sk-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### BFL ###
|
|
|
|
# BFL_API_KEY=bfl-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### FAL ###
|
|
|
|
# FAL_API_KEY=fal-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
########################################
|
|
######### AI Image Settings ############
|
|
########################################
|
|
|
|
# Default image generation count (range: 1-20, default: 4)
|
|
# AI_IMAGE_DEFAULT_IMAGE_NUM=4
|
|
|
|
### Nebius ###
|
|
|
|
# NEBIUS_API_KEY=sk-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
### NewAPI Service ###
|
|
|
|
# NEWAPI_API_KEY=sk-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
# NEWAPI_PROXY_URL=https://your-newapi-server.com
|
|
|
|
### Vercel AI Gateway ###
|
|
|
|
# VERCELAIGATEWAY_API_KEY=your_vercel_ai_gateway_api_key
|
|
|
|
|
|
########################################
|
|
############ Market Service ############
|
|
########################################
|
|
|
|
# The LobeChat agents market index url
|
|
# AGENTS_INDEX_URL=https://chat-agents.lobehub.com
|
|
|
|
########################################
|
|
############ Plugin Service ############
|
|
########################################
|
|
|
|
# The LobeChat plugins store index url
|
|
# PLUGINS_INDEX_URL=https://chat-plugins.lobehub.com
|
|
|
|
# set the plugin settings
|
|
# the format is `plugin-identifier:key1=value1;key2=value2`, multiple settings fields are separated by semicolons `;`, multiple plugin settings are separated by commas `,`.
|
|
# PLUGIN_SETTINGS=search-engine:SERPAPI_API_KEY=xxxxx
|
|
|
|
########################################
|
|
####### Doc / Changelog Service ########
|
|
########################################
|
|
|
|
# Use in Changelog / Document service cdn url prefix
|
|
# DOC_S3_PUBLIC_DOMAIN=https://xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
# Use in dev cdn workflow
|
|
# DOC_S3_ACCESS_KEY_ID=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
# DOC_S3_SECRET_ACCESS_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
|
|
########################################
|
|
##### S3 Object Storage Service ########
|
|
########################################
|
|
|
|
# S3 keys
|
|
# S3_ACCESS_KEY_ID=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
# S3_SECRET_ACCESS_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
# Bucket name
|
|
# S3_BUCKET=lobechat
|
|
|
|
# Bucket request endpoint
|
|
# S3_ENDPOINT=https://xxxxxxxxxxxxxxxxxxxxxxxxxxxxx.r2.cloudflarestorage.com
|
|
|
|
# Public access domain for the bucket
|
|
# S3_PUBLIC_DOMAIN=https://s3-for-lobechat.your-domain.com
|
|
|
|
# Bucket region, such as us-west-1, generally not needed to add
|
|
# but some service providers may require configuration
|
|
# S3_REGION=us-west-1
|
|
|
|
|
|
########################################
|
|
############ Auth Service ##############
|
|
########################################
|
|
|
|
|
|
# Clerk related configurations
|
|
|
|
# Clerk public key and secret key
|
|
#NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY=pk_live_xxxxxxxxxxx
|
|
#CLERK_SECRET_KEY=sk_live_xxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
# you need to config the clerk webhook secret key if you want to use the clerk with database
|
|
#CLERK_WEBHOOK_SECRET=whsec_xxxxxxxxxxxxxxxxxxxxxx
|
|
|
|
# Clear allow origin https://clerk.com/docs/guides/dashboard/dns-domains/satellite-domains
|
|
# Authentication across different domains , use,to splite different origin
|
|
# NEXT_PUBLIC_CLERK_AUTH_ALLOW_ORIGINS='https://market.lobehub.com,https://lobehub.com'
|
|
|
|
# NextAuth related configurations
|
|
# NEXT_PUBLIC_ENABLE_NEXT_AUTH=1
|
|
# NEXT_AUTH_SECRET=
|
|
|
|
# Auth0 configurations
|
|
# AUTH_AUTH0_ID=
|
|
# AUTH_AUTH0_SECRET=
|
|
# AUTH_AUTH0_ISSUER=https://your-domain.auth0.com
|
|
|
|
########################################
|
|
########## Server Database #############
|
|
########################################
|
|
|
|
# Specify the service mode as server if you want to use the server database
|
|
# NEXT_PUBLIC_SERVICE_MODE=server
|
|
|
|
# Postgres database URL
|
|
# DATABASE_URL=postgres://username:password@host:port/database
|
|
|
|
# use `openssl rand -base64 32` to generate a key for the encryption of the database
|
|
# we use this key to encrypt the user api key and proxy url
|
|
#KEY_VAULTS_SECRET=xxxxx/xxxxxxxxxxxxxx=
|
|
|
|
# Specify the Embedding model and Reranker model(unImplemented)
|
|
# DEFAULT_FILES_CONFIG="embedding_model=openai/embedding-text-3-small,reranker_model=cohere/rerank-english-v3.0,query_mode=full_text"
|
|
|
|
########################################
|
|
########## MCP Service Config ##########
|
|
########################################
|
|
|
|
# MCP tool call timeout (milliseconds)
|
|
# MCP_TOOL_TIMEOUT=60000
|