160 lines
7.5 KiB
YAML
160 lines
7.5 KiB
YAML
# 🏭 生产环境配置
|
||
# 只包含与默认配置不同的配置项
|
||
|
||
# ===========================================
|
||
# 🌍 环境标识
|
||
# ===========================================
|
||
app:
|
||
env: production
|
||
|
||
# ===========================================
|
||
# 🌐 服务器配置
|
||
# ===========================================
|
||
server:
|
||
mode: release
|
||
|
||
# ===========================================
|
||
# 🔒 CORS配置 - 生产环境
|
||
# ===========================================
|
||
development:
|
||
enable_cors: true
|
||
cors_allowed_origins: "http://localhost:5173,https://consoletest.tianyuanapi.com,https://console.tianyuanapi.com"
|
||
cors_allowed_methods: "GET,POST,PUT,PATCH,DELETE,OPTIONS"
|
||
cors_allowed_headers: "Origin,Content-Type,Accept,Authorization,X-Requested-With,Access-Id"
|
||
|
||
# ===========================================
|
||
# 🗄️ 数据库配置
|
||
# ===========================================
|
||
# 敏感信息通过外部环境变量注入
|
||
database:
|
||
host: "tyapi-postgres-prod"
|
||
port: "5432"
|
||
user: "tyapi_user"
|
||
password: "Pg9mX4kL8nW2rT5y"
|
||
name: "tyapi"
|
||
sslmode: "disable"
|
||
timezone: "Asia/Shanghai"
|
||
max_open_conns: 25
|
||
max_idle_conns: 10
|
||
conn_max_lifetime: 300s
|
||
auto_migrate: true
|
||
redis:
|
||
host: "tyapi-redis-prod"
|
||
port: "6379"
|
||
password: ""
|
||
db: 0
|
||
|
||
# ===========================================
|
||
# 🔐 JWT配置
|
||
# ===========================================
|
||
jwt:
|
||
secret: JwT8xR4mN9vP2sL7kH3oB6yC1zA5uF0qE9tW
|
||
|
||
api:
|
||
domain: "api.tianyuanapi.com"
|
||
# ===========================================
|
||
# 📁 存储服务配置 - 七牛云
|
||
# ===========================================
|
||
storage:
|
||
access_key: "AO6u6sDWi6L9TsPfr4awC7FYP85JTjt3bodZACCM"
|
||
secret_key: "2fjxweGtSAEaUdVgDkWEmN7JbBxHBQDv1cLORb9_"
|
||
bucket: "tianyuanapi"
|
||
domain: "https://file.tianyuanapi.com"
|
||
|
||
# ===========================================
|
||
# 🔍 OCR服务配置 - 百度智能云
|
||
# ===========================================
|
||
ocr:
|
||
api_key: "aMsrBNGUJxgcgqdm3SEdcumm"
|
||
secret_key: "sWlv2h2AWA3aAt5bjXCkE6WeA5AzpAAD"
|
||
|
||
# ===========================================
|
||
# 📝 e签宝服务配置
|
||
# ===========================================
|
||
esign:
|
||
app_id: "5112008003"
|
||
app_secret: "d487672273e7aa70c800804a1d9499b9"
|
||
server_url: "https://openapi.esign.cn"
|
||
template_id: "c82af4df2790430299c81321f309eef3"
|
||
contract:
|
||
name: "天远数据API合作协议"
|
||
expire_days: 7
|
||
retry_count: 3
|
||
auth:
|
||
org_auth_modes: ["PSN_MOBILE3"]
|
||
default_auth_mode: "PSN_MOBILE3"
|
||
psn_auth_modes: ["PSN_MOBILE3", "PSN_IDCARD"]
|
||
willingness_auth_modes: ["CODE_SMS"]
|
||
redirect_url: "https://console.tianyuanapi.com/certification/callback/auth"
|
||
sign:
|
||
auto_finish: true
|
||
sign_field_style: 1
|
||
client_type: "ALL"
|
||
redirect_url: "https://console.tianyuanapi.com/certification/callback/sign"
|
||
# ===========================================
|
||
# 💰 支付宝支付配置
|
||
# ===========================================
|
||
alipay:
|
||
app_id: "2021004181633376"
|
||
private_key: "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"
|
||
alipay_public_key: "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CqoCp95w/JV3RT/gzF4/8QmVT1HQNaeW7yUp+mA7x9AbjvlTW/+eRn6oGAL/XhZLjvHD0XjKLVKX0MJVS1aUQHEHEbOJN4Eu8II45OavD4iZISa7Kp9V6AM+i4qTyaeV2wNDnGxHQBaLVUGCfMR+56EK2YpORdE1H9uy72SSQseVb3bmpsV9EW/IJNmcVL/ut3uA1JWAoRmzlQ7ekxg7p8AYXzYPEHQr1tl7W+M4zv9wO9GKZCxIqMA8U3RP5npPfRaCfIRGzXzCqFEEUvWuidOB7frsvN4jiPD07qpL2Bi9LM1X/ee2kC/oM8Uhd7ERZhG8MbZfijZKxgrsDKBcwIDAQAB"
|
||
is_production: true
|
||
notify_url: "https://console.tianyuanapi.com/api/v1/finance/alipay/callback"
|
||
return_url: "https://console.tianyuanapi.com/api/v1/finance/alipay/return"
|
||
|
||
# ===========================================
|
||
# 💰 钱包配置
|
||
# ===========================================
|
||
wallet:
|
||
default_credit_limit: 50.00
|
||
min_amount: "100.00" # 生产环境最低充值金额
|
||
max_amount: "100000.00" # 单次最高充值金额
|
||
# 支付宝充值赠送配置
|
||
alipay_recharge_bonus:
|
||
- recharge_amount: 1000.00 # 充值1000元
|
||
bonus_amount: 50.00 # 赠送50元
|
||
- recharge_amount: 5000.00 # 充值5000元
|
||
bonus_amount: 300.00 # 赠送300元
|
||
- recharge_amount: 10000.00 # 充值10000元
|
||
bonus_amount: 800.00 # 赠送800元
|
||
|
||
# ===========================================
|
||
# 🚦 频率限制配置 - 生产环境
|
||
# ===========================================
|
||
daily_ratelimit:
|
||
max_requests_per_day: 50000 # 生产环境每日最大请求次数
|
||
max_requests_per_ip: 5000 # 生产环境每个IP每日最大请求次数
|
||
max_concurrent: 200 # 生产环境最大并发请求数
|
||
|
||
# 排除频率限制的路径
|
||
exclude_paths:
|
||
- "/health" # 健康检查接口
|
||
- "/metrics" # 监控指标接口
|
||
|
||
# 排除频率限制的域名
|
||
exclude_domains:
|
||
- "api.*" # API二级域名不受频率限制
|
||
- "*.api.*" # 支持多级API域名
|
||
|
||
# 生产环境安全配置(严格限制)
|
||
enable_ip_whitelist: false # 生产环境不启用IP白名单
|
||
enable_ip_blacklist: true # 启用IP黑名单
|
||
ip_blacklist: # 生产环境IP黑名单
|
||
- "192.168.1.100" # 示例:被禁止的IP
|
||
- "10.0.0.50" # 示例:被禁止的IP
|
||
|
||
enable_user_agent: true # 启用User-Agent检查
|
||
blocked_user_agents: # 被阻止的User-Agent
|
||
- "curl" # 阻止curl请求
|
||
- "wget" # 阻止wget请求
|
||
- "python-requests" # 阻止Python requests
|
||
|
||
enable_referer: true # 启用Referer检查
|
||
allowed_referers: # 允许的Referer
|
||
- "https://console.tianyuanapi.com"
|
||
- "https://consoletest.tianyuanapi.com"
|
||
|
||
enable_geo_block: false # 生产环境暂时不启用地理位置阻止
|
||
enable_proxy_check: true # 启用代理检查
|
||
|