This section enumerates the startup parameters for an VCT server. Parameters in the Required Parameters section are required, otherwise the server will not start. Parameters in the Optional Parameters section are optional and will use a default value if not specified.
Following are the required parameters for a VCT server.
| Arg | Env |
|---|---|
| --api-host | VCT_API_HOST |
URL to run the VCT instance on. Format: HostName:Port.
| Arg | Env |
|---|---|
| --base-url | VCT_BASE_URL |
Base URL. e.g (https://vct.com)
| Arg | Env | Default |
|---|---|---|
| --kms-type | VCT_KMS_Type |
KMS type (local,web,aws).
| Arg | Env | Default |
|---|---|---|
| --kms-endpoint | VCT_KMS_ENDPOINT |
Remote KMS URL.
| Arg | Env | Default |
|---|---|---|
| --log-active-key-id | VCT_LOG_SIGN_ACTIVE_KEY_ID |
Active Key ID for signing logs.
| Arg | Env |
|---|---|
| --logs | VCT_LOGS |
A list of Trillian logs (comma separated). Format must be :@.
Examples: maple2021:rw@server.com,maple2020:r@server.com:9890
| Arg | Env | Default |
|---|---|---|
| --issuers | VCT_ISSUERS |
Comma-Separated list of supported issuers.
Examples: maple2021@did:key:zUC724vuGvHpnCGFG1qqpXb81SiBLu3KLSqVzenwEZNPoY35i2Bscb8DLaVwHvRFs6F2NkNNXRcPWvqnPDUd9ukdjLkjZd3u9zzL4wDZDUpkPAatLDGLEYVo8kkAzuAKJQMr7N2, maple2020@did:key:zUC724vuGvHpnCGFG1qqpXb81SiBLu3KLSqVzenwEZNPoY35i2Bscb8DLaVwHvRFs6F2NkNNXRcPWvqnPDUd9ukdjLkjZd3u9zzL4wDZDUpkPAatLDGLEYVo8kkAzuAKJQMr7N7
| Arg | Env |
|---|---|
| --trillian-db-conn | VCT_TRILLIAN_DB_CONN |
Trillian db conn.
Example: user=postgres host=trillian.postgres password=password dbname=test port=5432 sslmode=disable
| Arg | Env |
|---|---|
| --dsn | VCT_DSN |
Datasource Name with credentials if required. Format must be :[//]. Supported drivers are [mem, couchdb, postgres, mongodb].
Examples: 'postgres://jack:secret@pg.example.com:5432/mydb', 'mem://test', 'mongodb://mongodb.example.com:27017'
| Arg | Env |
|---|---|
| --timeout | VCT_TIMEOUT |
Total time in seconds to wait until the services are available before giving up.
| Arg | Env |
|---|---|
| --sync-timeout | VCT_SYNC_TIMEOUT |
Total time in seconds to resolve config values.
| Arg | Env | Default |
|---|---|---|
| --tls-systemcertpool | VCT_TLS_SYSTEMCERTPOOL | false |
Use system certificate pool. Possible values true and false. Defaults to false if not set.
| Arg | Env | Default |
|---|---|---|
| --tls-cacerts | VCT_TLS_CACERTS |
Comma-Separated list of ca certs path.
| Arg | Env | Default |
|---|---|---|
| --tls-serve-cert | VCT_TLS_SERVE_CERT |
TLS certificate for VCT server. Path to the server certificate to use when serving HTTPS.
| Arg | Env | Default |
|---|---|---|
| --tls-serve-key | VCT_TLS_SERVE_KEY |
TLS key for VCT server. Path to the private key to use when serving HTTPS.
| Arg | Env | Default |
|---|---|---|
| --context-provider-url | VCT_CONTEXT_PROVIDER_URL |
Comma-separated list of remote context provider URLs to get JSON-LD contexts from.
Below are the optional parameters for an VCT server. If not specified then the default value is used.
| Arg | Env | Default |
|---|---|---|
| --api-read-token | VCT_API_READ_TOKEN |
Check for bearer token in the authorization header (optional).
| Arg | Env | Default |
|---|---|---|
| --api-write-token | VCT_API_WRITE_TOKEN |
Check for bearer token in the authorization header (optional).
| Arg | Env | Default |
|---|---|---|
| --dev-mode | VCT_DEV_MODE | false |
| Arg | Env | Default |
|---|---|---|
| --database-prefix | VCT_DATABASE_PREFIX |
An optional prefix to be used when creating and retrieving underlying databases. This allows a database to be shared by multiple VCT domains. (Mainly used in development environments.)
| Arg | Env | Default |
|---|---|---|
| --metrics-host | VCT_METRICS_HOST |
URL that exposes the metrics endpoint. Format: HostName:Port.