Skip to Content
Self HostingConfiguration

Configuration

Enterprise deployments use environment-specific configuration supplied during onboarding. This page describes the public configuration categories, not internal service names.

Core Settings

SettingPurpose
OPENFACTORY_PUBLIC_URLUser-facing console URL
OPENFACTORY_API_URLPublic API URL for clients and integrations
OPENFACTORY_SECRET_KEYStrong generated secret used by the deployment
OPENFACTORY_ARTIFACT_STORAGEDurable artifact storage location
OPENFACTORY_LOG_LEVELRuntime logging level

Identity

SettingPurpose
OPENFACTORY_AUTH_MODELocal, SAML, OIDC, or Enterprise-managed identity
OPENFACTORY_OIDC_ISSUEROIDC issuer URL when OIDC is enabled
OPENFACTORY_OIDC_CLIENT_IDOIDC client identifier
OPENFACTORY_OIDC_CLIENT_SECRETOIDC client secret stored in your secrets manager

Execution Targets

SettingPurpose
OPENFACTORY_BUILD_CAPACITYExpected concurrent build capacity
OPENFACTORY_VM_TARGETSRegistered VM or hypervisor targets
OPENFACTORY_PACKAGE_MIRRORSApproved package mirrors for connected or restricted environments
OPENFACTORY_HARDWARE_PROFILEOptional validated hardware profile when enabled for your deployment

Integrations

SettingPurpose
OPENFACTORY_SERVICENOW_INSTANCEServiceNow instance URL
OPENFACTORY_AUDIT_EXPORTAudit log export destination
OPENFACTORY_WEBHOOK_TARGETSApproved outbound webhook destinations

Secret Handling

  • Generate unique secrets per environment.
  • Store secrets in a managed secrets system.
  • Do not commit secrets to Git.
  • Rotate secrets as part of onboarding, staff changes, and incident response.
Last updated on