db: connect: 'postgres://postgres:password@localhost:5432/example' cors: allowedOrigins: - 'http://localhost:*' - 'https://stillbox.server' auth: jwtsecret: 'super secret string' # this is the JWT cookie domain domain: example.com # this allows the JWT cookie to be served over plain HTTP only for these Host: header values allowInsecureFor: "localhost": true listen: ':3050' public: true log: # level logs at or above the specified level # levels are trace, debug, info, warn, error, fatal, panic # an entry without a file: property indicates stderr - level: debug - level: error file: error.log rateLimit: enable: true requests: 200 over: 2m alerting: enable: true lookbackDays: 7 halfLife: 30m recent: 2h alertThreshold: 0.5 renotify: 30m notify: - provider: slackwebhook config: webhookURL: "http://somewhere"