meshcore-hub/docs/configuration.md

Configuration

This document is the single source of truth for MeshCore Hub environment variables. Copy .env.example to .env and override the values you need; .env.example stays the commented template and this document stays the canonical reference.

Variables are grouped by feature. Each section below links to the feature's dedicated document (where one exists) for setup, architecture, and operational details. The companion documents no longer duplicate these tables — they link back here.

Cross-references: deployment.md (production setup, scaling, Redis operational notes) · database.md (backend setup, migration runbook) · observer.md (packet-capture observer vars, which live there because they configure an external image) · auth.md (OIDC architecture, IdP guides) · webhooks.md (payload format, URL routing) · letsmesh.md (packet decoding) · content.md (custom pages, media, logos) · i18n.md (translations) · seeding.md (seed YAML) · maintenance.md (backup/restore)

---

Common

Process-wide and MQTT-broker settings used by every service. For multi-instance Docker deployments, see deployment.md → Multi-Instance Deployments; for seed data, see seeding.md.

Variable	Default	Description
COMPOSE_PROJECT_NAME	hub	Docker Compose project name; prefixes container and volume names. Change per instance when running multiple deployments on the same host
IMAGE_VERSION	latest	Docker image tag to use (latest, main, v1.0.0, etc.)
LOG_LEVEL	INFO	Logging level (DEBUG, INFO, WARNING, ERROR, CRITICAL)
DATA_HOME	./data	Base directory for runtime data (the SQLite file lives under ${DATA_HOME}/collector/meshcore.db)
SEED_HOME	./seed	Directory containing seed data files
TZ	UTC	IANA timezone for displaying dates/times (e.g. America/New_York, Europe/London)
MQTT_HOST	localhost (mqtt in Docker)	MQTT broker hostname
MQTT_PORT	1883	MQTT broker port (production behind reverse proxy: 443)
MQTT_USERNAME	(none)	MQTT username (subscriber account on the MeshCore broker)
MQTT_PASSWORD	(none)	MQTT password (generate with openssl rand -base64 32)
MQTT_PREFIX	meshcore	Topic prefix for all MQTT messages (legacy alias: MQTT_TOPIC_PREFIX)
MQTT_TLS	false	Enable TLS/SSL for MQTT connection (set true for wss://)
MQTT_TRANSPORT	websockets	MQTT transport protocol (the MeshCore broker uses WebSockets exclusively)
MQTT_WS_PATH	/	MQTT WebSocket path (production: /mqtt if reverse proxy rewrites paths)
MQTT_TOKEN_AUDIENCE	mqtt.localhost	JWT audience claim for packet-capture authentication tokens; must match AUTH_EXPECTED_AUDIENCE on the broker

Timezone note: API timestamps that omit an explicit timezone suffix are treated as UTC before rendering in the configured TZ.

Database

MeshCore Hub defaults to SQLite (zero-config, single host). Set DATABASE_BACKEND=postgres to switch to PostgreSQL for write scaling, multi-host deployments, and multiple instances sharing one cluster via schema-per-instance. Postgres is opt-in — leave the DATABASE_* variables unset to keep using SQLite. See database.md for the full backend reference: bundled container, production role/database provisioning, managed/external Postgres, schema-per-instance isolation, and the SQLite → PostgreSQL migration runbook.

Variable	Default	Description
DATABASE_BACKEND	sqlite	sqlite or postgres. Explicit switch — Postgres is never selected implicitly
DATABASE_HOST	postgres	Postgres hostname (postgres = bundled container service name)
DATABASE_PORT	5432	Postgres port
DATABASE_NAME	meshcorehub	Database name
DATABASE_SCHEMA	meshcorehub	Schema (search_path). Set a distinct value per instance on a shared cluster
DATABASE_USER	meshcorehub	Role name
DATABASE_PASSWORD	(none)	Required for Postgres. Generate one, e.g. openssl rand -base64 32
DATABASE_URL	(none)	Advanced: full SQLAlchemy URL; overrides all of the above

The bundled postgres container derives its POSTGRES_USER / POSTGRES_PASSWORD / POSTGRES_DB from the same DATABASE_USER / DATABASE_PASSWORD / DATABASE_NAME values — one source of truth.

Caching

Optional Redis-backed caching for API responses. When disabled or unavailable, the API queries the database directly. Operational guidance — Docker cache profile, bare-metal Redis, and multi-instance key-prefix isolation — is in deployment.md → Redis Caching.

Variable	Default	Description
REDIS_ENABLED	false	Enable Redis API response caching
REDIS_HOST	localhost (redis in Docker)	Redis server host
REDIS_PORT	6379	Redis server port
REDIS_DB	0	Redis database number
REDIS_PASSWORD	(none)	Redis password (optional)
REDIS_KEY_PREFIX	hub	Cache key prefix for multi-instance isolation
REDIS_CACHE_TTL	30	Default cache TTL in seconds
REDIS_CACHE_TTL_DASHBOARD	30	Cache TTL for dashboard endpoints in seconds

Collector

The collector subscribes to MQTT events and persists them to the database. For packet decoding behaviour, channel-key handling, and LetsMesh normalisation, see letsmesh.md.

Variable	Default	Description
CHANNEL_REFRESH_INTERVAL_SECONDS	300	Seconds between channel-key refresh from the database (minimum 10)

Webhooks

The collector can forward events (advertisements, messages) to external HTTP endpoints via webhooks with configurable URLs, secrets, retries, and timeouts. For URL routing rules, secret handling, retry behaviour, and payload format, see webhooks.md.

Variable	Default	Description
WEBHOOK_ADVERTISEMENT_URL	(none)	Webhook URL for advertisement events
WEBHOOK_ADVERTISEMENT_SECRET	(none)	Secret sent as X-Webhook-Secret header
WEBHOOK_MESSAGE_URL	(none)	Webhook URL for all message events
WEBHOOK_MESSAGE_SECRET	(none)	Secret for message webhook
WEBHOOK_CHANNEL_MESSAGE_URL	(none)	Override URL for channel messages only
WEBHOOK_CHANNEL_MESSAGE_SECRET	(none)	Secret for channel message webhook
WEBHOOK_DIRECT_MESSAGE_URL	(none)	Override URL for direct messages only
WEBHOOK_DIRECT_MESSAGE_SECRET	(none)	Secret for direct message webhook
WEBHOOK_TIMEOUT	10.0	Request timeout in seconds
WEBHOOK_MAX_RETRIES	3	Max retry attempts on failure
WEBHOOK_RETRY_BACKOFF	2.0	Exponential backoff multiplier

Auth

The web dashboard supports OIDC/OAuth2 authentication. When enabled (OIDC_ENABLED=true), the admin interface requires users to authenticate with an identity provider and have the admin role assigned. See auth.md for the architecture, login flow, role/endpoint mapping, local-development notes, and IdP-specific guides (LogTo, etc.).

Variable	Default	Description
OIDC_ENABLED	false	Enable OIDC authentication
OIDC_CLIENT_ID	(none)	OAuth2 client ID from your IdP (required when enabled)
OIDC_CLIENT_SECRET	(none)	OAuth2 client secret from your IdP (required when enabled)
OIDC_DISCOVERY_URL	(none)	IdP base URL — .well-known/openid-configuration is appended automatically (required when enabled)
OIDC_REDIRECT_URI	(auto-derived)	Override callback URL (auto-derived from request if not set)
OIDC_POST_LOGOUT_REDIRECT_URI	(auto-derived)	Post-logout redirect URI (falls back to OIDC_REDIRECT_URI base or request URL)
OIDC_SCOPES	openid email profile	OAuth scopes to request. The openid scope is required. Quotes are stripped automatically
OIDC_ROLES_CLAIM	roles	ID token claim name containing user roles
OIDC_ROLE_ADMIN	admin	IdP role name granting admin access
OIDC_ROLE_OPERATOR	operator	IdP role name for operator access (future use)
OIDC_ROLE_MEMBER	member	IdP role name for member access
OIDC_ROLE_TEST	test	IdP role name for test users (excluded from public member views and counts)
OIDC_SESSION_SECRET	(none)	Secret for signing session cookies (generate with openssl rand -hex 32; required when enabled)
OIDC_SESSION_MAX_AGE	86400	Session cookie lifetime in seconds (default 24 hours)
OIDC_COOKIE_SECURE	false	Set true to require HTTPS for session cookies (enable in production)

Data Retention

The collector automatically cleans up old event data and inactive nodes. Retention cleanup runs on the collector's scheduled cycle regardless of whether capture is currently enabled.

Variable	Default	Description
DATA_RETENTION_ENABLED	true	Enable automatic cleanup of old events
DATA_RETENTION_DAYS	30	Days to retain event data
DATA_RETENTION_INTERVAL_HOURS	24	Hours between cleanup runs (applies to both event data and node cleanup)
NODE_CLEANUP_ENABLED	true	Enable removal of inactive nodes (nodes with last_seen=NULL are never removed)
NODE_CLEANUP_DAYS	30	Remove nodes not seen for this many days
RAW_PACKET_CAPTURE_ENABLED	false	Capture raw packets into raw_packets. In Compose, derived from FEATURE_PACKETS — see letsmesh.md → Raw Packet Capture
RAW_PACKET_RETENTION_DAYS	7	Days to retain raw packets (independent of DATA_RETENTION_DAYS)

Spam Detection

Scores each message's spam likelihood at ingest, stores the score on the message row, and hides likely-spam by default in the API (with a "show potential spam" toggle on the Messages page). Nothing is ever dropped — the design is reversible and the threshold can be retuned without reprocessing.

On by default; opt out with FEATURE_SPAM_DETECTION=false. FEATURE_SPAM_DETECTION is the single switch operators set: in Compose it drives the backend SPAM_DETECTION_ENABLED for the collector (scoring + the background re-scoring sweep) and the api (the hide-filter), and exposes the UI toggle (see Feature Flags). Set SPAM_DETECTION_ENABLED directly only when running services without Compose.

Variable	Default	Read by	Description
SPAM_DETECTION_ENABLED	true	collector, api	Operational switch for scoring + hiding. In Compose, derived from FEATURE_SPAM_DETECTION (SPAM_DETECTION_ENABLED=${FEATURE_SPAM_DETECTION})
SPAM_SCORE_THRESHOLD	0.65	collector, api	Score at/above which a message is treated as likely spam (hidden by default; logged at WARNING)
SPAM_WINDOW_SECONDS	300	collector	Sliding window (seconds) for frequency counts
SPAM_PATH_HOPS	3	collector	Leading origin-side hops that form the path_prefix
SPAM_MIN_PATH_HOPS	3	collector	Minimum path_len before the path signal applies (short local-mesh paths share prefixes)
SPAM_PATH_THRESHOLD	6	collector	Joint (path_prefix, sender) count that saturates the path signal
SPAM_NAME_THRESHOLD	10	collector	Sender count that saturates the name signal
SPAM_WEIGHT_PATH	0.75	collector	Weight of the path signal in the combined score
SPAM_WEIGHT_NAME	0.25	collector	Weight of the name signal in the combined score
SPAM_RESCORE_INTERVAL_SECONDS	120	collector	Background re-scoring sweep cadence in seconds (0 disables the sweep)

API

REST API server. For multi-worker scaling guidance (API_WORKERS), see deployment.md → Scaling the API.

Variable	Default	Description
API_HOST	0.0.0.0	API bind address
API_PORT	8000	API port
API_WORKERS	1	Number of worker processes (increase for multi-core concurrency)
API_READ_KEY	(none)	Read-only API key (generate with openssl rand -hex 32)
API_ADMIN_KEY	(none)	Admin API key
METRICS_ENABLED	true	Enable Prometheus metrics endpoint at /metrics
METRICS_CACHE_TTL	60	Seconds to cache metrics output (reduces database load)
CORS_ORIGINS	(none)	Comma-separated list of allowed CORS origins (only needed when the web dashboard runs on a different origin)

Web Dashboard

Web server, dashboard presentation, network metadata, and custom content. For the custom content directory layout (pages, media, logos), see content.md; for translations and WEB_LOCALE values, see i18n.md.

Variable	Default	Description
WEB_HOST	0.0.0.0	Web server bind address
WEB_PORT	8080	Web server port
API_BASE_URL	http://localhost:8000	API endpoint URL
API_KEY	(none)	API key for web dashboard queries (optional — set if API_READ_KEY is set on the API)
WEB_THEME	dark	Default theme (dark or light); users can override via the navbar toggle
WEB_LOCALE	en	Locale/language for the web dashboard (e.g. en, nl)
WEB_DATETIME_LOCALE	en-US	Locale used for date formatting (e.g. en-US for MM/DD/YYYY, en-GB for DD/MM/YYYY)
WEB_AUTO_REFRESH_SECONDS	30	Auto-refresh interval in seconds for list pages (0 to disable)
WEB_DEBUG	false	Enable debug mode in the web dashboard (extra diagnostic info)
NETWORK_DOMAIN	(none)	Network domain name (optional)
NETWORK_NAME	MeshCore Network	Display name for the network
NETWORK_CITY	(none)	City where network is located
NETWORK_COUNTRY	(none)	Country code (ISO 3166-1 alpha-2)
NETWORK_RADIO_PROFILE	EU/UK Narrow	Radio profile name
NETWORK_RADIO_FREQUENCY	869.618	Radio frequency in MHz (raw number, units applied on display)
NETWORK_RADIO_BANDWIDTH	62.5	Radio bandwidth in kHz (raw number, units applied on display)
NETWORK_RADIO_SPREADING_FACTOR	8	Radio spreading factor
NETWORK_RADIO_CODING_RATE	8	Radio coding rate
NETWORK_RADIO_TX_POWER	22	Radio TX power in dBm (raw number, units applied on display)
NETWORK_WELCOME_TEXT	(none)	Custom welcome text for homepage
NETWORK_CONTACT_EMAIL	(none)	Contact email address
NETWORK_CONTACT_DISCORD	(none)	Discord server link
NETWORK_CONTACT_GITHUB	(none)	GitHub repository URL
NETWORK_CONTACT_YOUTUBE	(none)	YouTube channel URL
NETWORK_ANNOUNCEMENT	(none)	Markdown announcement shown as a dismissable flash banner on every page
SYSTEM_ANNOUNCEMENT	(none)	Markdown system notice shown as a non-dismissable banner above the network announcement
SYSTEM_MAINTENANCE	false	Maintenance mode: nav shows only Home, profile menu hidden, every page renders a maintenance notice, and no API calls are made
CONTENT_HOME	./content	Directory containing custom content (pages/, media/)

Feature Flags

Control which pages are visible in the web dashboard. Disabled features are fully hidden: removed from navigation, return 404 on their routes, and excluded from sitemap/robots.txt.

Variable	Default	Description
FEATURE_DASHBOARD	true	Enable the /dashboard page
FEATURE_NODES	true	Enable the /nodes pages (list, detail, short links)
FEATURE_ADVERTISEMENTS	true	Enable the /advertisements page
FEATURE_MESSAGES	true	Enable the /messages page
FEATURE_MAP	true	Enable the /map page and /map/data endpoint
FEATURE_MEMBERS	true	Enable the /members page
FEATURE_PAGES	true	Enable custom markdown pages
FEATURE_CHANNELS	true	Enable the /channels page
FEATURE_RADIO_CONFIG	true	Show radio config panel on home page
FEATURE_PACKETS	true	Enable the /packets raw-packet browser. In Compose this also drives RAW_PACKET_CAPTURE_ENABLED on the collector
FEATURE_SPAM_DETECTION	true	Show the "show potential spam" toggle on /messages. In Compose this also drives SPAM_DETECTION_ENABLED on the collector + api — see Spam Detection

Dependencies: Dashboard auto-disables when all of Nodes/Advertisements/Messages are disabled. Map auto-disables when Nodes is disabled. Members auto-disables when OIDC is disabled (set via OIDC_ENABLED).

Traefik

Optional. Only relevant when using docker-compose.traefik.yml for reverse-proxy auto-discovery. See deployment.md → Reverse Proxy and Multi-Instance Deployments for usage.

Variable	Default	Description
TRAEFIK_DOMAIN	(none)	Domain routed by Traefik (e.g. meshcore.example.com)
TRAEFIK_PRIORITY	10	Router priority — higher wins on overlapping domains. Use higher values for more specific subdomains (staging 20, MQTT broker 30)

Prometheus & Alertmanager

Optional. External monitoring ports used by the metrics compose profile. The MeshCore Hub application itself does not consume these; they configure the bundled monitoring containers.

Variable	Default	Description
PROMETHEUS_PORT	9090	External Prometheus port (when using --profile metrics)
ALERTMANAGER_PORT	9093	External Alertmanager port (when using --profile metrics)