docs: change default session secret in docker deployment

Signed-off-by: David Mehren <git@herrmehren.de>
2024-09-18 15:08:47 -04:00 · 2023-03-26 11:58:47 +02:00 · 2023-03-26 11:58:47 +02:00 · 80eb4c8a1a
commit 80eb4c8a1a
parent f7f052fca1
3 changed files with 3 additions and 3 deletions
--- a/docker/.env
+++ b/docker/.env
@ -1,6 +1,6 @@
 # General settings
 HD_BASE_URL="https://hedgedoc2.localhost"
-HD_SESSION_SECRET="session_secret"
+HD_SESSION_SECRET="change_me_in_production"

 # Database settings
 HD_DATABASE_TYPE="postgres"
--- a/docs/content/config/index.md
+++ b/docs/content/config/index.md
@ -7,7 +7,7 @@ environment variables and their corresponding value. This can for example look l

 ```ini
 HD_BASE_URL="http://localhost:8080"
-HD_SESSION_SECRET="session_secret"
+HD_SESSION_SECRET="change_me_in_production"
 HD_DATABASE_TYPE="sqlite"
 HD_DATABASE_NAME="./hedgedoc.sqlite"
 HD_MEDIA_BACKEND="filesystem"
--- a/docs/content/setup/getting_started.md
+++ b/docs/content/setup/getting_started.md
@ -19,7 +19,7 @@ You will have to accept the TLS warning in your browser the first time the page
    instance for testing with your friends.

 For a production setup, first set a unique session secret with
-`sed -i "s/session_secret/$(pwgen -s 64)/" .env`.
+`sed -i "s/change_me_in_production/$(pwgen -s 64)/" .env`.

 Then open the `.env` file and edit `HD_BASE_URL`. It needs to contain the full URL of your instance,
 like it will be entered in the browser. If you enter a URL starting with `https://`, Caddy will