-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy path.env.opa.example
More file actions
36 lines (30 loc) · 1.32 KB
/
.env.opa.example
File metadata and controls
36 lines (30 loc) · 1.32 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
# OPA Runtime Credentials
# Copy this file to .env.opa and fill in your values
# These credentials are generated by the setup-opa-secrets script in the PAM project
# OPA Connection Settings
OPA_BASE_URL=https://your-team.pam.okta.com/
OPA_TEAM_NAME=your-team
# Service User API Key Credentials
# These are generated when setting up the OPA service user
OPA_KEY_ID=your-key-id-uuid
OPA_KEY_SECRET=your-base64-encoded-key-secret
# OPA Resource Identifiers
OPA_RESOURCE_GROUP_ID=your-resource-group-uuid
OPA_PROJECT_ID=your-project-uuid
OPA_FOLDER_ID=your-folder-uuid
# LLM Provider Configuration
# Options: 'anthropic' or 'bedrock'
OPA_LLM_PROVIDER=anthropic
# For Anthropic provider:
# Name of the secret in OPA containing the Anthropic API key
OPA_ANTHROPIC_SECRET_NAME=ANTHROPIC_API_KEY
# Optional: Name of the secret in OPA containing the model name (if not set, uses ANTHROPIC_MODEL env var)
OPA_ANTHROPIC_MODEL_SECRET_NAME=ANTHROPIC_MODEL
# Fallback if OPA_ANTHROPIC_MODEL_SECRET_NAME is not set
ANTHROPIC_MODEL=claude-sonnet-4-5-20250929
# For Bedrock provider (uncomment if using):
# OPA_AWS_ACCESS_KEY_ID_SECRET_NAME=AWS_ACCESS_KEY_ID
# OPA_AWS_SECRET_ACCESS_KEY_SECRET_NAME=AWS_SECRET_ACCESS_KEY
# OPA_AWS_SESSION_TOKEN_SECRET_NAME=AWS_SESSION_TOKEN
# AWS_REGION=us-east-1
# BEDROCK_MODEL_ID=us.anthropic.claude-3-5-sonnet-20241022-v2:0