Environment Variables
Complete reference for all backend and frontend env vars. Only JWT_SECRET and one AI provider key are required to get started — everything else has sensible defaults.
Backend (backend/.env)
AI Provider
| Variable | Default | Description |
|---|---|---|
AI_PROVIDER | auto-detect | Force: anthropic, openai, google, or local |
ANTHROPIC_API_KEY | — | console.anthropic.com |
ANTHROPIC_MODEL | claude-sonnet-4-20250514 | Override Anthropic model |
OPENAI_API_KEY | — | platform.openai.com |
OPENAI_MODEL | gpt-4o-mini | Override OpenAI model |
GOOGLE_API_KEY | — | aistudio.google.com |
GOOGLE_MODEL | gemini-2.5-flash | Override Google model |
OLLAMA_BASE_URL | http://localhost:11434 | Ollama server URL |
OLLAMA_MODEL | mistral:7b | Model name for local inference |
OLLAMA_MAX_PREDICT | 4096 | Max output tokens for Ollama |
OLLAMA_TIMEOUT_MS | 120000 | Timeout for Ollama calls (ms) |
Demo Mode
| Variable | Default | Description |
|---|---|---|
DEMO_GOOGLE_API_KEY | — | Platform-owned Gemini API key for zero-config trial. When set, users without their own AI key can try Sentri immediately using the shared key, subject to per-user daily quotas |
DEMO_DAILY_CRAWLS | 2 | Max crawls per user per day in demo mode |
DEMO_DAILY_RUNS | 3 | Max test runs per user per day in demo mode |
DEMO_DAILY_GENERATIONS | 5 | Max AI test generations per user per day in demo mode |
LLM Retry & Tokens
| Variable | Default | Description |
|---|---|---|
LLM_MAX_RETRIES | 3 | Retry count for rate-limited AI calls |
LLM_BASE_DELAY_MS | 2000 | Base delay for exponential backoff (ms) |
LLM_MAX_BACKOFF_MS | 30000 | Max backoff delay (ms) |
LLM_MAX_TOKENS | 16384 | Max output tokens per AI call |
Server
| Variable | Default | Description |
|---|---|---|
PORT | 3001 | Backend server port |
NODE_ENV | — | Set to production for production deployments |
DB_PATH | data/sentri.db | SQLite database file path (ignored when DATABASE_URL is set) |
CORS_ORIGIN | * | Frontend origin(s) for CORS, comma-separated. Required in production |
SHUTDOWN_DRAIN_MS | 10000 | Max time (ms) to wait for in-flight runs during graceful shutdown |
SPA_INDEX_PATH | auto-detect | Path to the Vite-built index.html for CSP nonce injection (SEC-002). Only needed when the frontend dist is not at the default location relative to the backend source. In Docker multi-container deployments, set to the shared volume path (e.g. /usr/share/frontend/index.html) |
Database & Infrastructure
| Variable | Default | Description |
|---|---|---|
DATABASE_URL | — | PostgreSQL connection string (e.g. postgres://user:pass@host:5432/db). When set, uses PostgreSQL instead of SQLite. Requires pg + pg-native (or deasync as fallback) |
PG_POOL_SIZE | 10 | Max PostgreSQL connection pool size (ignored for SQLite) |
REDIS_URL | — | Redis connection URL (e.g. redis://localhost:6379). When set, enables shared rate limiting, cross-instance token revocation, SSE pub/sub, and BullMQ job queue. Requires ioredis. For Redis-backed rate limiting also install rate-limit-redis |
MAX_WORKERS | 2 | Global concurrency limit for BullMQ run execution (INF-003). Each slot processes one crawl or test run at a time. Ignored when Redis/BullMQ is not available |
Local Redis setup
Redis is optional for local development — without it, Sentri uses in-memory stores for rate limiting, token revocation, and SSE. To enable Redis locally:
bash
# macOS (Homebrew)
brew install redis && redis-server
# Or via Docker (any platform)
docker run -d --name sentri-redis -p 6379:6379 redis:7-alpineThen in backend/.env:
bash
REDIS_URL=redis://localhost:6379Install the required npm packages:
bash
cd backend
npm install ioredis rate-limit-redisLocal BullMQ setup
BullMQ provides durable job queue execution for crawls and test runs (INF-003). Without it, runs execute in-process — which is fine for local development but means runs are lost if the server crashes mid-execution.
To enable BullMQ locally, ensure Redis is running (see above), then:
bash
cd backend
npm install bullmqBullMQ is detected automatically when both REDIS_URL is set and the bullmq package is installed. Set MAX_WORKERS to control how many runs can execute concurrently (default: 2).
Email (Transactional)
| Variable | Default | Description |
|---|---|---|
RESEND_API_KEY | — | Resend API key for transactional email (recommended) |
SMTP_HOST | — | SMTP server host (alternative to Resend) |
SMTP_PORT | 587 | SMTP server port |
SMTP_SECURE | false | Use TLS for SMTP connection |
SMTP_USER | — | SMTP username |
SMTP_PASS | — | SMTP password |
EMAIL_FROM | Sentri <noreply@sentri.dev> | Sender address for all transactional emails |
SKIP_EMAIL_VERIFICATION | false | When "true", new users are auto-verified on registration. Dev/CI only — never set in production |
Auth & Security
| Variable | Default | Description |
|---|---|---|
JWT_SECRET | random (dev) | Required in production. 32+ char secret for signing JWTs |
CREDENTIAL_SECRET | falls back to JWT_SECRET | Encryption secret for project credentials |
ARTIFACT_SECRET | random (dev) | Required in production. Signs artifact URLs (screenshots, videos) |
ARTIFACT_TOKEN_TTL_MS | 3600000 | Artifact URL token TTL (ms) |
ENABLE_DEV_RESET_TOKENS | false | When "true", forgot-password response includes the reset token (dev/test only — never in production) |
APP_URL | http://localhost:3000 | Frontend base URL (used for OAuth redirects, email verification links, and notification deep links). Falls back to CORS_ORIGIN |
APP_BASE_PATH | / | Frontend base path prefix (e.g. /sentri for GitHub Pages) |
BACKEND_URL | auto-detect | Backend URL override for cross-origin cookie detection |
Test Execution
| Variable | Default | Description |
|---|---|---|
BROWSER_HEADLESS | true | Set false to see the browser window |
VIEWPORT_WIDTH | 1280 | Browser viewport width (px) |
VIEWPORT_HEIGHT | 720 | Browser viewport height (px) |
NAVIGATION_TIMEOUT | 30000 | Timeout for page.goto() calls (ms) |
API_TEST_TIMEOUT | 30000 | Per-API-test timeout (ms) |
BROWSER_TEST_TIMEOUT | 120000 | Per-browser-test timeout guard (ms) |
PARALLEL_WORKERS | 1 | Concurrent browser contexts (1–10). Override per-run from UI |
PLAYWRIGHT_CHROMIUM_EXECUTABLE_PATH | — | Custom Chromium executable path |
Crawler
| Variable | Default | Description |
|---|---|---|
CRAWL_MAX_PAGES | 30 | Maximum pages to visit per crawl |
CRAWL_MAX_DEPTH | 3 | Maximum link-follow depth from the start URL |
CRAWL_NETWORKIDLE_TIMEOUT | 5000 | Timeout (ms) for networkidle wait after page load |
Self-Healing
| Variable | Default | Description |
|---|---|---|
HEALING_ELEMENT_TIMEOUT | 5000 | Element finding timeout per strategy (ms) |
HEALING_RETRY_COUNT | 3 | Retries per interaction before giving up |
HEALING_RETRY_DELAY | 400 | Pause between retries (ms) |
HEALING_HINT_MAX_FAILS | 3 | Skip healing hints that have failed this many consecutive times |
HEALING_VISIBLE_WAIT_CAP | 1200 | Max waitFor timeout per strategy in firstVisible (ms) |
AI Chat
| Variable | Default | Description |
|---|---|---|
MAX_CONVERSATION_TURNS | 20 | Max turn pairs kept in chat context |
AI_CLASSIFY_THRESHOLD | 40 | Confidence threshold for AI-assisted intent classification (0–100) |
Logging
| Variable | Default | Description |
|---|---|---|
LOG_LEVEL | info | debug, info, warn, or error |
LOG_DATE_FORMAT | iso | iso, utc, local, or epoch |
LOG_TIMEZONE | system | IANA timezone for local format |
LOG_JSON | false | Emit structured JSON logs |
OAuth
| Variable | Description |
|---|---|
GITHUB_CLIENT_ID | GitHub OAuth app client ID |
GITHUB_CLIENT_SECRET | GitHub OAuth app client secret |
GOOGLE_CLIENT_ID | Google OAuth client ID |
GOOGLE_CLIENT_SECRET | Google OAuth client secret |
GOOGLE_REDIRECT_URI | Override Google OAuth redirect URI |
Frontend (build-time)
| Variable | Default | Description |
|---|---|---|
VITE_API_URL | "" (same origin) | Backend URL for cross-origin deploys |
GITHUB_PAGES | — | Set to true to use /sentri/ base path |
VITE_GITHUB_CLIENT_ID | — | GitHub OAuth client ID (passed to frontend) |
VITE_GOOGLE_CLIENT_ID | — | Google OAuth client ID (passed to frontend) |