Bill
204d00caf4
All checks were successful
Build and Push Docker Image / build (push) Successful in 14s
When Grist validates the Host header (common with reverse proxy setups), internal Docker networking fails because requests arrive with Host: container-name instead of the external domain. The new host_header config option allows overriding the Host header sent to Grist while still connecting via internal Docker hostnames.
49 lines
1.3 KiB
Plaintext
49 lines
1.3 KiB
Plaintext
# config.yaml.example
|
|
|
|
# ============================================================
|
|
# Token Generation:
|
|
# python -c "import secrets; print(secrets.token_urlsafe(32))"
|
|
# openssl rand -base64 32
|
|
# ============================================================
|
|
|
|
# Document definitions (each is self-contained)
|
|
documents:
|
|
budget-2024:
|
|
url: https://work.getgrist.com
|
|
doc_id: mK7xB2pQ9mN4v
|
|
api_key: ${GRIST_WORK_API_KEY}
|
|
|
|
expenses:
|
|
url: https://work.getgrist.com
|
|
doc_id: nL8yC3qR0oO5w
|
|
api_key: ${GRIST_WORK_API_KEY}
|
|
|
|
personal-tracker:
|
|
url: https://docs.getgrist.com
|
|
doc_id: pN0zE5sT2qP7x
|
|
api_key: ${GRIST_PERSONAL_API_KEY}
|
|
|
|
# Docker networking example: connect via internal hostname,
|
|
# but send the external domain in the Host header
|
|
docker-grist:
|
|
url: http://grist:8080
|
|
doc_id: abc123
|
|
api_key: ${GRIST_API_KEY}
|
|
host_header: grist.example.com # Required when Grist validates Host header
|
|
|
|
# Agent tokens with access scopes
|
|
tokens:
|
|
- token: REPLACE_WITH_GENERATED_TOKEN
|
|
name: finance-agent
|
|
scope:
|
|
- document: budget-2024
|
|
permissions: [read, write]
|
|
- document: expenses
|
|
permissions: [read]
|
|
|
|
- token: REPLACE_WITH_ANOTHER_TOKEN
|
|
name: analytics-agent
|
|
scope:
|
|
- document: personal-tracker
|
|
permissions: [read, write, schema]
|