AnyaSelf Docs

Environment Variables

Complete reference of all configuration variables across the AnyaSelf stack.

All environment variables can be set in the root .env file for Docker Compose, or injected individually per service deployment.

Global Variables

These variables are shared across all (or most) services:

VariableDefaultServicesDescription
APP_ENVdevAllRuntime environment (dev, staging, prod)
AUTH_JWT_SECRETdev-secret-change-meAllJWT signing secret (rejected in prod)
AUTH_JWT_ALGHS256AllJWT algorithm
PERSISTENCE_BACKENDinmemoryAllfirestore or inmemory
FIRESTORE_PROJECT_IDAll (firestore)GCP project for Firestore (fallback: GOOGLE_CLOUD_PROJECT)
FIRESTORE_DEV_FALLBACK_TO_INMEMORYtrueAll (firestore)Fall back to in-memory if Firestore unavailable in dev
MEMBERSHIP_PROVIDER_BACKENDnoneAllfirestore or none
REQUIRE_MEMBERSHIP_PROVIDERfalseAllCrash if membership provider unavailable

Internal Trust Tokens

VariableDefaultServicesDescription
ORCHESTRATOR_INTERNAL_TOKENdev-internal-tokenorchestrator, hyperbeam-bridge, artifacts-auditM2M auth for bridge events and artifact writes
BUYFLOW_INTERNAL_TOKENdev-internal-tokenapi-gatewayM2M auth for cart-ready / failed transitions
REQUIRE_INTERNAL_EVENT_TOKENtrueorchestratorEnforce token on /internal/ routes
REQUIRE_BUYFLOW_INTERNAL_TOKENfalseapi-gatewayEnforce token on buy-flow internal endpoints

API Gateway

VariableDefaultDescription
AUTH_ACCESS_TOKEN_TTL_SECONDS3600Internal JWT lifetime
AUTH_EXTERNAL_LOGIN_ENABLEDfalseEnable OIDC external login
AUTH_EXTERNAL_JWKS_URLJWKS endpoint URL
AUTH_EXTERNAL_ISSUERExpected token issuer
AUTH_EXTERNAL_AUDIENCEExpected token audience
AUTH_EXTERNAL_ALGORITHMSRS256External token algorithm
AUTH_EXTERNAL_REQUIRE_EXPtrue (staging/prod)Require expiry claim
CHECKOUT_CONFIRMATION_TTL_SECONDS900Purchase confirmation token lifetime
VOICE_LIVE_ENABLEDtrue (staging/prod)Enable Gemini Live voice proxy
VOICE_LIVE_API_KEYGemini API key
VOICE_LIVE_MODELgemini-live-2.5-flash-native-audioVoice model identifier
VOICE_LIVE_SESSION_TTL_SECONDS300Authenticated voice session TTL
VOICE_LIVE_PUBLIC_SESSION_ENABLEDtrueEnable guest voice sessions
VOICE_LIVE_PUBLIC_SESSION_TTL_SECONDS300Guest session TTL
VOICE_LIVE_PUBLIC_RATE_LIMIT_WINDOW_SECONDS60Rate limit window
VOICE_LIVE_PUBLIC_RATE_LIMIT_MAX_REQUESTS12Max public sessions per window
VOICE_LIVE_PUBLIC_WS_BASE_URLOptional external WSS URL override
UNSPLASH_ENABLEDautoEnabled when access key is set
UNSPLASH_ACCESS_KEYUnsplash API key for discover feed
UNSPLASH_APP_NAMEanyaselfUTM attribution name
UNSPLASH_TIMEOUT_SECONDS6.0Unsplash API timeout
UNSPLASH_CACHE_TTL_SECONDS900Feed response cache TTL
ARTIFACTS_AUDIT_BASE_URLhttp://artifacts-audit:8007/api/v1Audit service URL
ARTIFACTS_AUDIT_ENABLEDtrueEnable audit log writes
ARTIFACTS_AUDIT_REQUIREDfalseFail if audit service unreachable

Orchestrator

VariableDefaultDescription
ORCHESTRATOR_GCP_PROJECT_IDGCP project (fallback: GCP_PROJECT_ID, GOOGLE_CLOUD_PROJECT)
ORCHESTRATOR_GCP_LOCATIONus-central1Vertex AI region
ORCHESTRATOR_VERTEX_MODELgemini-1.5-proLLM model identifier
ORCHESTRATOR_VERTEX_STAGING_BUCKETOptional staging bucket
ORCHESTRATOR_REQUIRE_VERTEX_AGENTfalseCrash if GCP config missing
API_GATEWAY_BASE_URLhttp://localhost:8080/api/v1Gateway internal URL
WARDROBE_BASE_URLhttp://localhost:8081/api/v1Wardrobe internal URL
COMMERCE_BASE_URLhttp://localhost:8002/api/v1Commerce internal URL
CARTPREP_BASE_URLhttp://localhost:8005/api/v1CartPrep internal URL
HYPERBEAM_BASE_URLhttp://localhost:8006/api/v1Hyperbeam Bridge internal URL
INTERNAL_API_TIMEOUT_SECONDS10.0Timeout for tool calls

Wardrobe

VariableDefaultDescription
WARDROBE_STORAGE_BACKENDstubgcs or stub
GCS_BUCKETanyaself-wardrobe-devGCS bucket for images
WARDROBE_EMBEDDINGS_BACKENDdeterministichttp, deterministic, or none
EVENT_BUS_BACKENDinmemoryInternal event bus backend

Commerce

VariableDefaultDescription
COMMERCE_ENFORCE_DOMAIN_ALLOWLISTfalseRestrict offer ingestion to allowed domains

VTO

VariableDefaultDescription
VTO_INFERENCE_BACKENDsimulatedsimulated, inline, or remote
VTO_ENABLE_INLINE_WORKERtrueStart inline PyTorch worker thread
VTO_QUALITY_THRESHOLD0.0Minimum quality score (0.0 = accept all)

Headless CartPrep

VariableDefaultDescription
CARTPREP_RUNNER_BACKENDsimulatedsimulated or playwright
CARTPREP_ENFORCE_DOMAIN_ALLOWLISTfalseRestrict automation to allowed domains

Hyperbeam Bridge

VariableDefaultDescription
HYPERBEAM_ENFORCE_EVENT_SIGNATURESfalseVerify HMAC on extension events
HYPERBEAM_EVENT_SIGNING_SECRETdev-event-secret-change-meHMAC secret for events
ORCHESTRATOR_BASE_URLhttp://orchestrator:8003/api/v1Orchestrator internal URL
ORCHESTRATOR_EVENTS_ENABLEDtrueForward events to Orchestrator
ORCHESTRATOR_EVENTS_REQUIREDfalseFail if Orchestrator unreachable

Artifacts & Audit

VariableDefaultDescription
ARTIFACT_STORAGE_BACKENDlocalgcs or local
ARTIFACT_LOCAL_DIR/tmp/anyaself-artifactsLocal storage path
INTERNAL_API_TOKENdev-internal-tokenInternal service auth

Security & Trust Model

Authentication, authorization, internal trust, and purchase flow hardening.

Development Guide

How to set up your local environment and develop against the AnyaSelf stack.

On this page

Global VariablesInternal Trust TokensAPI GatewayOrchestratorWardrobeCommerceVTOHeadless CartPrepHyperbeam BridgeArtifacts & Audit