Configuration

Configure Docker Compose, environment variables, and connector secrets for self-hosted ctx|.

Configuration is environment-driven. Set only the values your deployment needs, but treat the required auth, database, model, and public-origin values as production secrets.

Requirements

  • Docker Engine 24+ and Docker Compose v2, or a Railway account
  • PostgreSQL 17; the reference Compose image is pgvector on Postgres 17
  • A graph database; FalkorDB is included in the reference Compose stack
  • An SMTP provider for transactional email
  • An OpenRouter, Azure, Bedrock, or OpenAI-compatible model provider
  • A public HTTPS origin for production auth callbacks, webhooks, MCP, and Forge remotes

Docker Compose

Clone the repository and copy the example environment file:

git clone https://github.com/ctxpipe-ai/ctxpipe.git
cd ctxpipe
cp docker-compose.env.example .env

Edit .env with your values. The full production-style stack is the Compose deploy profile:

docker compose --profile deploy up -d

The deploy profile starts Postgres, FalkorDB, OTEL collector, migrator, backend, worker, UI, and codesearch. The backend listens on the public app port and proxies the UI.

For local host development, use the repo development runbook instead of this page: pnpm dev:infra starts infrastructure, and pnpm dev runs backend and UI on the host.

Required variables

VariableDescription
DATABASE_URLPostgreSQL connection string, for example postgresql://user:pass@host:5432/db
AUTH_SECRETRandom 32+ character string for session signing. Generate with openssl rand -hex 32.
AUTH_BASE_URLPublic URL of your ctx| instance, for example https://ctx.example.com
CTXPIPE_PUBLIC_APP_URLPublic backend URL baked into the UI image. Usually the same value as AUTH_BASE_URL.
MODEL_PROVIDER_API_KEYAPI key for your configured model provider

Email

VariableDescription
SMTP_CONNECTION_URLSMTP connection URL, for example smtps://user:[email protected]:465
EMAIL_FROM_ADDRESSFrom address for transactional email, for example [email protected]

Social sign-in

All social providers are optional. Omit the variables to disable that provider.

VariableDescription
GITHUB_CLIENT_IDGitHub OAuth app client ID
GITHUB_CLIENT_SECRETGitHub OAuth app client secret
GOOGLE_CLIENT_IDGoogle OAuth client ID
GOOGLE_CLIENT_SECRETGoogle OAuth client secret
MICROSOFT_CLIENT_IDMicrosoft Entra application client ID
MICROSOFT_CLIENT_SECRETMicrosoft Entra client secret

See Authentication for OAuth and session behavior.

Models and embeddings

VariableDescription
MODEL_PROVIDEROptional. openai-like default, openrouter, azure, or bedrock.
MODEL_PROVIDER_API_KEYAPI key or Bedrock long-lived token. For Bedrock IAM, use AWS environment variables instead.
MODEL_PROVIDER_URLOptional for openai-like and openrouter; required for azure and bedrock.
MODEL_FAST_NAME, MODEL_MEDIUM_NAME, MODEL_HIGH_NAMEOptional model names per tier.
MODEL_EMBEDDING_PROVIDER_URL, MODEL_EMBEDDING_PROVIDER_API_KEY, MODEL_EMBEDDING_NAMEOptional embedding provider overrides.

See Model configuration for provider-specific examples and embedding requirements.

Graph database

VariableDescription
GRAPH_DB_PROVIDEROptional. Selects graph provider strategy.
GRAPH_DB_URIFalkorDB Redis URI or Bolt URI for another supported graph database.
GRAPH_DB_USERNAME, GRAPH_DB_PASSWORDOptional credentials for providers that require them.

See Graph databases for provider support and tenancy behavior.

GitHub App connector

Repository connectors use GitHub App credentials. Current self-hosted deployments store GitHub App ID, PEM private key, and webhook secret encrypted in each connections row for type: github.

VariableDescription
GITHUB_APP_IDOptional after migrations. GitHub App numeric ID.
GITHUB_PRIVATE_KEYOptional after migrations. PEM private key for the App.
GITHUB_WEBHOOK_SECRETOptional after migrations. Also used for the legacy webhook route.
GITHUB_APP_SLUGOptional. Public app slug used for default install URLs.
CONNECTION_SECRETS_ENCRYPTION_KEYOptional 64-character hex key. When unset, encryption derives from AUTH_SECRET.

Set each GitHub App webhook URL to:

https://<public-origin>/api/v1/webhook/github/<connectionId>

<connectionId> is the con_* connector id.

OAuth sign-in is separate

GITHUB_CLIENT_ID and GITHUB_CLIENT_SECRET are for signing in with GitHub. GitHub App credentials are for repository installation and webhook access.

Atlassian and Confluence

Self-hosted Confluence uses the same product wizard as fully managed ctx|, but your deployment or organization must provide Atlassian and Forge settings first.

VariableDescription
ATLASSIAN_CLIENT_ID, ATLASSIAN_CLIENT_SECRETOptional global Atlassian 3LO app for account linking. If unset, each Forge connection can store its own 3LO credentials through the wizard.
CONFLUENCE_FORGE_INSTALL_URLOptional deployment-wide Forge install URL fallback when a Forge connection has no install URL in connections.config.

See Confluence & Atlassian for the full operator flow.

Observability

ctx| can export OpenTelemetry data when endpoints are configured.

VariableDescription
OTEL_EXPORTER_OTLP_TRACES_ENDPOINTOTLP traces endpoint, for example http://collector:4318/v1/traces.
OTEL_EXPORTER_OTLP_LOGS_ENDPOINTOTLP logs endpoint for evlog drain. If unset, logs go to stdout only.
OTEL_EXPORTER_OTLP_METRICS_ENDPOINTOTLP metrics endpoint.
OTEL_EXPORTER_OTLP_HEADERSOptional headers, for example Authorization=Bearer xxx.
OTEL_SERVICE_NAMEService name for resource attributes.

The repo includes a reference OpenTelemetry Collector in apps/otel-collector that can fan out to APM and Langfuse-style trace backends.

Advanced

VariableDescription
AUTH_ISSUEROverride the OAuth issuer claim. Defaults to AUTH_BASE_URL.
AUTH_ALLOWED_ORIGINSComma-separated list of allowed CORS origins for auth endpoints.
CODESEARCH_URLURL of the codesearch service when running separately.
ENABLE_LANGSMITHSet to "true" to mount the LangGraph Studio API at /langsmith in dev-oriented environments.
AMPLITUDE_API_KEY, AMPLITUDE_REGIONOptional product analytics configuration.

Railway

ctx| can be deployed on Railway with prebuilt images from GitHub Container Registry. A typical flow is:

  1. Build and push service images from CI:
    • ghcr.io/ctxpipe-ai/backend:<sha>
    • ghcr.io/ctxpipe-ai/worker:<sha>
    • ghcr.io/ctxpipe-ai/ui:<sha>
    • ghcr.io/ctxpipe-ai/codesearch:<sha>
  2. Configure Railway services to use image sources.
  3. Set environment variables and secrets in Railway.
  4. Roll production by changing service image tags to the intended commit SHA.
Production readiness

Preflight checks before exposing a deployment.

Operations

Runtime checks, logs, and backups.

Upgrades

Upgrade and rollback process.

Architecture

Service topology and request flow for self-hosted ctx|.

Production readiness

Checklist for running ctx| behind a real public origin.

On this page

RequirementsDocker ComposeRequired variablesEmailSocial sign-inModels and embeddingsGraph databaseGitHub App connectorAtlassian and ConfluenceObservabilityAdvancedRailwayRelated pages