HDB Service is configured entirely via environment variables. All supported variables are documented inDocumentation Index
Fetch the complete documentation index at: https://mintlify.com/GianlucaBessone/HDB-Service/llms.txt
Use this file to discover all available pages before exploring further.
.env.example at the root of the repository — copy it to get started locally, then fill in the real values for each deployment target.
Database
HDB Service uses PostgreSQL (hosted on Supabase) with Prisma as the ORM. TheDATABASE_URL variable holds the connection string used at runtime; Supabase recommends a pooled (PgBouncer) string here so that serverless functions do not exhaust the database connection limit.
PostgreSQL connection string used by the application at runtime. Must include Supabase recommends using the pooled (PgBouncer) connection string here so that serverless functions do not exhaust the database connection limit.
sslmode=require for Supabase.Authentication
HDB Service uses NextAuth.js for session management and authentication. Both variables below must be set before the application will start.The canonical, publicly accessible URL of your deployment. NextAuth.js uses this to build redirect URLs and callback endpoints correctly.For local development, use
http://localhost:3000.A random string of at least 32 characters used to sign and encrypt session tokens and JWTs. Changing this value will immediately invalidate all existing sessions.Generate one with:
Push Notifications (OneSignal)
HDB Service sends real-time push notifications to technicians and supervisors through OneSignal. Both variables must be set for push delivery to work; if either is missing, push calls will silently fail.Your OneSignal Application ID. Found in the OneSignal dashboard under Settings → Keys & IDs.
Your OneSignal REST API Key. Used server-side to authenticate requests to the OneSignal Notifications API. Keep this value secret — it grants full access to send and manage notifications on your app.
Application
The base URL of the application. Used when constructing absolute links inside email notifications (e.g., a “View Ticket” button that links back to the app).In production this should match
NEXTAUTH_URL.Cron Security
A secret Bearer token that must be supplied in the The endpoint checks this value as follows:Generate a strong value with:Then configure the same secret in the Vercel project settings under Environment Variables so Vercel can inject it when invoking the cron automatically.
Authorization header by any caller of the /api/cron endpoint — including Vercel’s automated cron runner and any manual test invocations.