WunderGraph uses three secrets to provide authentication to your deployment. Cryptographically-secure (pseudo-)randomly generated strings should be added to your
Although values will be generated for you in the case that they have not been supplied, these secrets are your responsibility to generate securely. Please ensure to use cryptographically-secure (pseudo-)randomly generated strings of the correct length.
If you do not use fixed values, WunderGraph will regenerate them with every restart. Consequently, any users will be logged out after regeneration.
Example generation using openssl (Windows, Linux, and MacOS)
The following shell command will produce a 32 byte string of random characters.
When in development mode, WunderGraph will use temporary strings of the character "0". These insecure strings will not be used in production.
If you supply randomly generated strings of the correct length to your
.env file, these errors should not occur.
This warning occurs if you do not provide a secret and your system fails to produce a fall-back cryptographically-secure randomly generated string. In this instance, the secret(s) will remain empty and throw a real error during validation.
This warning occurs if you do not provide a secret. WunderGraph will generate one for you, but it is highly recommended that you generate your own.