Configuration Guide

Comprehensive configuration guide for environment variables and YAML settings across all Copilot-LD components.

Prerequisites

Node.js 22.0.0 or later
Git
GitHub account for authentication and API access

Configuration Files

The Copilot-LD platform uses two primary configuration approaches:

Environment Variables (config/.env): Runtime configuration for services, networking, and authentication
JSON Configuration (config/*.json and config/*.yml): Service behavior, tool definitions, and assistant configurations

Environment Variables

Initial Setup

Create your environment configuration:

cp .env.example .env
cp config/config.example.json config/config.json
cp config/assistants.example.yml config/assistants.yml
cp config/tools.example.yml config/tools.yml

Service Networking

Configure service host and port settings. When using Docker Compose, comment out these variables to use container networking:

Extension Services

# Web Extension (User Interface)
EXTENSION_WEB_HOST=localhost
EXTENSION_WEB_PORT=3000

# GitHub API Token for repository operations

Core Services

# Agent Service (Main Orchestrator)
SERVICE_AGENT_HOST=localhost
SERVICE_AGENT_PORT=3001

# Memory Service (Conversation Storage)
SERVICE_MEMORY_HOST=localhost
SERVICE_MEMORY_PORT=3002

# LLM Service (Language Model Interface)
SERVICE_LLM_HOST=localhost
SERVICE_LLM_PORT=3003

# Vector Service (Embedding Search)
SERVICE_VECTOR_HOST=localhost
SERVICE_VECTOR_PORT=3004

# Graph Service (RDF Graph Queries)
SERVICE_GRAPH_HOST=localhost
SERVICE_GRAPH_PORT=3005

# Tool Service (Function Calls)
SERVICE_TOOL_HOST=localhost
SERVICE_TOOL_PORT=3006

Tool Services

Example tool service configuration:

# Hash Tool Service (Example)
SERVICE_HASH_HOST=localhost
SERVICE_HASH_PORT=3007

GitHub Authentication

Configure GitHub integration for Copilot API access:

# GitHub Client ID (20-character string)
GITHUB_CLIENT_ID=your_client_id_here

# GitHub Token (40-character string)
GITHUB_TOKEN=your_github_token_here

Token Generation

Generate a GitHub token using the OAuth device flow:

# Set GITHUB_CLIENT_ID first, then run:
node scripts/token.js

This command authenticates with GitHub and saves the token directly to GITHUB_TOKEN in your .env file.

Service Secret

Generate shared secrets for inter-service authentication

# Service Secret (32-character string)
SERVICE_SECRET=your_generated_secret_here

Secret Generation

# Generate and automatically update config/.env
node scripts/secret.js

Storage Configuration

Configure storage backends for data persistence. Supports local filesystem and S3-compatible storage:

Local Storage (Default)

Use local filesystem (default behavior, no configuration needed):

STORAGE_TYPE=local

S3-Compatible Storage

Configure S3 or S3-compatible storage. S3_BUCKET_ROLE_ARN is used for local development and CI/CD, while AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY are used for MinIO or direct S3 access:

STORAGE_TYPE=s3

S3_REGION=us-east-1
S3_BUCKET_NAME=copilot-ld
S3_BUCKET_ROLE_ARN=arn:aws:iam::xxxxxxxxxxxx:xxx
AWS_ACCESS_KEY_ID=xxx
AWS_SECRET_ACCESS_KEY=xxx

Development Options

# Enable debug logging for all components
DEBUG=*

# Or enable for specific components
DEBUG=agent

JSON and YAML Configuration

Service Configuration (`config.json`)

Defines service parameters and the available tools in JSON format.

{
  "service": {
    "agent": {
      "assistant": "software_dev_expert",
      "permanent_tools": ["get_ontology", "search_content", "query_by_pattern"],
      "threshold": 0.25,
      "temperature": 0.25,
      "budget": {
        "tokens": 90000,
        "allocation": {
          "tools": 0.1,
          "resources": 0.1,
          "results": 0.8
        }
      }
    },
    "tool": {
      "endpoints": {
        "get_ontology": {
          "method": "graph.Graph.GetOntology",
          "request": "graph.OntologyRequest"
        },
        "query_by_pattern": {
          "method": "graph.Graph.QueryByPattern",
          "request": "graph.PatternQuery"
        },
        "search_content": {
          "method": "vector.Vector.SearchContent",
          "request": "vector.TextQuery"
        }
      }
    }
  }
}

Tool Configuration (`tools.yml`)

Defines tool metadata in YAML format:

sha256_hash:
  purpose: |
    Generate a deterministic SHA-256 cryptographic hash of input text for
    security, verification, or identification purposes.
  applicability: |
    SEQUENCING: Independent utility - no sequencing requirements.
    Use ONLY when user explicitly requests SHA-256 hashing functionality.
    DO NOT use for search, content analysis, or similarity detection.
    Reserved for security, verification, and identification use cases.
  instructions: |
    Input: Text string in 'input' field to be hashed.
    Output: Deterministic 64-character hexadecimal SHA-256 hash string.
    Hash is cryptographically secure and suitable for verification purposes.
  evaluation: |
    Returns exactly 64-character hexadecimal string representing the SHA-256
    hash of the input text.

Assistant Configuration (`assistants.yml`)

Defines AI assistant personas and their specialized behaviors.

software_dev_expert:
  content:
    text: |
      You are a software development expert with deep knowledge of:
      - Software architecture patterns and principles
      - Code quality and maintainability best practices
      - Security considerations in software development

Runtime Configuration

Docker Compose Environment

When using Docker Compose, comment out host and port variables to use container networking. This example uses GNU sed:

sed -i -E '/(HOST|PORT)=/s/^/# /' config/.env
docker compose up

Development vs Production

Development Configuration

Set explicit host/port variables for direct service access
Use local storage or MinIO for data persistence
Enable debug logging with DEBUG=*
Use self-signed certificates for SSL

Production Configuration

Use container networking (comment out host/port variables)
Configure S3-compatible storage with proper credentials
Disable debug logging or set specific namespaces
Use valid TLS certificates from trusted CA
Store secrets in AWS Secrets Manager or similar

Environment Variable Reference

Variable	Purpose	Default	Required
`GITHUB_CLIENT_ID`	GitHub OAuth application client ID	-	Yes
`GITHUB_TOKEN`	GitHub personal access token	-	Yes
`SERVICE_SECRET`	HMAC secret for service authentication	-	Yes
`STORAGE_TYPE`	Storage backend type	`local`	No
`S3_BUCKET_NAME`	S3 bucket name for data storage	`copilot-ld`	S3 or MinIO
`S3_BUCKET_ROLE_ARN`	S3 bucket role ARN for local development and CI/CD	`arn:aws:iam::123456789012:role/S3Access`	Local/CI only
`AWS_ACCESS_KEY_ID`	AWS access key ID for S3 operations	-	MinIO or direct S3
`AWS_SECRET_ACCESS_KEY`	AWS secret access key for S3 operations	-	MinIO or direct S3
`S3_ENDPOINT`	S3-compatible endpoint URL	AWS S3	MinIO only
`MINIO_ROOT_USER`	MinIO administrator username	-	MinIO only
`MINIO_ROOT_PASSWORD`	MinIO administrator password	-	MinIO only
`AWS_REGION`	AWS region for S3 operations	-	S3 only
`DEBUG`	Debug logging configuration	Disabled	No

SSL Certificate Configuration

For HTTPS support in Docker Compose deployments:

Generate Self-Signed Certificates

# Generate certificates for localhost development
node scripts/cert.js

Use Production Certificates

# Copy your production certificates
cp your-cert.crt data/cert/localhost.crt
cp your-cert.key data/cert/localhost.key

Next Steps

Once configuration is complete, proceed to:

Processing Guide - Transform HTML knowledge into searchable resources
Deployment Guide - Launch with Docker Compose or AWS CloudFormation
Development Guide - Run locally with live reloading