# Configuration
Irrespective of the Tower version you employ, configuration provision occurs through two primary avenues: configuration files or environment variables. Remarkably, both methods can be concurrently utilized.
However, a crucial point to bear in mind is that environment variables take precedence over configuration files. They effectively overwrite any settings specified in the file.
## Configuration variables overview
Below, you'll discover a comprehensive table detailing all configuration variables employed by Tower. Should the need arise to revert your configuration to its default state, utilize the [configuration template file](https://github.com/RPSoftCompany/tower/blob/master/backend/.env_template) provided as an exemplar.
| Environment Variable | Default value | Required |
| -------------------- | ------------------ | -------- |
| HOST | 0.0.0.0 | no |
| PORT | 3000 | no |
| LOG\_LEVEL | \["log","error"] | no |
| DATABASE\_URL | "" | yes |
| SECRET | "" | no |
| TTL | 86400 | no |
| AUDIT\_TTL | 1 | no |
| TOKEN\_HEADERS | \["Authorization"] | no |
| SSL\_KEY\_PATH | "" | no |
| SSL\_CERT\_PATH | "" | no |
| CORS | false | no |
### Configuration variables in details
#### **HOST**
Host on which you Tower instance will be exposed
#### **PORT**
TCP port on which you Tower instance will be exposed
#### **LOG\_LEVEL**
The "Log\_Level" variable constitutes an array of strings dictating the log levels displayed during Tower's operation. Available options include "log," "error," "warn," "debug," and "verbose." For comprehensive insights into log levels within Tower, refer to the [Nest.js documentation](https://docs.nestjs.com/techniques/logger).
#### **DATABASE\_URL**
Database used by your Tower instance. This variable uses standard mongodb connection string format, e.g. mongodb://127.0.0.1:27017/Tower. You can find more details about this format in [mongodb documentation](https://www.mongodb.com/docs/manual/reference/connection-string).
#### **SECRET**
The "Secret" variable is essential for encrypting configurations stored within Tower. It must precisely consist of 32 characters. Should you opt to provide it, ensure utmost security by incorporating a mix of uppercase and lowercase letters, numbers, and special characters.
#### **TTL**
"TTL" is a variable specifying the duration (in seconds) for which access tokens generated within Tower remain valid.
#### **AUDIT\_TTL**
This variable indicates how many days the audit logs will be stored
#### **TOKEN\_HEADERS**
A list of header names that Tower scans for authentication headers during API calls.
#### **SSL\_KEY\_PATH**
Path to your SSL key
#### **SSL\_CERT\_PATH**
Path to your SSL certificate
#### **CORS**
Enables or disables Cross-origin resource sharing (CORS)
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://rpsoft.gitbook.io/tower/installation-1/configuration.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.