> ## Documentation Index > Fetch the complete documentation index at: https://engineering.unkey.com/llms.txt > Use this file to discover all available pages before exploring further. # Configuration > Config fields, defaults, and dependencies ## Configuration model Unkey services read configuration from a TOML file passed at startup. Environment variables can be referenced with `${VAR}` and are expanded before parsing. Defaults and validation run after parsing. The config schema maps to [`svc/sentinel/config.go`](https://github.com/unkeyed/unkey/blob/main/svc/sentinel/config.go). Full config example: ```toml theme={"theme":"kanagawa-wave"} sentinel_id = "${POD_NAME}" workspace_id = "${UNKEY_WORKSPACE_ID}" environment_id = "${UNKEY_ENVIRONMENT_ID}" platform = "aws" region = "us-east-1" http_port = 8080 [database] primary = "${UNKEY_DATABASE_PRIMARY}" readonly_replica = "${UNKEY_DATABASE_REPLICA}" [clickhouse] url = "${UNKEY_CLICKHOUSE_URL}" [redis] url = "${UNKEY_REDIS_URL}" [gossip] bind_addr = "0.0.0.0" lan_port = 7946 wan_port = 7947 lan_seeds = ["sentinel-gossip.sentinel.svc.cluster.local:7946"] secret_key = "" [observability.tracing] sample_rate = 0.25 [observability.logging] sample_rate = 1.0 slow_threshold = "1s" [observability.metrics] prometheus_port = 9090 ``` ## Field reference Identifies this sentinel instance in logs, traces, and ClickHouse records. Auto-generated if omitted. Workspace this sentinel serves. Validation rejects empty values. Environment this sentinel serves. Sentinel validates that resolved deployments belong to this environment and returns 404 for mismatches. Underlying cloud platform identifier (for example, `aws`). Geographic region identifier (for example, `us-east-1`). Used for instance selection (sentinel only routes to instances in the same region) and as a label on metrics and traces. TCP port the HTTP server binds to. Range: 1-65535. Krane-managed deployments set this to `8040`. MySQL configuration. Sentinel fails to start without a valid primary DSN. Primary MySQL DSN. Used for all writes and reads when no replica is configured. Read replica MySQL DSN. When configured, read queries are routed to this connection. ClickHouse analytics configuration. When omitted or when the URL is empty, sentinel uses a no-op analytics backend and no request telemetry is recorded. ClickHouse connection string. Example: `clickhouse://default:password@clickhouse:9000?secure=false&skip_verify=true` Redis configuration for rate limiting, usage limiting, and key caching. When omitted or when the URL is empty, the middleware engine is disabled and sentinel operates in pass-through mode (no policy evaluation). Redis connection string. Example: `redis://default:password@redis:6379` Gossip-based distributed cache invalidation. When omitted, sentinel uses local-only caches and relies on TTL expiration for data freshness. With gossip enabled, peer sentinel nodes broadcast invalidation events for faster cache convergence. Address to bind the gossip listener. LAN gossip port (TCP + UDP). WAN gossip port. Seed addresses for LAN cluster discovery. Typically points to the gossip headless Service created by Krane. Seed addresses for WAN cluster discovery. Encryption key for gossip traffic. Sentinel sets this to `nil` at runtime because gossip traffic is restricted by CiliumNetworkPolicy within the environment. Tracing, logging, and metrics configuration. OpenTelemetry trace sampling rate (0.0 to 1.0). Structured log sampling rate. Requests slower than this threshold are logged at a higher level. Port for the Prometheus `/metrics` endpoint. Set to 0 or omit to disable the metrics server. ## Environment variable injection Krane renders the TOML configuration at apply time and injects it via the `UNKEY_CONFIG_DATA` environment variable. Database credentials, Redis URLs, and ClickHouse URLs come from Kubernetes Secrets in the `sentinel` namespace, which Krane templates into the TOML.