Constellation OverwatchConstellation Overwatch
Platform

Configuration

CLI options and environment variables for Constellation Overwatch

Configure Constellation Overwatch using CLI flags or environment variables.

CLI Options

overwatch [options]
FlagDefaultDescription
-port8080HTTP server port
-nats-port4222NATS server port
-api-tokenreindustrialize-dev-tokenAPI bearer token
-nats-tokenreindustrialize-americaNATS authentication token
-data-dir./dataRoot data directory (DB and NATS storage)
-log-levelinfoLogging level (debug, info, warn, error)
--update-Update to the latest version from GitHub releases

Updating

Update to the latest version with a single command:

overwatch --update

This will:

  1. Check GitHub for the latest release
  2. Download the appropriate binary for your platform
  3. Replace the current binary with the new version

Environment Variables

All CLI options can also be set via environment variables:

VariableCLI FlagDescription
OVERWATCH_TOKEN-api-tokenUnified token for API and NATS authentication
PORT-portHTTP server port
OVERWATCH_DATA_DIR-data-dirRoot data directory (default: ./data)
NATS_PORT-nats-portNATS server port
WEB_UI_PASSWORD-Password for Web UI access (leave empty to disable)
OVERWATCH_LOG_LEVEL-log-levelLogging level

Data Directory Layout

The OVERWATCH_DATA_DIR variable controls a single root directory from which all storage paths are derived:

${OVERWATCH_DATA_DIR}/          # default: ./data
├── db/constellation.db         # SQLite database
└── overwatch/                  # NATS JetStream storage

Migrating from older versions: If you previously used DB_PATH or NATS_DATA_DIR in your .env file, replace them with a single OVERWATCH_DATA_DIR entry. Those variables are no longer read.

Example Configurations

Development

overwatch

Uses all default values for local development.

Production

overwatch \
  -port 8080 \
  -api-token $(openssl rand -hex 32) \
  -log-level warn

Update Check

# Check for and install updates
overwatch --update

Docker

docker run -d \
  -p 8080:8080 \
  -p 4222:4222 \
  -e OVERWATCH_TOKEN=your-secure-token \
  -e WEB_UI_PASSWORD=your-web-password \
  -e OVERWATCH_DATA_DIR=/data \
  -v $(pwd)/data:/data \
  constellation-overwatch

Security Recommendations

Always use strong, randomly generated tokens in production environments.

  • Generate tokens with at least 32 bytes of entropy
  • Never commit tokens to version control
  • Use environment variables or secrets management in production
  • Rotate tokens periodically

Quick Start

Get up and running with Constellation Overwatch in minutes

API Reference

Complete API documentation for Constellation Overwatch

On this page

CLI OptionsUpdatingEnvironment VariablesData Directory LayoutExample ConfigurationsDevelopmentProductionUpdate CheckDockerSecurity Recommendations