AgenticKode is configured through environment variables, the web UI, and flow prompts.
| Variable | Default | Description |
|---|---|---|
DATABASE_URL | (required) | PostgreSQL connection string |
SECRET_KEY | (required) | Secret for session signing and AES encryption of stored secrets |
CORS_ORIGINS | * | Comma-separated allowed CORS origins |
LOG_LEVEL | INFO | Logging level (DEBUG, INFO, WARNING, ERROR) |
| Variable | Description |
|---|---|
ANTHROPIC_API_KEY | API key for the Claude CLI agent |
OLLAMA_BASE_URL | Ollama server URL for local models (e.g., http://ollama:11434) |
| Variable | Description |
|---|---|
GITHUB_TOKEN | GitHub PAT with repo scope |
GITLAB_TOKEN | GitLab PAT with api scope |
GITLAB_BASE_URL | GitLab instance URL (default: https://gitlab.com) |
GITEA_TOKEN | Gitea access token |
GITEA_BASE_URL | Gitea instance URL |
BITBUCKET_USERNAME | Bitbucket username |
BITBUCKET_APP_PASSWORD | Bitbucket app password |
| Variable | Description |
|---|---|
SLACK_WEBHOOK_URL | Slack incoming webhook |
DISCORD_WEBHOOK_URL | Discord webhook |
TELEGRAM_BOT_TOKEN | Telegram bot token |
TELEGRAM_CHAT_ID | Telegram chat ID |
Manage agents from the Agents page in the UI. The UI surfaces three
CLI agents: claude, codex, and opencode. Each agent has:
The worker auto-installs the Claude CLI binary on workspace servers.
ANTHROPIC_API_KEY — Set per-agent or globally--model claude-sonnet-4-20250514, --max-tokens 4096OpenAI's Codex CLI. Authentication via the agent's own login flow on each workspace server (the Agents panel on a server card exposes a one-click login terminal).
Self-hostable open-source coding agent. Same per-server install + login flow as Codex.
Requires a running Ollama server for local models. Manage models from the GPU Dashboard.
OLLAMA_BASE_URL — Server URLA run is a single flow prompt — a named prompt plus the data AgenticKode
fetches for it. The pipeline runs workspace_setup → init, fetches the flow's
data, calls the agent once, then finalization. The agent's response is the
run outcome. See Autonomous Mode for the full
flow.
Two flow prompts ship by default:
implement — Writes code for a task and opens a PR. Fetches repo + issue
context. The default for new runs.pr_review — Reviews a PR diff and posts a comment. Fetches the PR diff;
runs in generate mode (no checkout).A flow prompt has:
{{run.*}} placeholders.implement or pr_review (drives the fixed data fetch + agent mode).claude, codex, …) or the project/global default.TriggerMatcher).Earlier releases used composable
bash+agentstep workflow templates; those were removed in 0.6.0 (ADR-009).
Per-project configuration is managed from the project's Instructions tab.
Use instructions to provide project context, coding standards, test requirements, and review criteria.
Encrypted secrets stored per-project and auto-injected during execution:
Secrets are encrypted with AES using the SECRET_KEY and never exposed in logs or UI.
Configure from Settings > Notifications:
Notifications fire on run completion, failure, and approval requests.
Each ProjectConfig has three optional fields that override the platform
defaults:
local_path — Absolute path to an existing local git checkout.
When set, workflows skip clone/fetch and operate on this folder
directly. The working tree must be clean (uncommitted changes block
the run); worktree isolation is auto-forced so concurrent runs don't
collide.worker_user_override — OS user the agent runs as for this
project (overrides the workspace server's worker_user). Any step
can override this further with params.run_as.Plus a platform-wide setting in Settings → Workspace:
workspace.default_root — Default workspace_root applied to
new workspace servers when none is supplied at create time.From Settings > Backup:
Backups include all settings but exclude run logs and task history.