@nsshunt/stsconfig 1.24.13 → 1.25.2

package/src/stsconfig.ts

@@ -9,482 +9,515 @@ import { STSOptions } from './index'
 
 import dotenv from 'dotenv'
 
-export class STSConfig {
+let envOptions: STSOptions | null = null;
 
-	static #envOptions: STSOptions | null = null;
+// Order for config settings
+// -------------------------
+// Passwords;
+//   Use password specified within a database password file (if present)
+//   Fall back to use a password from an environment variable
 
-	// Order for config settings
-	// -------------------------
-	// Passwords;
-	//   Use password specified within a database password file (if present)
-	//   Fall back to use a password from an environment variable
+function SetupConfig(): STSOptions {
 
-	#SetupConfig(): STSOptions {
+	// Add tthe STSENVFILE to script run commands in order to use the require .env file for configuration
+	const envfile = (process.env.STSENVFILE === undefined ? '/.env' : process.env.STSENVFILE);
 
-		// Add tthe STSENVFILE to script run commands in order to use the require .env file for configuration
-		const envfile = (process.env.STSENVFILE === undefined ? '/.env' : process.env.STSENVFILE);
+	//require('dotenv').config({ path: envfile });
+	//const dotenv = await import('dotenv');
+	dotenv.config({ path: envfile })
 
-		//require('dotenv').config({ path: envfile });
-		//const dotenv = await import('dotenv');
-		dotenv.config({ path: envfile })
-
-		const defconfig: STSOptions = 
-		{
+	const defconfig: STSOptions = 
+	{
 		// Node runtime environment
-			isProduction: (process.env.NODE_ENV === undefined ? false : (process.env.NODE_ENV === 'production' ? true : false))
-			// Node runtime environment
-			,isTest: (process.env.NODE_ENV === undefined ? false : (process.env.NODE_ENV === 'test' ? true : false))
-			// Log error messages to the console within the microservice
-			,consoleLogErrors: (process.env.CONSOLE_LOG_ERRORS === undefined ? false : (process.env.CONSOLE_LOG_ERRORS === "true" ? true : false ))
-			// Database username.
-			,dbuser: (process.env.DB_USER === undefined ? 'postgres' : process.env.DB_USER)
-			// Database password.
-			,dbpassword: (process.env.DB_PASSWORD === undefined ? 'postgres' : process.env.DB_PASSWORD)
-			// Database password file
-			,dbpasswordfile: process.env.DB_PASSWORD_FILE
-			// Database host
-			,dbhost: (process.env.DB_HOST === undefined ? 'localhost' : process.env.DB_HOST)
-			// Database port
-			,dbport: (process.env.DB_PORT === undefined ? '5432' : process.env.DB_PORT)
-			// Database name.
-			,database: (process.env.DB_DATABASE === undefined ? 'stsrestmsdb01' : process.env.DB_DATABASE) // STS REST MicroService Database 01
-			// Database connection string to be used in production mode
-			,databaseUrl: process.env.DATABASE_URL
-			// Database script(s) folder
-			,databasescriptfolder: (process.env.DB_SCRIPT_FOLDER === undefined ? "/var/lib/sts/stsglobalresources/db-scripts" : process.env.DB_SCRIPT_FOLDER)
-			// Computed connection string to be used in development mode.
-			,connectionString: ''
-			// Default computed connection string for postgres. Database name = postgres. Used by utilites that create and/or update the STS database(s).
-			,defaultDatabaseConnectionString: ''
-
-			// The maximum pool size for pg. There will be one pool per thread.
-			,poolSize: (process.env.POOL_SIZE === undefined ? 500 : parseInt(process.env.POOL_SIZE))
-			// Maximum number of CPUs (incl. logical processors) to use within the Microservice. 
-			// Use -1 to use all available within the runtime container. Each CPU will spawn a node work thread.
-			,useCPUs: (process.env.MAX_CPU === undefined ? -1 : parseFloat(process.env.MAX_CPU))
-			// Automatically re-spawn a worker thread if one dies.
-			,respawnOnFail: (process.env.RESPAWN === undefined ? false : (process.env.RESPAWN === "true" ? true : false ))
-			// Default number of entries to create for a fresh database.
-			,defaultDatabaseEntries: (process.env.DEFAULT_DB_ENTRIES === undefined ? 10000 : parseInt(process.env.DEFAULT_DB_ENTRIES))
-			// Microservice listen port.
-			,useRedis: (process.env.USE_REDIS === undefined ? false : (process.env.USE_REDIS === "true" ? true : false ))
-			// Use redis for Microservice.
-			,useL1Redis: (process.env.USE_L1_REDIS === undefined ? false : (process.env.USE_L1_REDIS === "true" ? true : false ))
-			// Automatically flush the redis cache when terminating the Microservice.
-			,endFlush: (process.env.REDIS_END_FLUSH === undefined ? false : (process.env.REDIS_END_FLUSH === "true" ? true : false ))
-			// Redis server port.
-			,redisPort: (process.env.REDIS_PORT === undefined ? '6379' : process.env.REDIS_PORT)
-			// Redis server endpoint.
-			,redisServer: (process.env.REDIS_SERVER === undefined ? 'localhost' : process.env.REDIS_SERVER)
-			// Default K6 test script path
-			,k6ScriptPath: (process.env.K6SCRIPTPATH === undefined ? "." : process.env.K6SCRIPTPATH)
-			// Default number of entries to create for a fresh database.
-			,defaultDatabaseMinExtraDataSize: (process.env.DEFAULT_DATABASE_MIN_EXTRA_DATA_SIZE === undefined ? 0 : parseInt(process.env.DEFAULT_DATABASE_MIN_EXTRA_DATA_SIZE))
-			// Default number of entries to create for a fresh database.
-			,defaultDatabaseMaxExtraDataSize: (process.env.DEFAULT_DATABASE_MAX_EXTRA_DATA_SIZE === undefined ? 2000 : parseInt(process.env.DEFAULT_DATABASE_MAX_EXTRA_DATA_SIZE))
-
-			// STSREST01 Server endpoint
-			,rest01endpoint: (process.env.REST01_ENDPOINT === undefined ? "https://localhost" : process.env.REST01_ENDPOINT)
-			// STSREST01 Server port (listen port for the service)
-			,rest01hostport: (process.env.REST01_HOST_PORT === undefined ? "3003" : process.env.REST01_HOST_PORT)
-			// STSREST01 Server port (client port to access the service)
-			,rest01port: (process.env.REST01_PORT === undefined ? "3003" : process.env.REST01_PORT)
-			// STSREST01 Server endpoint
-			,rest01apiroot: (process.env.REST01_APIROOT === undefined ? "/stsrest01/v1" : process.env.REST01_APIROOT)
-			// STSREST01 API Identifier. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
-			,rest01apiidentifier: process.env.REST01_API_IDENTIFIER
-			// STSREST01 API Identifier file. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
-			,rest01apiidentifierfile: process.env.REST01_API_IDENTIFIER_FILE
-			// STSREST01 Prometheus metric support
-			,rest01prometheussupport: (process.env.REST01_PROM_SUPPORT === undefined ? true : (process.env.REST01_PROM_SUPPORT === "true" ? true : false))
-			// STSREST01 Cluster Server port (port used for cluster prometheus scrapes). Service will listen on this port at mount point /metrics
-			,rest01prometheusclusterport: (process.env.REST01_PROM_CLUSTER_PORT === undefined ? "3013" : process.env.REST01_PROM_CLUSTER_PORT)
-			// STSREST01 Service Name
-			,rest01servicename: (process.env.REST01_SERVICE_NAME === undefined ? "STSRest01" : process.env.REST01_SERVICE_NAME)
-			// STSREST01 Service Version
-			,rest01serviceversion: (process.env.REST01_SERVICE_VERSION === undefined ? "1.0.0" : process.env.REST01_SERVICE_VERSION)
-			// STSREST01 Server client ID. Used for oauth2 client credentials flow.
-			// Ref: https://auth0.com/docs/get-started/authentication-and-authorization-flow/client-credentials-flow
-			// Ref: https://auth0.com/docs/get-started/authentication-and-authorization-flow/call-your-api-using-the-client-credentials-flow
-			,rest01clientid: process.env.REST01_CLIENT_ID
-			// STSREST01 Server client ID file. Used for oauth2 client credentials flow.
-			,rest01clientidfile: process.env.REST01_CLIENT_ID_FILE
-			// STSREST01 Server client secret. Used for oauth2 client credentials flow.
-			,rest01clientsecret: process.env.REST01_CLIENT_SECRET
-			// STSREST01 Server client secret file. Used for oauth2 client credentials flow.
-			,rest01clientsecretfile: process.env.REST01_CLIENT_SECRET_FILE
-		
-			// STS Instrument Manager Service endpoint
-			,imendpoint: (process.env.IM_ENDPOINT === undefined ? "https://localhost" : process.env.IM_ENDPOINT)
-			// STS Instrument Manager Service listen port (listen port for the service)
-			,imhostport: (process.env.IM_HOST_PORT === undefined ? "3001" : process.env.IM_HOST_PORT)
-			// STS Instrument Manager Service client access port (client port to access the service)
-			,import: (process.env.IM_PORT === undefined ? "3001" : process.env.IM_PORT)
-			// STS Instrument Manager Service endpoint
-			,imapiroot: (process.env.IM_APIROOT === undefined ? "/stsinstrumentmanager/v1" : process.env.IM_APIROOT)
-			// Instrument Manager API Identifier. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
-			,imapiidentifier: process.env.IM_API_IDENTIFIER
-			//  Instrument Manager API Identifier file. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
-			,imapiidentifierfile: process.env.IM_API_IDENTIFIER_FILE
-			// STS Instrument Manager Prometheus metric support
-			,imprometheussupport: (process.env.IM_PROM_SUPPORT === undefined ? true : (process.env.IM_PROM_SUPPORT === "true" ? true : false ))
-			// STS Instrument Manager Cluster Server port (port used for cluster prometheus scrapes)
-			,imprometheusclusterport: (process.env.IM_PROM_CLUSTER_PORT === undefined ? "3011" : process.env.IM_PROM_CLUSTER_PORT)
-			// STS Instrument Manager Service Name
-			,imservicename: (process.env.IM_SERVICE_NAME === undefined ? "STSInstrumentManager" : process.env.IM_SERVICE_NAME)
-			// STS Instrument Manager Service Version
-			,imserviceversion: (process.env.IM_SERVICE_VERSION === undefined ? "1.0.0" : process.env.IM_SERVICE_VERSION)
-			// STS Instrument Manager Server client ID. Used for oauth2 client credentials flow.
-			,imclientid: process.env.IM_CLIENT_ID
-			// STS Instrument Manager Server client ID file. Used for oauth2 client credentials flow.
-			,imclientidfile: process.env.IM_CLIENT_ID_FILE
-			// STS Instrument Manager Server client secret. Used for oauth2 client credentials flow.
-			,imclientsecret: process.env.IM_CLIENT_SECRET
-			// STS Instrument Manager Server client secret file. Used for oauth2 client credentials flow.
-			,imclientsecretfile: process.env.IM_CLIENT_SECRET_FILE
-
-			// STS Test Orchestrator Service endpoint
-			,toendpoint: (process.env.TO_ENDPOINT === undefined ? "https://localhost" : process.env.TO_ENDPOINT)
-			// STS Test Orchestrator Service listen port (listen port for the service)
-			,tohostport: (process.env.TO_HOST_PORT === undefined ? "3004" : process.env.TO_HOST_PORT)
-			// STS Test Orchestrator Service client access port (client port to access the service)
-			,toport: (process.env.TO_PORT === undefined ? "3004" : process.env.TO_PORT)
-			// STS Test Orchestrator Service endpoint
-			,toapiroot: (process.env.TO_APIROOT === undefined ? "/ststestorchestrator/v1" : process.env.TO_APIROOT)
-			// Test Orchestrator API Identifier. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
-			,toapiidentifier: process.env.TO_API_IDENTIFIER
-			// Test Orchestrator API Identifier file. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
-			,toapiidentifierfile: process.env.TO_API_IDENTIFIER_FILE
-			// STS Test Orchestrator Prometheus metric support
-			,toprometheussupport: (process.env.TO_PROM_SUPPORT === undefined ? true : (process.env.TO_PROM_SUPPORT === "true" ? true : false ))
-			// STS Test Orchestrator Cluster Server port (port used for cluster prometheus scrapes)
-			,toprometheusclusterport: (process.env.TO_PROM_CLUSTER_PORT === undefined ? "3014" : process.env.TO_PROM_CLUSTER_PORT)
-			// STS Test Orchestrator Service Name
-			,toservicename: (process.env.TO_SERVICE_NAME === undefined ? "STSTestOrchestrator" : process.env.TO_SERVICE_NAME)
-			// STS Test Orchestrator Service Version
-			,toserviceversion: (process.env.TO_SERVICE_VERSION === undefined ? "1.0.0" : process.env.TO_SERVICE_VERSION)
-			// STS Test Orchestrator Server client ID. Used for oauth2 client credentials flow.
-			,toclientid: process.env.TO_CLIENT_ID
-			// STS Test Orchestrator Server client ID file. Used for oauth2 client credentials flow.
-			,toclientidfile: process.env.TO_CLIENT_ID_FILE
-			// STS Test Orchestrator Server client secret. Used for oauth2 client credentials flow.
-			,toclientsecret: process.env.TO_CLIENT_SECRET
-			// STS Test Orchestrator Server client secret file. Used for oauth2 client credentials flow.
-			,toclientsecretfile: process.env.TO_CLIENT_SECRET_FILE
-		
-			// STS Auth Server
-			// ---------------
-			// The auth server assumes the roles as an Identify Provider ([TODO]) and Token Server (OAuth2.0).
-			//
-			// Auth Server endpoint
-			,asendpoint: (process.env.AS_ENDPOINT === undefined ? "https://localhost" : process.env.AS_ENDPOINT)
-			// Auth Server host port (listen port for the service)
-			,ashostport: (process.env.AS_HOST_PORT === undefined ? "3002" : process.env.AS_HOST_PORT)
-			// Auth Server port (client port to access the service)
-			,asport: (process.env.AS_PORT === undefined ? "3002" : process.env.AS_PORT)
-			// Auth Server API root.
-			,asapiroot: (process.env.AS_API_ROOT === undefined ? "/stsauth/v1.0" : process.env.AS_API_ROOT)
-			// Auth Server OAuth2 API root.
-			,asoauthapiroot: (process.env.AS_OAUTH_API_ROOT === undefined ? "/oauth2/v2.0" : process.env.AS_OAUTH_API_ROOT)
-			// Auth Server Admin API root.
-			,asadminapiroot: (process.env.AS_ADMIN_API_ROOT === undefined ? "/admin/v1.0" : process.env.AS_ADMIN_API_ROOT)
-			// Auth Server API Identifier.
-			,asapiidentifier: (process.env.AS_API_IDENTIFIER === undefined ? 'https://stsmda.com.au/stsauthapi/v1.0/' : process.env.AS_API_IDENTIFIER)
-			// Auth Server API Identifier file.
-			,asapiidentifierfile: process.env.AS_API_IDENTIFIER_FILE
-			// Auth Server OAuth API Identifier.
-			,asoauthapiidentifier: (process.env.AS_OAUTH_API_IDENTIFIER === undefined ? 'https://stsmda.com.au/stsauthoauthapi/v2.0/' : process.env.AS_OAUTH_API_IDENTIFIER)
-			// Auth Server OAuth API Identifier file.
-			,asoauthapiidentifierfile: process.env.AS_OAUTH_API_IDENTIFIER_FILE
-			// Auth Server Administration API Identifier.
-			,asadminapiidentifier: (process.env.AS_ADMIN_API_IDENTIFIER === undefined ? 'https://stsmda.com.au/stsauthadminapi/v1.0/' : process.env.AS_ADMIN_API_IDENTIFIER)
-			// Auth Server Administration API Identifier file.
-			,asadminapiidentifierfile: process.env.AS_ADMIN_API_IDENTIFIER_FILE
-			// Auth Server Prometheus metric support
-			,asprometheussupport: (process.env.AS_PROM_SUPPORT === undefined ? true : (process.env.AS_PROM_SUPPORT === "true" ? true : false ))
-			// Auth Prometheus Cluster Server port (port used for cluster prometheus scrapes)
-			,asprometheusclusterport: (process.env.AS_PROM_CLUSTER_PORT === undefined ? "3012" : process.env.AS_PROM_CLUSTER_PORT)
-			// STSAuth Service Name
-			,asservicename: (process.env.AS_SERVICE_NAME === undefined ? "STSAuth" : process.env.AS_SERVICE_NAME)
-			// STSAuth Service Version
-			,asserviceversion: (process.env.AS_SERVICE_VERSION === undefined ? "1.0.0" : process.env.AS_SERVICE_VERSION)
-			// STS Auth Server client ID. Used for oauth2 client credentials flow.
-			,asclientid: process.env.AS_CLIENT_ID
-			// STS Auth Server client ID file. Used for oauth2 client credentials flow.
-			,asclientidfile: process.env.AS_CLIENT_ID_FILE
-			// STS Auth Server client secret. Used for oauth2 client credentials flow.
-			,asclientsecret: process.env.AS_CLIENT_SECRET
-			// STS Auth Server client secret file. Used for oauth2 client credentials flow.
-			,asclientsecretfile: process.env.AS_CLIENT_SECRET_FILE
-			// Auth Server - JWKS Public End Point.
-			,asjwksjsonpath: (process.env.AS_JWKS_JSON_PATH === undefined ? "/.well-known/jwks.json" : process.env.AS_JWKS_JSON_PATH)
-			// Auth Server - JWKS key rotation time (seconds).
-			,asjwkskeyrotationtime: (process.env.AS_JWKS_KEY_ROTATION_TIME === undefined ? 86400 : parseInt(process.env.AS_JWKS_KEY_ROTATION_TIME)) // 24 Hour default
-			// Auth Server - JWKS key purge time offset (seconds). Old keys (current keys are considered 'old' immediately after a key rotation) will be kept
-			// for asaccesstokenexpire + asjwkskeypurgetimeoffset seconds before purging from the JWKS.
-			,asjwkskeypurgetimeoffset: (process.env.AS_JWKS_KEY_PURGE_TIME_OFFSET === undefined ? 300 : parseInt(process.env.AS_JWKS_KEY_PURGE_TIME_OFFSET)) // 5 Minutes
-			// Auth Server - JWKS key count. Defines the number of active keys within the JWKS. Note that the actual key count may be double this value as current
-			// keys are rotated to old keys prior to old key purge. Old keys will be kept for asaccesstokenexpire + asjwkskeypurgetimeoffset seconds before removal from the JWKS.
-			// This is to ensure that any tokens signed by a current key that is then expired can still be validated within the life of the issued token.
-			,asjwkskeycount: (process.env.AS_JWKS_KEY_COUNT === undefined ? 4 : parseInt(process.env.AS_JWKS_KEY_COUNT))
-			// Auth Server - JWKS Access token timeout.
-			,asaccesstokenexpire: (process.env.AS_ACCESS_TOKEN_EXPIRE === undefined ? 43200 : parseInt(process.env.AS_ACCESS_TOKEN_EXPIRE)) // 12 Hour default
-
-			// STS Broker Server
-			// ---------------
-			// The STS broker server is a BFF service used for STS SPAs. The service will use 1st party secured cookies for session management.
-			// The service also provides proxy API access to other STS and/or external services.
-			//
-			// STSBroker Server endpoint
-			,brokerendpoint: (process.env.BROKER_ENDPOINT === undefined ? "https://localhost" : process.env.BROKER_ENDPOINT)
-			// STSBroker Server port (listen port for the service)
-			,brokerhostport: (process.env.BROKER_HOST_PORT === undefined ? "3006" : process.env.BROKER_HOST_PORT)
-			// STSBroker Server port (client port to access the service)
-			,brokerport: (process.env.BROKER_PORT === undefined ? "3006" : process.env.BROKER_PORT)
-			// STSBroker Server endpoint
-			,brokerapiroot: (process.env.BROKER_APIROOT === undefined ? "/stsbroker/v1.0" : process.env.BROKER_APIROOT)
-			// STSBroker API Identifier. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
-			,brokerapiidentifier: process.env.BROKER_API_IDENTIFIER
-			// STSBroker API Identifier file. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
-			,brokerapiidentifierfile: process.env.BROKER_API_IDENTIFIER_FILE
-			// STSBroker Prometheus metric support
-			,brokerprometheussupport: (process.env.BROKER_PROM_SUPPORT === undefined ? true : (process.env.BROKER_PROM_SUPPORT === "true" ? true : false))
-			// STSBroker Cluster Server port (port used for cluster prometheus scrapes). Service will listen on this port at mount point /metrics
-			,brokerprometheusclusterport: (process.env.BROKER_PROM_CLUSTER_PORT === undefined ? "3016" : process.env.BROKER_PROM_CLUSTER_PORT)
-			// STSBroker Service Name
-			,brokerservicename: (process.env.BROKER_SERVICE_NAME === undefined ? "STSBroker" : process.env.BROKER_SERVICE_NAME)
-			// STSBroker Service Version
-			,brokerserviceversion: (process.env.BROKER_SERVICE_VERSION === undefined ? "1.0.0" : process.env.BROKER_SERVICE_VERSION)
-			// STSBroker Server client ID. Used for oauth2 client credentials flow.
-			,brokerclientid: process.env.BROKER_CLIENT_ID
-			// STSBroker Server client ID file. Used for oauth2 client credentials flow.
-			,brokerclientidfile: process.env.BROKER_CLIENT_ID_FILE
-			// STSBroker Server client secret. Used for oauth2 client credentials flow.
-			,brokerclientsecret: process.env.BROKER_CLIENT_SECRET
-			// STSBroker Server client secret file. Used for oauth2 client credentials flow.
-			,brokerclientsecretfile: process.env.BROKER_CLIENT_SECRET_FILE
-
-			// STS Test Runner Prometheus metric support
-			,trprometheussupport: (process.env.TR_PROM_SUPPORT === undefined ? true : (process.env.TR_PROM_SUPPORT === "true" ? true : false ))
-			// STS Test Runner Cluster Server port (port used for cluster prometheus scrapes)
-			,trprometheusclusterport: (process.env.TR_PROM_CLUSTER_PORT === undefined ? "3015" : process.env.TR_PROM_CLUSTER_PORT)
-			// STS Test Runner Service Name
-			,trservicename: (process.env.TR_SERVICE_NAME === undefined ? "STSRestRunner" : process.env.TR_SERVICE_NAME)
-			// STS Test Runner Service Version
-			,trserviceversion: (process.env.TR_SERVICE_VERSION === undefined ? "1.0.0" : process.env.TR_SERVICE_VERSION)
-			// STS Test Runner Server client ID. Used for oauth2 client credentials flow.
-			,trclientid: process.env.TR_CLIENT_ID
-			// STS Test Runner Server client ID file. Used for oauth2 client credentials flow.
-			,trclientidfile: process.env.TR_CLIENT_ID_FILE
-			// STS Test Runner Server client secret. Used for oauth2 client credentials flow.
-			,trclientsecret: process.env.TR_CLIENT_SECRET
-			// STS Test Runner Server client secret file. Used for oauth2 client credentials flow.
-			,trclientsecretfile: process.env.TR_CLIENT_SECRET_FILE
-
-			// Duration (in ms) between each publish event.
-			,publishinterval: (process.env.PUBLISH_INTERVAL === undefined ? 1000 : parseInt(process.env.PUBLISH_INTERVAL))
-
-			// The maximum time (in ms) to wait before timeout error when publishing instruments. Ideally, this should always be lower than the publishinterval frequency
-			// to avoid cascading http build up errors.
-			,publishtimeout: (process.env.PUBLISH_TIMEOUT === undefined ? 750 : parseInt(process.env.PUBLISH_TIMEOUT))
-
-			// If true, instrument publish failures will be logged to debug output.
-			,publishdebug: (process.env.PUBLISH_DEBUG === undefined ? false : (process.env.PUBLISH_DEBUG === "true" ? true : false ))
-
-			// Transport(s) to use for sending instrumentation data to the instrumentation server
-			,transport: (process.env.TRANSPORT === undefined ? 'RESTAPI' : process.env.TRANSPORT)
-
-			/*
-		// Instrument Defaults
-		// Logger lines (sliding window size)
-		,instrumentLoggerSize: (process.env.INSTRUMENT_LOGGER_SIZE === undefined ? 200 : parseInt(process.env.INSTRUMENT_LOGGER_SIZE))
-
-		// Histoogram bucket sizes (and default labels)
-		,instrumentHistogramBuckets: (process.env.INSTRUMENT_HISTOGRAM_BUCKETS === undefined ? [ 10, 20, 50, 100, 1000, 5000 ] : JSON.parse(process.env.INSTRUMENT_HISTOGRAM_BUCKETS))
-
-		// Sample interval (ms)
-		,instrumentSampleInterval: (process.env.INSTRUMENT_SAMPLE_INTERVAL === undefined ? 1000 : parseInt(process.env.INSTRUMENT_SAMPLE_INTERVAL))
-
-		// Sample size (number of readings to use for P(x) calculations. Time approx. (Sample Interval / 1000) * Sample Size, i.e. Caluclate P(x) on the observed data for the last 6 minutes.
-		,instrumentSampleSize: (process.env.INSTRUMENT_SAMPLE_SIZE === undefined ? 600 : parseInt(process.env.INSTRUMENT_SAMPLE_SIZE))
-		*/
-
-			// Use secure cookies option when passing back cookies from STS services (such as STSAuth service).
-			// This setting will be ignore for production mode. In production mode services will always use secure cookies.
-			,useSecureCookies: (process.env.USE_SECURE_COOKIES === undefined ? false : (process.env.USE_SECURE_COOKIES === "true" ? true : false ))
-
-			// keepAlive <boolean> Keep sockets around even when there are no outstanding requests, so they can be used for future requests without having to reestablish a 
-			// TCP connection. Not to be confused with the keep-alive value of the Connection header. The Connection: keep-alive header is always sent when using an agent
-			// except when the Connection header is explicitly specified or when the keepAlive and maxSockets options are respectively set to false and Infinity, in which
-			// case Connection: close will be used. Default: false.
-			// Reference: https://nodejs.org/api/http.html#class-httpagent
-			,keepAlive: (process.env.KEEP_ALIVE === undefined ? true : (process.env.KEEP_ALIVE === "true" ? true : false ))
-
-			// maxSockets <number> Maximum number of sockets to allow per host. If the same host opens multiple concurrent connections, each request will use new socket until the
-			// maxSockets value is reached. If the host attempts to open more connections than maxSockets, the additional requests will enter into a pending request queue, and will
-			// enter active connection state when an existing connection terminates. This makes sure there are at most maxSockets active connections at any point in time, 
-			// from a given host. Default: Infinity.	
-			// Reference: https://nodejs.org/api/http.html#class-httpagent
-			,maxSockets: (process.env.MAX_SOCKETS === undefined ? 10 : parseInt(process.env.MAX_SOCKETS))
-
-			// maxTotalSockets <number> Maximum number of sockets allowed for all hosts in total. Each request will use a new socket until the maximum is reached. Default: Infinity.
-			// Reference: https://nodejs.org/api/http.html#class-httpagent
-			,maxTotalSockets: (process.env.MAX_TOTAL_SOCKETS === undefined ? 20 : parseInt(process.env.MAX_TOTAL_SOCKETS))
-
-			// maxFreeSockets <number> Maximum number of sockets per host to leave open in a free state. Only relevant if keepAlive is set to true. Default: 256.
-			// Reference: https://nodejs.org/api/http.html#class-httpagent
-			,maxFreeSockets: (process.env.MAX_FREE_SOCKETS === undefined ? 256 : parseInt(process.env.MAX_FREE_SOCKETS))
-
-			// timeout <number> Socket timeout in milliseconds. This will set the timeout when the socket is created.
-			// Reference: https://nodejs.org/api/http.html#class-httpagent
-			,timeout: (process.env.TIMEOUT === undefined ? 10000 : parseInt(process.env.TIMEOUT))
-
-			// Maximum payload size allowed for express server calls
-			,maxPayloadSize: (process.env.MAX_PAYLOAD_SIZE === undefined ? '50mb' : process.env.MAX_PAYLOAD_SIZE)
-
-			// Instrumentation Config Settings
-			// -------------------------------
-			// Generic interval (ms) to make on observation for instrumentation objects.
-			,instrumentationObservationInterval: (process.env.INSTRUMENTATION_OBSERVATION_INTERVAL === undefined ? 1000 : parseInt(process.env.INSTRUMENTATION_OBSERVATION_INTERVAL))
-
-			// Generic sliding time window (seconds) for instrumentation objects that process telemetry over time (e.g. P(x) instruments).
-			,instrumentationTimeWindow: (process.env.INSTRUMENTATION_TIME_WINDOW === undefined ? 600 : parseInt(process.env.INSTRUMENTATION_TIME_WINDOW))
-
-			// Service Specific Config Settings
-			// --------------------------------
-			// STSAuth
-			// -------
-			// Define the valid age for a JWT access token (in ms). Default 10 minutes.
-			,authJWTAccessTokenTimeout: (process.env.AUTH_JWT_ACCESS_TOKEN_TIMEOUT === undefined ? 600 : parseInt(process.env.AUTH_JWT_ACCESS_TOKEN_TIMEOUT))
-
-			// Define the valid age for a JWT refresh token (in ms). Default 24 hours.
-			,authJWTRefreshTokenTimeout: (process.env.AUTH_JWT_REFRESH_TOKEN_TIMEOUT === undefined ? (3600 * 24) : parseInt(process.env.AUTH_JWT_REFRESH_TOKEN_TIMEOUT))
-
-			// Define the valid age for an authentication/session cookie. Default 24 hours.
-			,authCookieTimeout: (process.env.AUTH_COOKIE_TIMEOUT === undefined ? (3600 * 24) : parseInt(process.env.AUTH_COOKIE_TIMEOUT))
-
-			// STSAppFramework (library)
-			// -------------------------
-			// Define the time (ms) to wait prior to exiting the application (using process.exit(0))
-			,masterProcessExitTime: (process.env.MASTER_PROCESS_EXIT_TIME === undefined ? 500 : parseInt(process.env.MASTER_PROCESS_EXIT_TIME))
-
-			// Define the time (ms) to wait prior to exiting the application (using process.exit(0))
-			,childProcessExitTime: (process.env.CHILD_PROCESS_EXIT_TIME === undefined ? 500 : parseInt(process.env.CHILD_PROCESS_EXIT_TIME))
-
-			// Define the interval (ms) to collect system information for instrumentation purposes
-			,systemInformationInterval: (process.env.SYSTEM_INFORMATION_INTERVAL === undefined ? 1000 : parseInt(process.env.SYSTEM_INFORMATION_INTERVAL))
-
-			// Ignore socket.io REST api calls and/or WebSocket calls when collecting telemetry for instrumentation purposes.
-			,ignoresocketio: (process.env.IGNORE_SOCKETIO === undefined ? true : (process.env.IGNORE_SOCKETIO === "true" ? true : false ))
-
-			/*
-		// STSModels (library)
-		// -------------------
-		// Define the interval for checking instrumentation updates on a instrumentation model. Entries in the model will be removed after this timeout value (ms) if no
-		// activity has been detected. Default 5 seconds.
-		,modelPurgeUpdateTimeout: (process.env.MODEL_PURGE_UPDATE_TIMEOUT === undefined ? 5000 : parseInt(process.env.MODEL_PURGE_UPDATE_TIMEOUT))
-		*/
-
-			// Use command below to create self signed cert;
-			// openssl req -nodes -new -x509 -keyout server.key -out server.cert
-			// Ref: https://www.geeksforgeeks.org/how-to-create-https-server-with-node-js/
-			// HTTPS server key path.
-			,httpsserverkeypath: (process.env.HTTPS_SERVER_KEY_PATH === undefined ? "/var/lib/sts/stsglobalresources/keys/server.key" : process.env.HTTPS_SERVER_KEY_PATH)
-			// HTTPS server cert path.
-			,httpsservercertpath: (process.env.HTTPS_SERVER_CERT_PATH === undefined ? "/var/lib/sts/stsglobalresources/keys/server.cert" : process.env.HTTPS_SERVER_CERT_PATH)
-
-			// Token Service Settings
-			// ----------------------
-			// Maximum number of RSA keys in the JWKS store
-			,tsjwkskeys: (process.env.TS_JWKS_KEYS === undefined ? 3 : parseInt(process.env.TS_JWKS_KEYS))
-
-			// File path for JWKS store data. This file will contain the public and private keys for the JWKS store.
-			,tsjwksstorepath: (process.env.TS_JWKS_STORE_PATH === undefined ? "/var/lib/sts/stsglobalresources/.stsauthprivate/jwks-private.json" : process.env.TS_JWKS_STORE_PATH)
-			// File path for JWKS store path config setting (tsjwksstorepath). Use this config item with Docker/Kubernetes secrets.
-			,tsjwksstorepathfile: process.env.TS_JWKS_STORE_PATH_FILE
-			// File path for JWKS public store data. This file will contain only the public signing keys for the JWKS store.
-			,tsjwksstorepublicpath: (process.env.TS_JWKS_STORE_PUBLIC_PATH === undefined ? "/var/lib/sts/stsglobalresources/.well-known/jwks.json" : process.env.TS_JWKS_STORE_PUBLIC_PATH)
-
-			// JWKS Authentication Configuration Settings
-			// Ref: https://github.com/auth0/node-jwks-rsa
-			// Enables a LRU cache. Ref: https://github.com/auth0/node-jwks-rsa#caching
-			,jwksAuthConfigCache: (process.env.JWKS_AUTH_CONFIG_CACHE === undefined ? true : (process.env.JWKS_AUTH_CONFIG_CACHE === "true" ? true : false ))
-
-			// Maximum number of LRU cache entries. Ref: https://github.com/auth0/node-jwks-rsa#caching
-			,jwksAuthConfigCacheMaxEntries: (process.env.JWKS_AUTH_CONFIG_CACHE_MAX_ENTRIES === undefined ? 5 : parseInt(process.env.JWKS_AUTH_CONFIG_CACHE_MAX_ENTRIES))
-
-			// Maximum age of LRU cache entries. Ref: https://github.com/auth0/node-jwks-rsa#caching
-			,jwksAuthConfigCacheMaxAge: (process.env.JWKS_AUTH_CONFIG_CACHE_MAX_AGE === undefined ? 600000 : parseInt(process.env.JWKS_AUTH_CONFIG_CACHE_MAX_AGE))
-
-			// Enforce rate limiting for jwks public endpoint query. Ref: https://github.com/auth0/node-jwks-rsa#rate-limiting
-			,jwksAuthConfigRateLimit: (process.env.JWKS_AUTH_CONFIG_RATE_LIMIT === undefined ? true : (process.env.JWKS_AUTH_CONFIG_RATE_LIMIT === "true" ? true : false ))
-
-			// Enforce rate limiting maximum number of requests per minute. Ref: https://github.com/auth0/node-jwks-rsa#rate-limiting
-			,jwksAuthConfigRateLimitRequestsPerMinute: (process.env.JWKS_AUTH_CONFIG_RATE_LIMIT_REQUESTS_PER_MINUTE === undefined ? 10 : parseInt(process.env.JWKS_AUTH_CONFIG_RATE_LIMIT_REQUESTS_PER_MINUTE))
-
-			// Timeout for the public endpoint query. Note: This will be ignored if an http/https agent is specified.
-			,jwksAuthConfigTimeout: (process.env.JWKS_AUTH_CONFIG_TIMEOUT === undefined ? 30000 : parseInt(process.env.JWKS_AUTH_CONFIG_TIMEOUT))
-		}
+		isProduction: (process.env.NODE_ENV === undefined ? false : (process.env.NODE_ENV === 'production' ? true : false))
+		// Node runtime environment
+		,isTest: (process.env.NODE_ENV === undefined ? false : (process.env.NODE_ENV === 'test' ? true : false))
+		// Log error messages to the console within the microservice
+		,consoleLogErrors: (process.env.CONSOLE_LOG_ERRORS === undefined ? false : (process.env.CONSOLE_LOG_ERRORS === "true" ? true : false ))
+		// Database username.
+		,dbuser: (process.env.DB_USER === undefined ? 'postgres' : process.env.DB_USER)
+		// Database password.
+		,dbpassword: (process.env.DB_PASSWORD === undefined ? 'postgres' : process.env.DB_PASSWORD)
+		// Database password file
+		,dbpasswordfile: process.env.DB_PASSWORD_FILE
+		// Database host
+		,dbhost: (process.env.DB_HOST === undefined ? 'localhost' : process.env.DB_HOST)
+		// Database port
+		,dbport: (process.env.DB_PORT === undefined ? '5432' : process.env.DB_PORT)
+		// Database name.
+		,database: (process.env.DB_DATABASE === undefined ? 'stsrestmsdb01' : process.env.DB_DATABASE) // STS REST MicroService Database 01
+		// Database connection string to be used in production mode
+		,databaseUrl: process.env.DATABASE_URL
+		// Database script(s) folder
+		,databasescriptfolder: (process.env.DB_SCRIPT_FOLDER === undefined ? "/var/lib/sts/stsglobalresources/db-scripts" : process.env.DB_SCRIPT_FOLDER)
+		// Computed connection string to be used in development mode.
+		,connectionString: ''
+		// Default computed connection string for postgres. Database name = postgres. Used by utilites that create and/or update the STS database(s).
+		,defaultDatabaseConnectionString: ''
+
+		// The maximum pool size for pg. There will be one pool per thread.
+		,poolSize: (process.env.POOL_SIZE === undefined ? 500 : parseInt(process.env.POOL_SIZE))
+		// Maximum number of CPUs (incl. logical processors) to use within the Microservice. 
+		// Use -1 to use all available within the runtime container. Each CPU will spawn a node work thread.
+		,useCPUs: (process.env.MAX_CPU === undefined ? -1 : parseFloat(process.env.MAX_CPU))
+		// Automatically re-spawn a worker thread if one dies.
+		,respawnOnFail: (process.env.RESPAWN === undefined ? false : (process.env.RESPAWN === "true" ? true : false ))
+		// Default number of entries to create for a fresh database.
+		,defaultDatabaseEntries: (process.env.DEFAULT_DB_ENTRIES === undefined ? 10000 : parseInt(process.env.DEFAULT_DB_ENTRIES))
+		// Microservice listen port.
+		,useRedis: (process.env.USE_REDIS === undefined ? false : (process.env.USE_REDIS === "true" ? true : false ))
+		// Use redis for Microservice.
+		,useL1Redis: (process.env.USE_L1_REDIS === undefined ? false : (process.env.USE_L1_REDIS === "true" ? true : false ))
+		// Automatically flush the redis cache when terminating the Microservice.
+		,endFlush: (process.env.REDIS_END_FLUSH === undefined ? false : (process.env.REDIS_END_FLUSH === "true" ? true : false ))
+		// Redis server port.
+		,redisPort: (process.env.REDIS_PORT === undefined ? '6379' : process.env.REDIS_PORT)
+		// Redis server endpoint.
+		,redisServer: (process.env.REDIS_SERVER === undefined ? 'localhost' : process.env.REDIS_SERVER)
+		// Default K6 test script path
+		,k6ScriptPath: (process.env.K6SCRIPTPATH === undefined ? "." : process.env.K6SCRIPTPATH)
+		// Default number of entries to create for a fresh database.
+		,defaultDatabaseMinExtraDataSize: (process.env.DEFAULT_DATABASE_MIN_EXTRA_DATA_SIZE === undefined ? 0 : parseInt(process.env.DEFAULT_DATABASE_MIN_EXTRA_DATA_SIZE))
+		// Default number of entries to create for a fresh database.
+		,defaultDatabaseMaxExtraDataSize: (process.env.DEFAULT_DATABASE_MAX_EXTRA_DATA_SIZE === undefined ? 2000 : parseInt(process.env.DEFAULT_DATABASE_MAX_EXTRA_DATA_SIZE))
+
+		// STSREST01 Server endpoint
+		,rest01endpoint: (process.env.REST01_ENDPOINT === undefined ? "https://localhost" : process.env.REST01_ENDPOINT)
+		// STSREST01 Server port (listen port for the service)
+		,rest01hostport: (process.env.REST01_HOST_PORT === undefined ? "3003" : process.env.REST01_HOST_PORT)
+		// STSREST01 Server port (client port to access the service)
+		,rest01port: (process.env.REST01_PORT === undefined ? "3003" : process.env.REST01_PORT)
+		// STSREST01 Server endpoint
+		,rest01apiroot: (process.env.REST01_APIROOT === undefined ? "/stsrest01/v1" : process.env.REST01_APIROOT)
+		// STSREST01 API Identifier. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
+		,rest01apiidentifier: process.env.REST01_API_IDENTIFIER
+		// STSREST01 API Identifier file. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
+		,rest01apiidentifierfile: process.env.REST01_API_IDENTIFIER_FILE
+		// STSREST01 Prometheus metric support
+		,rest01prometheussupport: (process.env.REST01_PROM_SUPPORT === undefined ? true : (process.env.REST01_PROM_SUPPORT === "true" ? true : false))
+		// STSREST01 Cluster Server port (port used for cluster prometheus scrapes). Service will listen on this port at mount point /metrics
+		,rest01prometheusclusterport: (process.env.REST01_PROM_CLUSTER_PORT === undefined ? "3013" : process.env.REST01_PROM_CLUSTER_PORT)
+		// STSREST01 Service Name
+		,rest01servicename: (process.env.REST01_SERVICE_NAME === undefined ? "STSRest01" : process.env.REST01_SERVICE_NAME)
+		// STSREST01 Service Version
+		,rest01serviceversion: (process.env.REST01_SERVICE_VERSION === undefined ? "1.0.0" : process.env.REST01_SERVICE_VERSION)
+		// STSREST01 Server client ID. Used for oauth2 client credentials flow.
+		// Ref: https://auth0.com/docs/get-started/authentication-and-authorization-flow/client-credentials-flow
+		// Ref: https://auth0.com/docs/get-started/authentication-and-authorization-flow/call-your-api-using-the-client-credentials-flow
+		,rest01clientid: process.env.REST01_CLIENT_ID
+		// STSREST01 Server client ID file. Used for oauth2 client credentials flow.
+		,rest01clientidfile: process.env.REST01_CLIENT_ID_FILE
+		// STSREST01 Server client secret. Used for oauth2 client credentials flow.
+		,rest01clientsecret: process.env.REST01_CLIENT_SECRET
+		// STSREST01 Server client secret file. Used for oauth2 client credentials flow.
+		,rest01clientsecretfile: process.env.REST01_CLIENT_SECRET_FILE
+	
+		// STS Instrument Manager Service endpoint
+		,imendpoint: (process.env.IM_ENDPOINT === undefined ? "https://localhost" : process.env.IM_ENDPOINT)
+		// STS Instrument Manager Service listen port (listen port for the service)
+		,imhostport: (process.env.IM_HOST_PORT === undefined ? "3001" : process.env.IM_HOST_PORT)
+		// STS Instrument Manager Service client access port (client port to access the service)
+		,import: (process.env.IM_PORT === undefined ? "3001" : process.env.IM_PORT)
+		// STS Instrument Manager Service endpoint
+		,imapiroot: (process.env.IM_APIROOT === undefined ? "/stsinstrumentmanager/v1" : process.env.IM_APIROOT)
+		// Instrument Manager API Identifier. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
+		,imapiidentifier: process.env.IM_API_IDENTIFIER
+		//  Instrument Manager API Identifier file. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
+		,imapiidentifierfile: process.env.IM_API_IDENTIFIER_FILE
+		// STS Instrument Manager Prometheus metric support
+		,imprometheussupport: (process.env.IM_PROM_SUPPORT === undefined ? true : (process.env.IM_PROM_SUPPORT === "true" ? true : false ))
+		// STS Instrument Manager Cluster Server port (port used for cluster prometheus scrapes)
+		,imprometheusclusterport: (process.env.IM_PROM_CLUSTER_PORT === undefined ? "3011" : process.env.IM_PROM_CLUSTER_PORT)
+		// STS Instrument Manager Service Name
+		,imservicename: (process.env.IM_SERVICE_NAME === undefined ? "STSInstrumentManager" : process.env.IM_SERVICE_NAME)
+		// STS Instrument Manager Service Version
+		,imserviceversion: (process.env.IM_SERVICE_VERSION === undefined ? "1.0.0" : process.env.IM_SERVICE_VERSION)
+		// STS Instrument Manager Server client ID. Used for oauth2 client credentials flow.
+		,imclientid: process.env.IM_CLIENT_ID
+		// STS Instrument Manager Server client ID file. Used for oauth2 client credentials flow.
+		,imclientidfile: process.env.IM_CLIENT_ID_FILE
+		// STS Instrument Manager Server client secret. Used for oauth2 client credentials flow.
+		,imclientsecret: process.env.IM_CLIENT_SECRET
+		// STS Instrument Manager Server client secret file. Used for oauth2 client credentials flow.
+		,imclientsecretfile: process.env.IM_CLIENT_SECRET_FILE
+
+		// STS Test Orchestrator Service endpoint
+		,toendpoint: (process.env.TO_ENDPOINT === undefined ? "https://localhost" : process.env.TO_ENDPOINT)
+		// STS Test Orchestrator Service listen port (listen port for the service)
+		,tohostport: (process.env.TO_HOST_PORT === undefined ? "3004" : process.env.TO_HOST_PORT)
+		// STS Test Orchestrator Service client access port (client port to access the service)
+		,toport: (process.env.TO_PORT === undefined ? "3004" : process.env.TO_PORT)
+		// STS Test Orchestrator Service endpoint
+		,toapiroot: (process.env.TO_APIROOT === undefined ? "/ststestorchestrator/v1" : process.env.TO_APIROOT)
+		// Test Orchestrator API Identifier. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
+		,toapiidentifier: process.env.TO_API_IDENTIFIER
+		// Test Orchestrator API Identifier file. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
+		,toapiidentifierfile: process.env.TO_API_IDENTIFIER_FILE
+		// STS Test Orchestrator Prometheus metric support
+		,toprometheussupport: (process.env.TO_PROM_SUPPORT === undefined ? true : (process.env.TO_PROM_SUPPORT === "true" ? true : false ))
+		// STS Test Orchestrator Cluster Server port (port used for cluster prometheus scrapes)
+		,toprometheusclusterport: (process.env.TO_PROM_CLUSTER_PORT === undefined ? "3014" : process.env.TO_PROM_CLUSTER_PORT)
+		// STS Test Orchestrator Service Name
+		,toservicename: (process.env.TO_SERVICE_NAME === undefined ? "STSTestOrchestrator" : process.env.TO_SERVICE_NAME)
+		// STS Test Orchestrator Service Version
+		,toserviceversion: (process.env.TO_SERVICE_VERSION === undefined ? "1.0.0" : process.env.TO_SERVICE_VERSION)
+		// STS Test Orchestrator Server client ID. Used for oauth2 client credentials flow.
+		,toclientid: process.env.TO_CLIENT_ID
+		// STS Test Orchestrator Server client ID file. Used for oauth2 client credentials flow.
+		,toclientidfile: process.env.TO_CLIENT_ID_FILE
+		// STS Test Orchestrator Server client secret. Used for oauth2 client credentials flow.
+		,toclientsecret: process.env.TO_CLIENT_SECRET
+		// STS Test Orchestrator Server client secret file. Used for oauth2 client credentials flow.
+		,toclientsecretfile: process.env.TO_CLIENT_SECRET_FILE
+	
+		// STS Auth Server
+		// ---------------
+		// The auth server assumes the roles as an Identify Provider ([TODO]) and Token Server (OAuth2.0).
+		//
+		// Auth Server endpoint
+		,asendpoint: (process.env.AS_ENDPOINT === undefined ? "https://localhost" : process.env.AS_ENDPOINT)
+		// Auth Server host port (listen port for the service)
+		,ashostport: (process.env.AS_HOST_PORT === undefined ? "3002" : process.env.AS_HOST_PORT)
+		// Auth Server port (client port to access the service)
+		,asport: (process.env.AS_PORT === undefined ? "3002" : process.env.AS_PORT)
+		// Auth Server API root.
+		,asapiroot: (process.env.AS_API_ROOT === undefined ? "/stsauth/v1.0" : process.env.AS_API_ROOT)
+		// Auth Server OAuth2 API root.
+		,asoauthapiroot: (process.env.AS_OAUTH_API_ROOT === undefined ? "/oauth2/v2.0" : process.env.AS_OAUTH_API_ROOT)
+		// Auth Server Admin API root.
+		,asadminapiroot: (process.env.AS_ADMIN_API_ROOT === undefined ? "/admin/v1.0" : process.env.AS_ADMIN_API_ROOT)
+		// Auth Server API Identifier.
+		,asapiidentifier: (process.env.AS_API_IDENTIFIER === undefined ? 'https://stsmda.com.au/stsauthapi/v1.0/' : process.env.AS_API_IDENTIFIER)
+		// Auth Server API Identifier file.
+		,asapiidentifierfile: process.env.AS_API_IDENTIFIER_FILE
+		// Auth Server OAuth API Identifier.
+		,asoauthapiidentifier: (process.env.AS_OAUTH_API_IDENTIFIER === undefined ? 'https://stsmda.com.au/stsauthoauthapi/v2.0/' : process.env.AS_OAUTH_API_IDENTIFIER)
+		// Auth Server OAuth API Identifier file.
+		,asoauthapiidentifierfile: process.env.AS_OAUTH_API_IDENTIFIER_FILE
+		// Auth Server Administration API Identifier.
+		,asadminapiidentifier: (process.env.AS_ADMIN_API_IDENTIFIER === undefined ? 'https://stsmda.com.au/stsauthadminapi/v1.0/' : process.env.AS_ADMIN_API_IDENTIFIER)
+		// Auth Server Administration API Identifier file.
+		,asadminapiidentifierfile: process.env.AS_ADMIN_API_IDENTIFIER_FILE
+		// Auth Server Prometheus metric support
+		,asprometheussupport: (process.env.AS_PROM_SUPPORT === undefined ? true : (process.env.AS_PROM_SUPPORT === "true" ? true : false ))
+		// Auth Prometheus Cluster Server port (port used for cluster prometheus scrapes)
+		,asprometheusclusterport: (process.env.AS_PROM_CLUSTER_PORT === undefined ? "3012" : process.env.AS_PROM_CLUSTER_PORT)
+		// STSAuth Service Name
+		,asservicename: (process.env.AS_SERVICE_NAME === undefined ? "STSAuth" : process.env.AS_SERVICE_NAME)
+		// STSAuth Service Version
+		,asserviceversion: (process.env.AS_SERVICE_VERSION === undefined ? "1.0.0" : process.env.AS_SERVICE_VERSION)
+		// STS Auth Server client ID. Used for oauth2 client credentials flow.
+		,asclientid: process.env.AS_CLIENT_ID
+		// STS Auth Server client ID file. Used for oauth2 client credentials flow.
+		,asclientidfile: process.env.AS_CLIENT_ID_FILE
+		// STS Auth Server client secret. Used for oauth2 client credentials flow.
+		,asclientsecret: process.env.AS_CLIENT_SECRET
+		// STS Auth Server client secret file. Used for oauth2 client credentials flow.
+		,asclientsecretfile: process.env.AS_CLIENT_SECRET_FILE
+		// Auth Server - JWKS Public End Point.
+		,asjwksjsonpath: (process.env.AS_JWKS_JSON_PATH === undefined ? "/.well-known/jwks.json" : process.env.AS_JWKS_JSON_PATH)
+		// Auth Server - JWKS key rotation time (seconds).
+		,asjwkskeyrotationtime: (process.env.AS_JWKS_KEY_ROTATION_TIME === undefined ? 86400 : parseInt(process.env.AS_JWKS_KEY_ROTATION_TIME)) // 24 Hour default
+		// Auth Server - JWKS key purge time offset (seconds). Old keys (current keys are considered 'old' immediately after a key rotation) will be kept
+		// for asaccesstokenexpire + asjwkskeypurgetimeoffset seconds before purging from the JWKS.
+		,asjwkskeypurgetimeoffset: (process.env.AS_JWKS_KEY_PURGE_TIME_OFFSET === undefined ? 300 : parseInt(process.env.AS_JWKS_KEY_PURGE_TIME_OFFSET)) // 5 Minutes
+		// Auth Server - JWKS key count. Defines the number of active keys within the JWKS. Note that the actual key count may be double this value as current
+		// keys are rotated to old keys prior to old key purge. Old keys will be kept for asaccesstokenexpire + asjwkskeypurgetimeoffset seconds before removal from the JWKS.
+		// This is to ensure that any tokens signed by a current key that is then expired can still be validated within the life of the issued token.
+		,asjwkskeycount: (process.env.AS_JWKS_KEY_COUNT === undefined ? 4 : parseInt(process.env.AS_JWKS_KEY_COUNT))
+		// Auth Server - JWKS Access token timeout.
+		,asaccesstokenexpire: (process.env.AS_ACCESS_TOKEN_EXPIRE === undefined ? 43200 : parseInt(process.env.AS_ACCESS_TOKEN_EXPIRE)) // 12 Hour default
+
+		// STS Broker Server
+		// ---------------
+		// The STS broker server is a BFF service used for STS SPAs. The service will use 1st party secured cookies for session management.
+		// The service also provides proxy API access to other STS and/or external services.
+		//
+		// STSBroker Server endpoint
+		,brokerendpoint: (process.env.BROKER_ENDPOINT === undefined ? "https://localhost" : process.env.BROKER_ENDPOINT)
+		// STSBroker Server port (listen port for the service)
+		,brokerhostport: (process.env.BROKER_HOST_PORT === undefined ? "3006" : process.env.BROKER_HOST_PORT)
+		// STSBroker Server port (client port to access the service)
+		,brokerport: (process.env.BROKER_PORT === undefined ? "3006" : process.env.BROKER_PORT)
+		// STSBroker Server endpoint
+		,brokerapiroot: (process.env.BROKER_APIROOT === undefined ? "/stsbroker/v1.0" : process.env.BROKER_APIROOT)
+		// STSBroker API Identifier. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
+		,brokerapiidentifier: process.env.BROKER_API_IDENTIFIER
+		// STSBroker API Identifier file. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
+		,brokerapiidentifierfile: process.env.BROKER_API_IDENTIFIER_FILE
+		// STSBroker Prometheus metric support
+		,brokerprometheussupport: (process.env.BROKER_PROM_SUPPORT === undefined ? true : (process.env.BROKER_PROM_SUPPORT === "true" ? true : false))
+		// STSBroker Cluster Server port (port used for cluster prometheus scrapes). Service will listen on this port at mount point /metrics
+		,brokerprometheusclusterport: (process.env.BROKER_PROM_CLUSTER_PORT === undefined ? "3016" : process.env.BROKER_PROM_CLUSTER_PORT)
+		// STSBroker Service Name
+		,brokerservicename: (process.env.BROKER_SERVICE_NAME === undefined ? "STSBroker" : process.env.BROKER_SERVICE_NAME)
+		// STSBroker Service Version
+		,brokerserviceversion: (process.env.BROKER_SERVICE_VERSION === undefined ? "1.0.0" : process.env.BROKER_SERVICE_VERSION)
+		// STSBroker Server client ID. Used for oauth2 client credentials flow.
+		,brokerclientid: process.env.BROKER_CLIENT_ID
+		// STSBroker Server client ID file. Used for oauth2 client credentials flow.
+		,brokerclientidfile: process.env.BROKER_CLIENT_ID_FILE
+		// STSBroker Server client secret. Used for oauth2 client credentials flow.
+		,brokerclientsecret: process.env.BROKER_CLIENT_SECRET
+		// STSBroker Server client secret file. Used for oauth2 client credentials flow.
+		,brokerclientsecretfile: process.env.BROKER_CLIENT_SECRET_FILE
+
+		// STS Test Runner Node (Service)
+		// ------------------------------
+		// The STS Test Runner Node service is used to execute REST API tests.
+		//
+		// STSBroker Server endpoint
+		,trnendpoint: (process.env.TRN_ENDPOINT === undefined ? "https://localhost" : process.env.TRN_ENDPOINT)
+		// STSBroker Server port (listen port for the service)
+		,trnhostport: (process.env.TRN_HOST_PORT === undefined ? "3007" : process.env.TRN_HOST_PORT)
+		// STSBroker Server port (client port to access the service)
+		,trnport: (process.env.TRN_PORT === undefined ? "3007" : process.env.TRN_PORT)
+		// STSBroker Server endpoint
+		,trnapiroot: (process.env.TRN_APIROOT === undefined ? "/ststrn/v1.0" : process.env.TRN_APIROOT)
+		// STSBroker API Identifier. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
+		,trnapiidentifier: process.env.TRN_API_IDENTIFIER
+		// STSBroker API Identifier file. This value will be used as the audience parameter on authorization calls (OAuth2 client credentials flow).
+		,trnapiidentifierfile: process.env.TRN_API_IDENTIFIER_FILE
+		// STSBroker Prometheus metric support
+		,trnprometheussupport: (process.env.TRN_PROM_SUPPORT === undefined ? true : (process.env.TRN_PROM_SUPPORT === "true" ? true : false))
+		// STSBroker Cluster Server port (port used for cluster prometheus scrapes). Service will listen on this port at mount point /metrics
+		,trnprometheusclusterport: (process.env.TRN_PROM_CLUSTER_PORT === undefined ? "3017" : process.env.TRN_PROM_CLUSTER_PORT)
+		// STSBroker Service Name
+		,trnservicename: (process.env.TRN_SERVICE_NAME === undefined ? "STSTestRunnerNode" : process.env.TRN_SERVICE_NAME)
+		// STSBroker Service Version
+		,trnserviceversion: (process.env.TRN_SERVICE_VERSION === undefined ? "1.0.0" : process.env.TRN_SERVICE_VERSION)
+		// STSBroker Server client ID. Used for oauth2 client credentials flow.
+		,trnclientid: process.env.TRN_CLIENT_ID
+		// STSBroker Server client ID file. Used for oauth2 client credentials flow.
+		,trnclientidfile: process.env.TRN_CLIENT_ID_FILE
+		// STSBroker Server client secret. Used for oauth2 client credentials flow.
+		,trnclientsecret: process.env.TRN_CLIENT_SECRET
+		// STSBroker Server client secret file. Used for oauth2 client credentials flow.
+		,trnclientsecretfile: process.env.TRN_CLIENT_SECRET_FILE
+
+		// STS Test Runner Prometheus metric support
+		,trprometheussupport: (process.env.TR_PROM_SUPPORT === undefined ? true : (process.env.TR_PROM_SUPPORT === "true" ? true : false ))
+		// STS Test Runner Cluster Server port (port used for cluster prometheus scrapes)
+		,trprometheusclusterport: (process.env.TR_PROM_CLUSTER_PORT === undefined ? "3015" : process.env.TR_PROM_CLUSTER_PORT)
+		// STS Test Runner Service Name
+		,trservicename: (process.env.TR_SERVICE_NAME === undefined ? "STSRestRunner" : process.env.TR_SERVICE_NAME)
+		// STS Test Runner Service Version
+		,trserviceversion: (process.env.TR_SERVICE_VERSION === undefined ? "1.0.0" : process.env.TR_SERVICE_VERSION)
+		// STS Test Runner Server client ID. Used for oauth2 client credentials flow.
+		,trclientid: process.env.TR_CLIENT_ID
+		// STS Test Runner Server client ID file. Used for oauth2 client credentials flow.
+		,trclientidfile: process.env.TR_CLIENT_ID_FILE
+		// STS Test Runner Server client secret. Used for oauth2 client credentials flow.
+		,trclientsecret: process.env.TR_CLIENT_SECRET
+		// STS Test Runner Server client secret file. Used for oauth2 client credentials flow.
+		,trclientsecretfile: process.env.TR_CLIENT_SECRET_FILE
+
+		// Duration (in ms) between each publish event.
+		,publishinterval: (process.env.PUBLISH_INTERVAL === undefined ? 1000 : parseInt(process.env.PUBLISH_INTERVAL))
+
+		// The maximum time (in ms) to wait before timeout error when publishing instruments. Ideally, this should always be lower than the publishinterval frequency
+		// to avoid cascading http build up errors.
+		,publishtimeout: (process.env.PUBLISH_TIMEOUT === undefined ? 750 : parseInt(process.env.PUBLISH_TIMEOUT))
+
+		// If true, instrument publish failures will be logged to debug output.
+		,publishdebug: (process.env.PUBLISH_DEBUG === undefined ? false : (process.env.PUBLISH_DEBUG === "true" ? true : false ))
+
+		// Transport(s) to use for sending instrumentation data to the instrumentation server
+		,transport: (process.env.TRANSPORT === undefined ? 'RESTAPI' : process.env.TRANSPORT)
+
+		/*
+	// Instrument Defaults
+	// Logger lines (sliding window size)
+	,instrumentLoggerSize: (process.env.INSTRUMENT_LOGGER_SIZE === undefined ? 200 : parseInt(process.env.INSTRUMENT_LOGGER_SIZE))
+
+	// Histoogram bucket sizes (and default labels)
+	,instrumentHistogramBuckets: (process.env.INSTRUMENT_HISTOGRAM_BUCKETS === undefined ? [ 10, 20, 50, 100, 1000, 5000 ] : JSON.parse(process.env.INSTRUMENT_HISTOGRAM_BUCKETS))
+
+	// Sample interval (ms)
+	,instrumentSampleInterval: (process.env.INSTRUMENT_SAMPLE_INTERVAL === undefined ? 1000 : parseInt(process.env.INSTRUMENT_SAMPLE_INTERVAL))
+
+	// Sample size (number of readings to use for P(x) calculations. Time approx. (Sample Interval / 1000) * Sample Size, i.e. Caluclate P(x) on the observed data for the last 6 minutes.
+	,instrumentSampleSize: (process.env.INSTRUMENT_SAMPLE_SIZE === undefined ? 600 : parseInt(process.env.INSTRUMENT_SAMPLE_SIZE))
+	*/
+
+		// Use secure cookies option when passing back cookies from STS services (such as STSAuth service).
+		// This setting will be ignore for production mode. In production mode services will always use secure cookies.
+		,useSecureCookies: (process.env.USE_SECURE_COOKIES === undefined ? false : (process.env.USE_SECURE_COOKIES === "true" ? true : false ))
+
+		// keepAlive <boolean> Keep sockets around even when there are no outstanding requests, so they can be used for future requests without having to reestablish a 
+		// TCP connection. Not to be confused with the keep-alive value of the Connection header. The Connection: keep-alive header is always sent when using an agent
+		// except when the Connection header is explicitly specified or when the keepAlive and maxSockets options are respectively set to false and Infinity, in which
+		// case Connection: close will be used. Default: false.
+		// Reference: https://nodejs.org/api/http.html#class-httpagent
+		,keepAlive: (process.env.KEEP_ALIVE === undefined ? true : (process.env.KEEP_ALIVE === "true" ? true : false ))
+
+		// maxSockets <number> Maximum number of sockets to allow per host. If the same host opens multiple concurrent connections, each request will use new socket until the
+		// maxSockets value is reached. If the host attempts to open more connections than maxSockets, the additional requests will enter into a pending request queue, and will
+		// enter active connection state when an existing connection terminates. This makes sure there are at most maxSockets active connections at any point in time, 
+		// from a given host. Default: Infinity.	
+		// Reference: https://nodejs.org/api/http.html#class-httpagent
+		,maxSockets: (process.env.MAX_SOCKETS === undefined ? 10 : parseInt(process.env.MAX_SOCKETS))
+
+		// maxTotalSockets <number> Maximum number of sockets allowed for all hosts in total. Each request will use a new socket until the maximum is reached. Default: Infinity.
+		// Reference: https://nodejs.org/api/http.html#class-httpagent
+		,maxTotalSockets: (process.env.MAX_TOTAL_SOCKETS === undefined ? 20 : parseInt(process.env.MAX_TOTAL_SOCKETS))
+
+		// maxFreeSockets <number> Maximum number of sockets per host to leave open in a free state. Only relevant if keepAlive is set to true. Default: 256.
+		// Reference: https://nodejs.org/api/http.html#class-httpagent
+		,maxFreeSockets: (process.env.MAX_FREE_SOCKETS === undefined ? 256 : parseInt(process.env.MAX_FREE_SOCKETS))
+
+		// timeout <number> Socket timeout in milliseconds. This will set the timeout when the socket is created.
+		// Reference: https://nodejs.org/api/http.html#class-httpagent
+		,timeout: (process.env.TIMEOUT === undefined ? 10000 : parseInt(process.env.TIMEOUT))
+
+		// Maximum payload size allowed for express server calls
+		,maxPayloadSize: (process.env.MAX_PAYLOAD_SIZE === undefined ? '50mb' : process.env.MAX_PAYLOAD_SIZE)
+
+		// Instrumentation Config Settings
+		// -------------------------------
+		// Generic interval (ms) to make on observation for instrumentation objects.
+		,instrumentationObservationInterval: (process.env.INSTRUMENTATION_OBSERVATION_INTERVAL === undefined ? 1000 : parseInt(process.env.INSTRUMENTATION_OBSERVATION_INTERVAL))
+
+		// Generic sliding time window (seconds) for instrumentation objects that process telemetry over time (e.g. P(x) instruments).
+		,instrumentationTimeWindow: (process.env.INSTRUMENTATION_TIME_WINDOW === undefined ? 600 : parseInt(process.env.INSTRUMENTATION_TIME_WINDOW))
+
+		// Service Specific Config Settings
+		// --------------------------------
+		// STSAuth
+		// -------
+		// Define the valid age for a JWT access token (in ms). Default 10 minutes.
+		,authJWTAccessTokenTimeout: (process.env.AUTH_JWT_ACCESS_TOKEN_TIMEOUT === undefined ? 600 : parseInt(process.env.AUTH_JWT_ACCESS_TOKEN_TIMEOUT))
+
+		// Define the valid age for a JWT refresh token (in ms). Default 24 hours.
+		,authJWTRefreshTokenTimeout: (process.env.AUTH_JWT_REFRESH_TOKEN_TIMEOUT === undefined ? (3600 * 24) : parseInt(process.env.AUTH_JWT_REFRESH_TOKEN_TIMEOUT))
+
+		// Define the valid age for an authentication/session cookie. Default 24 hours.
+		,authCookieTimeout: (process.env.AUTH_COOKIE_TIMEOUT === undefined ? (3600 * 24) : parseInt(process.env.AUTH_COOKIE_TIMEOUT))
+
+		// STSAppFramework (library)
+		// -------------------------
+		// Define the time (ms) to wait prior to exiting the application (using process.exit(0))
+		,masterProcessExitTime: (process.env.MASTER_PROCESS_EXIT_TIME === undefined ? 500 : parseInt(process.env.MASTER_PROCESS_EXIT_TIME))
+
+		// Define the time (ms) to wait prior to exiting the application (using process.exit(0))
+		,childProcessExitTime: (process.env.CHILD_PROCESS_EXIT_TIME === undefined ? 500 : parseInt(process.env.CHILD_PROCESS_EXIT_TIME))
+
+		// Define the interval (ms) to collect system information for instrumentation purposes
+		,systemInformationInterval: (process.env.SYSTEM_INFORMATION_INTERVAL === undefined ? 1000 : parseInt(process.env.SYSTEM_INFORMATION_INTERVAL))
+
+		// Ignore socket.io REST api calls and/or WebSocket calls when collecting telemetry for instrumentation purposes.
+		,ignoresocketio: (process.env.IGNORE_SOCKETIO === undefined ? true : (process.env.IGNORE_SOCKETIO === "true" ? true : false ))
+
+		/*
+	// STSModels (library)
+	// -------------------
+	// Define the interval for checking instrumentation updates on a instrumentation model. Entries in the model will be removed after this timeout value (ms) if no
+	// activity has been detected. Default 5 seconds.
+	,modelPurgeUpdateTimeout: (process.env.MODEL_PURGE_UPDATE_TIMEOUT === undefined ? 5000 : parseInt(process.env.MODEL_PURGE_UPDATE_TIMEOUT))
+	*/
+
+		// Use command below to create self signed cert;
+		// openssl req -nodes -new -x509 -keyout server.key -out server.cert
+		// Ref: https://www.geeksforgeeks.org/how-to-create-https-server-with-node-js/
+		// HTTPS server key path.
+		,httpsserverkeypath: (process.env.HTTPS_SERVER_KEY_PATH === undefined ? "/var/lib/sts/stsglobalresources/keys/server.key" : process.env.HTTPS_SERVER_KEY_PATH)
+		// HTTPS server cert path.
+		,httpsservercertpath: (process.env.HTTPS_SERVER_CERT_PATH === undefined ? "/var/lib/sts/stsglobalresources/keys/server.cert" : process.env.HTTPS_SERVER_CERT_PATH)
+
+		// Token Service Settings
+		// ----------------------
+		// Maximum number of RSA keys in the JWKS store
+		,tsjwkskeys: (process.env.TS_JWKS_KEYS === undefined ? 3 : parseInt(process.env.TS_JWKS_KEYS))
+
+		// File path for JWKS store data. This file will contain the public and private keys for the JWKS store.
+		,tsjwksstorepath: (process.env.TS_JWKS_STORE_PATH === undefined ? "/var/lib/sts/stsglobalresources/.stsauthprivate/jwks-private.json" : process.env.TS_JWKS_STORE_PATH)
+		// File path for JWKS store path config setting (tsjwksstorepath). Use this config item with Docker/Kubernetes secrets.
+		,tsjwksstorepathfile: process.env.TS_JWKS_STORE_PATH_FILE
+		// File path for JWKS public store data. This file will contain only the public signing keys for the JWKS store.
+		,tsjwksstorepublicpath: (process.env.TS_JWKS_STORE_PUBLIC_PATH === undefined ? "/var/lib/sts/stsglobalresources/.well-known/jwks.json" : process.env.TS_JWKS_STORE_PUBLIC_PATH)
+
+		// JWKS Authentication Configuration Settings
+		// Ref: https://github.com/auth0/node-jwks-rsa
+		// Enables a LRU cache. Ref: https://github.com/auth0/node-jwks-rsa#caching
+		,jwksAuthConfigCache: (process.env.JWKS_AUTH_CONFIG_CACHE === undefined ? true : (process.env.JWKS_AUTH_CONFIG_CACHE === "true" ? true : false ))
+
+		// Maximum number of LRU cache entries. Ref: https://github.com/auth0/node-jwks-rsa#caching
+		,jwksAuthConfigCacheMaxEntries: (process.env.JWKS_AUTH_CONFIG_CACHE_MAX_ENTRIES === undefined ? 5 : parseInt(process.env.JWKS_AUTH_CONFIG_CACHE_MAX_ENTRIES))
+
+		// Maximum age of LRU cache entries. Ref: https://github.com/auth0/node-jwks-rsa#caching
+		,jwksAuthConfigCacheMaxAge: (process.env.JWKS_AUTH_CONFIG_CACHE_MAX_AGE === undefined ? 600000 : parseInt(process.env.JWKS_AUTH_CONFIG_CACHE_MAX_AGE))
+
+		// Enforce rate limiting for jwks public endpoint query. Ref: https://github.com/auth0/node-jwks-rsa#rate-limiting
+		,jwksAuthConfigRateLimit: (process.env.JWKS_AUTH_CONFIG_RATE_LIMIT === undefined ? true : (process.env.JWKS_AUTH_CONFIG_RATE_LIMIT === "true" ? true : false ))
+
+		// Enforce rate limiting maximum number of requests per minute. Ref: https://github.com/auth0/node-jwks-rsa#rate-limiting
+		,jwksAuthConfigRateLimitRequestsPerMinute: (process.env.JWKS_AUTH_CONFIG_RATE_LIMIT_REQUESTS_PER_MINUTE === undefined ? 10 : parseInt(process.env.JWKS_AUTH_CONFIG_RATE_LIMIT_REQUESTS_PER_MINUTE))
+
+		// Timeout for the public endpoint query. Note: This will be ignored if an http/https agent is specified.
+		,jwksAuthConfigTimeout: (process.env.JWKS_AUTH_CONFIG_TIMEOUT === undefined ? 30000 : parseInt(process.env.JWKS_AUTH_CONFIG_TIMEOUT))
+	}
 
-		const ReadFile = (passwordFile: string) => {
-			try {
-				accessSync(passwordFile, constants.R_OK);
-				const data = readFileSync(passwordFile, 'utf8');
-				debug(`Successfully loaded password file: [${passwordFile}]`.green);
-				return data;
-			} catch (err) {
-				debug(`Problem loading password file: [${passwordFile}], Error: [${err}]`.red);
-				return "";
-			}
+	const ReadFile = (passwordFile: string) => {
+		try {
+			accessSync(passwordFile, constants.R_OK);
+			const data = readFileSync(passwordFile, 'utf8');
+			debug(`Successfully loaded password file: [${passwordFile}]`.green);
+			return data;
+		} catch (err) {
+			debug(`Problem loading password file: [${passwordFile}], Error: [${err}]`.red);
+			return "";
 		}
-
-		// File based configuration settings. If a file is specified for a setting, this will be used. The non file version (if specified) will be ignored.
-		const fileconfig = [
-			{ fileprop: 'dbpasswordfile', prop: 'dbpassword' },
-			// API identifier file processing
-			{ fileprop: 'asapiidentifierfile', prop: 'asapiidentifier' },
-			{ fileprop: 'asoauthapiidentifierfile', prop: 'asoauthapiidentifier' },
-			{ fileprop: 'asadminapiidentifierfile', prop: 'asadminapiidentifier' },
-			{ fileprop: 'rest01apiidentifierfile', prop: 'rest01apiidentifier' },
-			{ fileprop: 'brokerapiidentifierfile', prop: 'brokerapiidentifier' },
-			{ fileprop: 'toapiidentifierfile', prop: 'toapiidentifier' },
-			{ fileprop: 'imapiidentifierfile', prop: 'imapiidentifier' },
-			// Client ID file processing
-			{ fileprop: 'asclientidfile', prop: 'asclientid' },
-			{ fileprop: 'rest01clientidfile', prop: 'rest01clientid' },
-			{ fileprop: 'brokerclientidfile', prop: 'brokerclientid' },
-			{ fileprop: 'toclientidfile', prop: 'toclientid' },
-			{ fileprop: 'imclientidfile', prop: 'imclientid' },
-			{ fileprop: 'trclientidfile', prop: 'trclientid' },
-			// Client secret file processing
-			{ fileprop: 'asclientsecretfile', prop: 'asclientsecret' },
-			{ fileprop: 'rest01clientsecretfile', prop: 'rest01clientsecret' },
-			{ fileprop: 'brokerclientsecretfile', prop: 'brokerclientsecret' },
-			{ fileprop: 'toclientsecretfile', prop: 'toclientsecret' },
-			{ fileprop: 'imclientsecretfile', prop: 'imclientsecret' },
-			{ fileprop: 'trclientsecretfile', prop: 'trclientsecret' },
-			// JWKS secret file processing
-			{ fileprop: 'tsjwksstorepathfile', prop: 'tsjwksstorepath' },
-		]
-
-		fileconfig.forEach((v) => {
-			if (defconfig[v.fileprop] !== undefined) {
-				defconfig[v.prop] = ReadFile(defconfig[v.fileprop] as string);
-			}
-		});
-
-		return defconfig;
 	}
 
-	$Options(): STSOptions {
-		if (STSConfig.#envOptions === null) {
-			STSConfig.#envOptions = this.#SetupConfig();
-			// Computed connection string to be used in development mode.
-			const options = STSConfig.#envOptions;
-			STSConfig.#envOptions.connectionString = `postgresql://${options.dbuser}:${options.dbpassword}@${options.dbhost}:${options.dbport}/${options.database}`
-			// Default computed connection string for postgres. Database name = postgres. Used by utilites that create and/or update the STS database(s).
-			STSConfig.#envOptions.defaultDatabaseConnectionString = `postgresql://${options.dbuser}:${options.dbpassword}@${options.dbhost}:${options.dbport}/postgres`
+	// File based configuration settings. If a file is specified for a setting, this will be used. The non file version (if specified) will be ignored.
+	const fileconfig = [
+		{ fileprop: 'dbpasswordfile', prop: 'dbpassword' },
+		// API identifier file processing
+		{ fileprop: 'asapiidentifierfile', prop: 'asapiidentifier' },
+		{ fileprop: 'asoauthapiidentifierfile', prop: 'asoauthapiidentifier' },
+		{ fileprop: 'asadminapiidentifierfile', prop: 'asadminapiidentifier' },
+		{ fileprop: 'rest01apiidentifierfile', prop: 'rest01apiidentifier' },
+		{ fileprop: 'brokerapiidentifierfile', prop: 'brokerapiidentifier' },
+		{ fileprop: 'toapiidentifierfile', prop: 'toapiidentifier' },
+		{ fileprop: 'imapiidentifierfile', prop: 'imapiidentifier' },
+		{ fileprop: 'trnapiidentifierfile', prop: 'trnapiidentifier' },
+		// Client ID file processing
+		{ fileprop: 'asclientidfile', prop: 'asclientid' },
+		{ fileprop: 'rest01clientidfile', prop: 'rest01clientid' },
+		{ fileprop: 'brokerclientidfile', prop: 'brokerclientid' },
+		{ fileprop: 'toclientidfile', prop: 'toclientid' },
+		{ fileprop: 'imclientidfile', prop: 'imclientid' },
+		{ fileprop: 'trclientidfile', prop: 'trclientid' },
+		{ fileprop: 'trnclientidfile', prop: 'trnclientid' },
+		// Client secret file processing
+		{ fileprop: 'asclientsecretfile', prop: 'asclientsecret' },
+		{ fileprop: 'rest01clientsecretfile', prop: 'rest01clientsecret' },
+		{ fileprop: 'brokerclientsecretfile', prop: 'brokerclientsecret' },
+		{ fileprop: 'toclientsecretfile', prop: 'toclientsecret' },
+		{ fileprop: 'imclientsecretfile', prop: 'imclientsecret' },
+		{ fileprop: 'trclientsecretfile', prop: 'trclientsecret' },
+		{ fileprop: 'trnclientsecretfile', prop: 'trnclientsecret' },
+		// JWKS secret file processing
+		{ fileprop: 'tsjwksstorepathfile', prop: 'tsjwksstorepath' },
+	]
+
+	fileconfig.forEach((v) => {
+		if (defconfig[v.fileprop] !== undefined) {
+			defconfig[v.prop] = ReadFile(defconfig[v.fileprop] as string);
 		}
-		return STSConfig.#envOptions;
+	});
+
+	return defconfig;
+}
+
+export function $Options(): STSOptions {
+	if (envOptions === null) {
+		envOptions = SetupConfig();
+		// Computed connection string to be used in development mode.
+		const options = envOptions;
+		envOptions.connectionString = `postgresql://${options.dbuser}:${options.dbpassword}@${options.dbhost}:${options.dbport}/${options.database}`
+		// Default computed connection string for postgres. Database name = postgres. Used by utilites that create and/or update the STS database(s).
+		envOptions.defaultDatabaseConnectionString = `postgresql://${options.dbuser}:${options.dbpassword}@${options.dbhost}:${options.dbport}/postgres`
 	}
+	return envOptions;
 }