# OAuth 2.0 Authentication System Environment Variables
# Copy this file to .env.dev, .env.vei, or .env.prod and update values

# Application Environment
ENVIRONMENT=dev  # dev, vei, prod

# Security
SECRET_KEY=your-secret-key-here-change-in-production
JWT_ALGORITHM=HS256
JWT_ACCESS_TOKEN_EXPIRE_MINUTES=30
JWT_REFRESH_TOKEN_EXPIRE_DAYS=7

# MongoDB Configuration
MONGODB_URL=mongodb://admin:admin123@localhost:27017/oauth_db?authSource=admin
DATABASE_NAME=oauth_db

# Redis Configuration
REDIS_URL=redis://localhost:6379
REDIS_DB=0

# API Configuration
API_HOST=0.0.0.0
API_PORT=8000
API_PREFIX=/api/v1

# Frontend Configuration
FRONTEND_URL=http://localhost:5173

# CORS Settings
CORS_ORIGINS=["http://localhost:5173", "http://localhost:9080"]
CORS_ALLOW_CREDENTIALS=true

# Rate Limiting
RATE_LIMIT_REQUESTS=100
RATE_LIMIT_PERIOD=60  # seconds

# Backup and Archive Paths
BACKUP_PATH=/var/backups/oauth
ARCHIVE_PATH=/var/archives/oauth

# Logging
LOG_LEVEL=INFO
LOG_PATH=/var/log/oauth

# Email Configuration (Optional)
EMAIL_ENABLED=false
SMTP_HOST=smtp.gmail.com
SMTP_PORT=587
SMTP_USER=
SMTP_PASSWORD=
EMAIL_FROM=noreply@oauth.local

# OAuth Client Defaults
DEFAULT_CLIENT_ACCESS_TOKEN_EXPIRE_MINUTES=60
DEFAULT_CLIENT_REFRESH_TOKEN_EXPIRE_DAYS=30

# Session Configuration
SESSION_SECRET_KEY=session-secret-key-change-in-production
SESSION_COOKIE_NAME=oauth_session
SESSION_EXPIRE_MINUTES=1440  # 24 hours

# Admin Configuration
ADMIN_EMAIL=admin@oauth.local
ADMIN_PASSWORD=admin123  # Change in production!