# ─── Required ───────────────────────────────────────────────────────────────
# PostgreSQL connection string
DATABASE_URL=postgres://forgebucket:password@localhost:5432/forgebucket?sslmode=disable

# Session cookie signing key — must be at least 32 characters
# Generate: openssl rand -hex 32
SESSION_SECRET=

# CSRF protection key — must be exactly 32 characters
# Generate: openssl rand -hex 16
CSRF_SECRET=

# ─── Server ──────────────────────────────────────────────────────────────────
PORT=8080

# Absolute path where bare git repositories are stored on disk
REPO_ROOT=/var/lib/forgebucket/repos

# ─── Federation (ActivityPub) ─────────────────────────────────────────────────
# Public URL of this instance (no trailing slash)
INSTANCE_URL=https://your-instance.example.com
INSTANCE_NAME=ForgeBucket

# ─── OIDC / OAuth2 (optional) ────────────────────────────────────────────────
# OIDC_ISSUER=https://accounts.google.com
# OIDC_CLIENT_ID=
# OIDC_CLIENT_SECRET=

# ─── GitOps ──────────────────────────────────────────────────────────────────
# Seconds between periodic drift checks (0 disables the ticker; push-triggered checks always run).
GITOPS_RECONCILE_INTERVAL=300

# ─── Event Bus (NATS) ────────────────────────────────────────────────────────
# Leave empty to disable event publishing (no-op mode).
# Start NATS with: make docker-up
NATS_URL=nats://localhost:4222

# ─── Dev only ─────────────────────────────────────────────────────────────────
# Set to true to disable Secure cookies and enable verbose logging
DEBUG=false