# =====================
# Avatar API - Environment Configuration
# Template Version: 1.0.0
# Compatible with octopize-avatar-deploy: >=1.0.0,<2.0.0
# =====================

# --- Project/Organization ---
ENV_NAME=development

# --- Paths & Storage ---
SECRETS_DIR=.secrets
DB_VOLUME=avatar_postgres_data
SEAWEEDFS_VOLUME=avatar_seaweedfs_data
# --- Service Versions ---
AVATAR_API_VERSION=2.77.0
AVATAR_PDFGENERATOR_VERSION=0.2.3
AVATAR_WEB_VERSION=0.63.0
AVATAR_SEAWEEDFS_REGISTRY=chrislusf
AVATAR_SEAWEEDFS_VERSION=4.22

AVATAR_SEAWEEDFS_LOG_VERBOSITY=0

AVATAR_AUTHENTIK_VERSION=2026.2.2
AVATAR_AUTHENTIK_REPOSITORY=ghcr.io/goauthentik

# --- Authentik Bootstrap Configuration ---
# These credentials are used for automated installation (skip OOBE)
AUTHENTIK_BOOTSTRAP_EMAIL=admin@internal.com
AUTHENTIK_BOOTSTRAP_PASSWORD=WymT5tEqtbpiBeczmQtwIVTU9E8PWDh2l66yyfTMpVk
AUTHENTIK_BOOTSTRAP_TOKEN=taD-K2RRQsruOAT6ybN0k9d0X5bDA4KVylDFp-c5njM

# --- Service URLs ---
AVATAR_DOMAIN=avatar.internal.com
# Defines the URL where the web client is served.
AVATAR_WEB_CLIENT_URL=https://avatar.internal.com/web/
# Defines the URL where the PDF generator is served.
AVATAR_PDFGENERATOR_URL=http://pdfgenerator:8000# --- API Configuration ---

# Defines the URL where the API is served.
AVATAR_API_URL=https://avatar.internal.com/api
# Public and internal storage endpoint URLs
AVATAR_STORAGE_ENDPOINT_PUBLIC_URL=https://avatar.internal.com/storage
AVATAR_STORAGE_ENDPOINT_INTERNAL_URL=http://s3:8333


## SSO Configuration ##
# Blueprint environment variables (used by authentik to resolve !Env tags in the blueprint)
AVATAR_AUTHENTIK_BLUEPRINT_DOMAIN=avatar.internal.com
AVATAR_AUTHENTIK_BLUEPRINT_CLIENT_ID=d797d62e31066d474e40393f04a934208807fd6ed149eed578ee010f7987c239
AVATAR_AUTHENTIK_BLUEPRINT_CLIENT_SECRET=381f816bf1125122aae5a0bb44cd7f6e2c4b57a7ba0678cc2fa359b502dfe34b
AVATAR_AUTHENTIK_BLUEPRINT_API_REDIRECT_URI=https://avatar.internal.com/api/login/sso/auth
AVATAR_AUTHENTIK_BLUEPRINT_SELF_SERVICE_LICENSE=demo

# SSO settings for the Avatar API service
SSO_CLIENT_ID=d797d62e31066d474e40393f04a934208807fd6ed149eed578ee010f7987c239
SSO_CLIENT_SECRET=381f816bf1125122aae5a0bb44cd7f6e2c4b57a7ba0678cc2fa359b502dfe34b
SSO_PROVIDER_APP_NAME=avatar-api
SSO_PROVIDER_URL=https://avatar.internal.com/sso


# Number of days after which datasets will be deleted (ISO8601 timedelta string, e.g. 30d, 2w, 12h)
SHARED_STORAGE_PATH=s3://{user_id}/{expire_days}d # for seaweedfs

# --- Logging & Debug ---
# Whether to prettify the logger output. Default is false, and will output JSON.
USE_CONSOLE_LOGGING=false
# Whether to enable Sentry for error tracking.
IS_SENTRY_ENABLED=false
# Logging level. Can be one of DEBUG, INFO, WARNING, ERROR, CRITICAL.
LOG_LEVEL=INFO

# =============================
# SMTP Email Configuration
#
# SMTP_HOST=smtp.internal.com
# SMTP_PORT=587
# SMTP_USE_TLS=true
# SMTP_START_TLS=false
# SMTP_VERIFY=true
# SMTP_SENDER_EMAIL=noreply@internal.com
# # SMTP_USERNAME=<your-smtp-username>    # Optional, if SMTP server requires auth
# # SMTP_PASSWORD=<your-smtp-password>    # Optional, if SMTP server requires auth


# # =============================

# =============================
# To enable Telemetry, set the following variables:
# Telemetry is disabled
# TELEMETRY_S3_ENDPOINT_URL=
# TELEMETRY_S3_REGION=
# TELEMETRY_S3_BUCKET_NAME=
# =============================
