############
# Supabase Configuration
############

# PostgreSQL Database
POSTGRES_HOST=supabase-db
POSTGRES_PORT=5432
POSTGRES_DB=postgres
POSTGRES_PASSWORD=your-super-secret-and-long-postgres-password

# API Gateway (Kong)
KONG_HTTP_PORT=8100
KONG_HTTPS_PORT=8443

# Studio
STUDIO_PORT=3010
STUDIO_DEFAULT_ORGANIZATION=Sriphat Data Platform
STUDIO_DEFAULT_PROJECT=Default Project

# JWT Secret (generate with: openssl rand -base64 32)
JWT_SECRET=your-super-secret-jwt-token-with-at-least-32-characters-long
JWT_EXPIRY=3600

# Anonymous Key (generate with supabase CLI or use default for development)
ANON_KEY=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJzdXBhYmFzZS1kZW1vIiwicm9sZSI6ImFub24iLCJleHAiOjE5ODM4MTI5OTZ9.CRXP1A7WOeoJeXxjNni43kdQwgnWNReilDMblYTn_I0

# Service Role Key (generate with supabase CLI or use default for development)
SERVICE_ROLE_KEY=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJzdXBhYmFzZS1kZW1vIiwicm9sZSI6InNlcnZpY2Vfcm9sZSIsImV4cCI6MTk4MzgxMjk5Nn0.EGIM96RAZx35lJzdJsyH-qQwv8Hdp7fsn3W0YpN81IU

# Dashboard Credentials
DASHBOARD_USERNAME=supabase
DASHBOARD_PASSWORD=this_password_is_insecure_and_should_be_updated

# API URLs
SUPABASE_PUBLIC_URL=http://localhost:8100
API_EXTERNAL_URL=http://localhost:8100
SITE_URL=http://localhost:3010

# Email Configuration (Optional)
ENABLE_EMAIL_SIGNUP=true
ENABLE_EMAIL_AUTOCONFIRM=false
SMTP_ADMIN_EMAIL=admin@sriphat.local
SMTP_HOST=mail.sriphat.local
SMTP_PORT=587
SMTP_USER=
SMTP_PASS=
SMTP_SENDER_NAME=Sriphat Supabase

# Phone Configuration (Optional)
ENABLE_PHONE_SIGNUP=false
ENABLE_PHONE_AUTOCONFIRM=false

# Anonymous Users
ENABLE_ANONYMOUS_USERS=false
DISABLE_SIGNUP=false

# Additional Settings
ADDITIONAL_REDIRECT_URLS=
PGRST_DB_SCHEMAS=public,storage,graphql_public
SECRET_KEY_BASE=your-secret-key-base-change-this-to-a-random-string
VAULT_ENC_KEY=your-vault-encryption-key-change-this
PG_META_CRYPTO_KEY=your-pg-meta-crypto-key-change-this

# Storage
STORAGE_TENANT_ID=stub
REGION=us-east-1
GLOBAL_S3_BUCKET=stub
S3_PROTOCOL_ACCESS_KEY_ID=
S3_PROTOCOL_ACCESS_KEY_SECRET=

# Image Proxy
IMGPROXY_ENABLE_WEBP_DETECTION=true

# Analytics (Logflare)
LOGFLARE_PUBLIC_ACCESS_TOKEN=your-super-secret-logflare-token
LOGFLARE_PRIVATE_ACCESS_TOKEN=your-super-secret-logflare-token

# Edge Functions
FUNCTIONS_VERIFY_JWT=false

# Pooler
POOLER_PROXY_PORT_TRANSACTION=6544

# Docker Socket (for vector logs)
DOCKER_SOCKET_LOCATION=/var/run/docker.sock

# Mailer URL Paths
MAILER_URLPATHS_INVITE=/auth/v1/verify
MAILER_URLPATHS_CONFIRMATION=/auth/v1/verify
MAILER_URLPATHS_RECOVERY=/auth/v1/verify
MAILER_URLPATHS_EMAIL_CHANGE=/auth/v1/verify

# OpenAI (Optional - for AI features in Studio)
OPENAI_API_KEY=