# ===========================================
# Environment Configuration
# ===========================================
# Copy this file to .env and fill in the values

# -------------------------------------------
# Keycloak Configuration
# -------------------------------------------
# Internal URL for backend-to-Keycloak communication (inside Docker network)
KEYCLOAK_SERVER_URL=http://keycloak:8080/
# External URL for browser redirects (accessible from host machine)
KEYCLOAK_EXTERNAL_URL=http://localhost:8081/
KEYCLOAK_REALM=your-realm
KEYCLOAK_CLIENT_ID=your-client-id
KEYCLOAK_CLIENT_SECRET=your-client-secret

# -------------------------------------------
# Frontend Configuration
# -------------------------------------------
# URL where the React frontend is running
FRONTEND_URL=http://localhost:3000

# -------------------------------------------
# Cookie Configuration
# -------------------------------------------
# Name of the authentication cookie
COOKIE_NAME=access_token

# Set to true in production with HTTPS
COOKIE_SECURE=false

# Cookie SameSite policy: "lax", "strict", or "none"
# Use "lax" for most cases, "none" for cross-site (requires COOKIE_SECURE=true)
COOKIE_SAMESITE=lax

# Cookie domain (leave empty for current domain, or set to .yourdomain.com for subdomains)
COOKIE_DOMAIN=

# Cookie max age in seconds (default: 3600 = 1 hour)
COOKIE_MAX_AGE=3600