# FILE: infra/environments/local/.env.example
# Local Development Environment Configuration
# Copy this to .env and customize for your local setup

# Domain Configuration
DOMAIN=localhost
EMAIL=dev@localhost

# Database Passwords (use simple passwords for local)
POSTGRES_PASSWORD=postgres
NEO4J_PASSWORD=neo4j123
AUTHENTIK_DB_PASSWORD=authentik123

# Object Storage
MINIO_ROOT_USER=minioadmin
MINIO_ROOT_PASSWORD=minioadmin
MINIO_ACCESS_KEY=minioadmin
MINIO_SECRET_KEY=minioadmin123

# Vector Database
QDRANT__SERVICE__GRPC_PORT=6334

# Secrets Management
VAULT_DEV_ROOT_TOKEN_ID=dev-root-token

# Identity & SSO (optional for local)
AUTHENTIK_SECRET_KEY=local-secret-key-change-me
AUTHENTIK_OUTPOST_TOKEN=local-outpost-token
AUTHENTIK_BOOTSTRAP_EMAIL=admin@localhost
AUTHENTIK_BOOTSTRAP_PASSWORD=admin123
AUTHENTIK_BOOTSTRAP_TOKEN=

# Monitoring
GRAFANA_PASSWORD=admin
GRAFANA_OAUTH_CLIENT_ID=grafana
GRAFANA_OAUTH_CLIENT_SECRET=grafana-secret

# OAuth Client Secrets (not needed for local without Authentik)
AUTHENTIK_API_CLIENT_SECRET=api-secret
AUTHENTIK_UI_REVIEW_CLIENT_SECRET=ui-secret
AUTHENTIK_GRAFANA_CLIENT_SECRET=grafana-secret
AUTHENTIK_MINIO_CLIENT_SECRET=minio-secret
AUTHENTIK_VAULT_CLIENT_SECRET=vault-secret

# Feature Flags
UNLEASH_ADMIN_TOKEN=local-unleash-token

# Application Configuration
NEXTAUTH_SECRET=local-nextauth-secret

# Redis Configuration
REDIS_PASSWORD=redis123

# NATS Configuration
NATS_USER=nats
NATS_PASSWORD=nats123

# Application Secrets
JWT_SECRET=local-jwt-secret-change-me
ENCRYPTION_KEY=local-encryption-key-32-chars!!

# API Keys (for local testing)
OPENAI_API_KEY=sk-test-key
ANTHROPIC_API_KEY=sk-ant-test-key

# Registry Configuration
REGISTRY=localhost:5000
REGISTRY_USER=admin
REGISTRY_PASSWORD=admin123
IMAGE_TAG=latest
OWNER=local