# Copy to .env (gitignored) for local dev. In production these come from
# podman secrets and Quadlet env directives — see scripts/p620/tdd-md.container.

# Bun server
PORT=3000
NODE_ENV=production
BASE_URL=https://tdd.md

# Forgejo backend
# In production this is the host-network URL of the forgejo pod
# (host.containers.internal:44400). Locally, point at your dev Forgejo
# or default to the public host.
FORGEJO_URL=http://host.containers.internal:44400
# Generated via: podman exec -u git forgejo forgejo admin user generate-access-token \
#   --username <admin> --token-name local-admin \
#   --scopes write:admin,write:user,write:repository,write:organization
FORGEJO_ADMIN_TOKEN=

# GitHub OAuth (https://github.com/settings/developers)
# Authorization callback URL must be ${BASE_URL}/auth/github/callback
GITHUB_CLIENT_ID=
GITHUB_CLIENT_SECRET=

# HMAC secret for Forgejo push webhooks. Generate via:
#   openssl rand -hex 32
WEBHOOK_SECRET=

# SQLite path for judge verdicts. Defaults to ":memory:" if unset (dev).
TDD_DB_PATH=/app/data/runs.db