# Required: random secret used to salt IP hashes and sign sessions
# Generate with: openssl rand -hex 32
SECRET_KEY=replace_me_with_a_random_secret
# Required: admin login token for /admin/login
ADMIN_SECRET_TOKEN=replace_me_with_a_long_random_token

# Optional: force cookie secure behavior (`true` or `false`)
# Leave unset for automatic behavior based on NODE_ENV
# COOKIE_SECURE=

# Database path (Docker mounts /data as a named volume)
DB_PATH=/data/guestbook.db

# Server binding
HOST=0.0.0.0
PORT=3000

# --- Development overrides ---
# For local dev (npm run dev), override with:
# COOKIE_SECURE=false
# DB_PATH=./data/guestbook.db