# =============================================================================
# TipSharks Production Environment Variables
# =============================================================================
# Copy this file to .env.prod and fill in all secrets.
# Usage: docker compose -f docker-compose.prod.yml --env-file .env.prod up -d
# =============================================================================

# ---------------------------------------------------------------------------
# PostgreSQL (tab-api-ingest)
# ---------------------------------------------------------------------------
POSTGRES_INGEST_USER=racing
POSTGRES_INGEST_PASSWORD=change_me_strong_password
INGEST_DATABASE_URL=postgresql://racing:change_me@postgres-ingest:5432/racing_db

# ---------------------------------------------------------------------------
# PostgreSQL (tipsharks-elo-api)
# ---------------------------------------------------------------------------
POSTGRES_ELO_USER=tipsharks
POSTGRES_ELO_PASSWORD=change_me_strong_password
ELO_DATABASE_URL=postgresql+psycopg://tipsharks:change_me@postgres-elo:5432/tipsharks

# ---------------------------------------------------------------------------
# MongoDB
# ---------------------------------------------------------------------------
MONGO_ROOT_USER=admin
MONGO_ROOT_PASSWORD=change_me_strong_password
MONGO_URL=mongodb://admin:change_me@mongo:27017
MONGO_DB_NAME=tipsharks_client

# ---------------------------------------------------------------------------
# Redis (no auth in default config — configure ACLs in production)
# ---------------------------------------------------------------------------

# ---------------------------------------------------------------------------
# TAB API
# ---------------------------------------------------------------------------
TAB_API_BASE_URL=https://api.tab.co.nz
TAB_API_KEY=optional_api_key
TAB_BASE_URL=https://api.tab.co.nz/affiliates/v1

# ---------------------------------------------------------------------------
# API Security
# ---------------------------------------------------------------------------
API_ADMIN_TOKEN=change_me_very_strong_token
CORS_ORIGINS=https://yourdomain.com,https://app.yourdomain.com

# ---------------------------------------------------------------------------
# Observability
# ---------------------------------------------------------------------------
OTEL_ENDPOINT=http://jaeger:4318

# ---------------------------------------------------------------------------
# Rate Limiting
# ---------------------------------------------------------------------------
RATE_LIMIT_DEFAULT=100/minute
RATE_LIMIT_EXPORT=10/minute
RATE_LIMIT_PREDICTIONS=50/minute