.env.example

# Server
PORT=3001
NODE_ENV=development

# Stellar
STELLAR_NETWORK=testnet
STELLAR_RPC_URL=https://soroban-testnet.stellar.org
STELLAR_AGENT_SECRET_KEY=your_agent_stellar_secret_key_here
VAULT_CONTRACT_ID=your_deployed_contract_id_here
USDC_TOKEN_ADDRESS=testnet_usdc_contract_address_here

# AI
ANTHROPIC_API_KEY=get_from_console.anthropic.com
BRIAN_API_KEY=get_from_brianknows.org

# Database
DATABASE_URL=postgresql://postgres:password@localhost:5432/neurowealth

# Wallet encryption
# Generate with: openssl rand -hex 32
WALLET_ENCRYPTION_KEY=generate_with_openssl_rand_hex_32

# WhatsApp (optional for local dev)
TWILIO_ACCOUNT_SID=
TWILIO_AUTH_TOKEN=
WHATSAPP_FROM=whatsapp:+14155238886

# JWT
JWT_SEED=your_jwt_secret_seed_here
JWT_SESSION_TTL_HOURS=24
JWT_NONCE_TTL_MS=300000
JWT_CLEANUP_INTERVAL_MS=86400000

# Docker / Postgres (used by docker-compose.yml)
# Database name used by the Postgres container
DB_NAME=postgres
# Postgres password for the `postgres` user (set to a secure value in production)
DB_PASSWORD=password
DB_CONTAINER_NAME=neurowealth_db

# Security — Rate limiting
# Global limiter
RATE_LIMIT_WINDOW_MS=900000
RATE_LIMIT_MAX=100
# Auth endpoints — stricter to resist credential stuffing (15 min window, 20 req)
AUTH_RATE_LIMIT_WINDOW_MS=900000
AUTH_RATE_LIMIT_MAX=20
# Admin endpoints — tightest limits (15 min window, 10 req)
ADMIN_RATE_LIMIT_WINDOW_MS=900000
ADMIN_RATE_LIMIT_MAX=10
# Internal/agent service endpoints — higher throughput (1 min window, 500 req)
INTERNAL_RATE_LIMIT_WINDOW_MS=60000
INTERNAL_RATE_LIMIT_MAX=500
# Trusted-IP bypass: comma-separated IPs that skip all rate limits
TRUSTED_IPS=
# Internal service token: value expected in X-Internal-Token request header
INTERNAL_SERVICE_TOKEN=

# Dead Letter Queue
DLQ_ALERT_THRESHOLD=50