.env.example

# Discord Bot Configuration
DISCORD_TOKEN=your_discord_bot_token_here

# =============================================================================
# AI Provider Configuration
# =============================================================================
# LLM_ROUTE determines which AI provider to use:
#   - 'anthropic' = Use Claude Direct (Development)
#   - 'openrouter' = Use OpenRouter (Production/Runtime)
#
# If not set, auto-detects: Development → Claude Direct, Production → OpenRouter
# =============================================================================

# Development Configuration (Use Claude Direct)
LLM_ROUTE=anthropic
CLAUDE_API_KEY=sk-ant-your_claude_api_key_here

# Production Configuration (Use OpenRouter)
# Uncomment these for production/runtime:
# LLM_ROUTE=openrouter
# OPENROUTER_API_KEY=sk-or-v1-your_openrouter_api_key_here
# OPENROUTER_MODEL=anthropic/claude-3-sonnet-20240229

# Database Configuration (optional)
# DATABASE_URL=sqlite:///summarybot.db
# DATABASE_URL=postgresql://user:password@localhost:5432/summarybot

# Cache Configuration
CACHE_BACKEND=memory
CACHE_DEFAULT_TTL=3600
CACHE_MAX_SIZE=1000
# REDIS_URL=redis://localhost:6379/0

# Webhook Configuration
WEBHOOK_ENABLED=true
WEBHOOK_HOST=0.0.0.0
WEBHOOK_PORT=5000
WEBHOOK_CORS_ORIGINS=http://localhost:3000,https://yourdomain.com

# Application Configuration
LOG_LEVEL=INFO
MAX_MESSAGE_BATCH=10000
CACHE_TTL=3600

# Example Guild-specific Configuration
# GUILD_123456789_ENABLED_CHANNELS=channel1,channel2,channel3
# GUILD_123456789_DEFAULT_SUMMARY_LENGTH=detailed
# GUILD_123456789_INCLUDE_BOTS=false
# GUILD_123456789_ALLOWED_ROLES=admin,moderator
# GUILD_123456789_WEBHOOK_ENABLED=true

# =============================================================================
# Command Logging Configuration
# =============================================================================
# Captures all commands from Discord, scheduled tasks, and webhooks
# Automatically sanitizes API keys, tokens, passwords, and IPs
# =============================================================================

# Enable command logging (default: true)
COMMAND_LOG_ENABLED=true

# Log retention in days (default: 90)
COMMAND_LOG_RETENTION_DAYS=90

# Use async batch writes for better performance (default: true)
COMMAND_LOG_ASYNC_WRITES=true

# Batch size for async writes (default: 100)
COMMAND_LOG_BATCH_SIZE=100

# Flush interval in seconds for async writes (default: 5)
COMMAND_LOG_FLUSH_INTERVAL_SECONDS=5

# Enable automatic sensitive data sanitization (default: true)
COMMAND_LOG_SANITIZE_ENABLED=true

# =============================================================================
# WhatsApp Integration (ADR-002)
# =============================================================================
# Enable WhatsApp message ingestion and summarization
# Requires separate WhatsApp Reader Bot (ADR-001) to push messages
# =============================================================================

# API key for POST /api/v1/ingest endpoint (required for WhatsApp)
# Generate a secure random key, e.g.: openssl rand -hex 32
INGEST_API_KEY=

# Auto-summarize WhatsApp messages on ingest (default: false)
WHATSAPP_AUTO_SUMMARIZE=false

# Default summary type for WhatsApp auto-summaries
WHATSAPP_DEFAULT_SUMMARY_TYPE=comprehensive

# Voice note transcription via Whisper API (optional)
# WHISPER_API_URL=https://api.openai.com/v1/audio/transcriptions
# WHISPER_API_KEY=sk-xxxx
# WHISPER_ENABLED=false

# WhatsApp media storage path (optional, for media file storage)
# WHATSAPP_MEDIA_STORAGE_PATH=/data/whatsapp-media
# WHATSAPP_MEDIA_MAX_SIZE_MB=50

# =============================================================================
# Email Delivery Configuration (ADR-030)
# =============================================================================
# Enable email delivery for scheduled summaries
# Summaries can be sent to email addresses as an alternative to Discord
# =============================================================================

# Enable SMTP email delivery (default: false)
SMTP_ENABLED=false

# SMTP server configuration
SMTP_HOST=smtp.example.com
SMTP_PORT=587
SMTP_USERNAME=your_smtp_username
SMTP_PASSWORD=your_smtp_password

# Use TLS encryption (default: true, recommended)
SMTP_USE_TLS=true

# Sender email address and display name
SMTP_FROM_ADDRESS=summarybot@yourdomain.com
SMTP_FROM_NAME=SummaryBot

# Example configurations for common providers:
#
# SendGrid:
#   SMTP_HOST=smtp.sendgrid.net
#   SMTP_PORT=587
#   SMTP_USERNAME=apikey
#   SMTP_PASSWORD=SG.your_sendgrid_api_key
#
# Mailgun:
#   SMTP_HOST=smtp.mailgun.org
#   SMTP_PORT=587
#   SMTP_USERNAME=postmaster@your-domain.mailgun.org
#   SMTP_PASSWORD=your_mailgun_password
#
# Gmail (requires App Password):
#   SMTP_HOST=smtp.gmail.com
#   SMTP_PORT=587
#   SMTP_USERNAME=your_email@gmail.com
#   SMTP_PASSWORD=your_app_password
#
# Mailtrap (for testing):
#   SMTP_HOST=sandbox.smtp.mailtrap.io
#   SMTP_PORT=2525
#   SMTP_USERNAME=your_mailtrap_username
#   SMTP_PASSWORD=your_mailtrap_password

# =============================================================================
# Test Authentication (Development/Testing Only)
# =============================================================================
# Bypass OAuth for API testing with X-Test-Auth-Key header
# Generate secure keys: openssl rand -hex 32
# =============================================================================

# Admin-level test auth (full access including admin-only endpoints like email)
# Usage: curl -H "X-Test-Auth-Key: $TEST_AUTH_ADMIN_SECRET" ...
TEST_AUTH_ADMIN_SECRET=

# User-level test auth (read-only, member permissions)
# Usage: curl -H "X-Test-Auth-Key: $TEST_AUTH_SECRET" ...
TEST_AUTH_SECRET=

# Restrict test auth to specific guilds (comma-separated, or "*" for all)
TEST_GUILD_ID=*