# Copy to deploy/.env on the VPS and fill in. Never commit deploy/.env.
# Used by: docker compose --env-file deploy/.env -f docker-compose.yml -f deploy/docker-compose.prod.yml up -d

# --- Required ---
HOST=e-sign.360dmmc.com
SECRET_KEY_BASE=                       # generate: openssl rand -hex 64

# --- Database (postgres service in compose) ---
POSTGRES_USER=docuseal
POSTGRES_PASSWORD=                     # generate: openssl rand -hex 24
POSTGRES_DB=docuseal
DATABASE_URL=postgres://docuseal:REPLACE_ME@postgres:5432/docuseal

# --- SMTP (Microsoft Exchange / Office 365) ---
# DocuSeal also lets you set SMTP per-account via the admin UI; these env vars
# act as a baseline. Production "from" address and display name are configured
# in the admin UI after first login.
SMTP_ADDRESS=smtp.office365.com
SMTP_PORT=587
SMTP_DOMAIN=360dmmc.com
SMTP_USERNAME=
SMTP_PASSWORD=
SMTP_AUTHENTICATION=login
SMTP_ENABLE_STARTTLS=true

# --- Optional: S3 for attachments (recommended once HIPAA-relevant data lands) ---
# Leave blank for MVP; DocuSeal will store attachments on the local volume.
# S3_ATTACHMENTS_BUCKET=
# AWS_REGION=us-east-1
# AWS_ACCESS_KEY_ID=
# AWS_SECRET_ACCESS_KEY=

# --- Optional: Sidekiq web UI auth (admin-only background job dashboard) ---
# SIDEKIQ_BASIC_AUTH_USERNAME=admin
# SIDEKIQ_BASIC_AUTH_PASSWORD=