# Application
NODE_ENV=development
PORT=3000
FRONTEND_URL=http://localhost:5173

# Database
DB_HOST=localhost
DB_PORT=5432
DB_USERNAME=finance_user
DB_PASSWORD=secure_password_here
DB_NAME=finance_app

# JWT Security
JWT_SECRET=your_jwt_secret_key_here_minimum_32_characters_long
JWT_REFRESH_SECRET=your_refresh_secret_key_here_minimum_32_characters_long
JWT_ACCESS_EXPIRY=15m
JWT_REFRESH_EXPIRY=7d

# Cookie Settings
COOKIE_DOMAIN=localhost
COOKIE_SECURE=false

# Rate Limiting
RATE_LIMIT_WINDOW=15
RATE_LIMIT_MAX=100
LOGIN_RATE_LIMIT_MAX=5

# Security
BCRYPT_SALT_ROUNDS=12
MAX_LOGIN_ATTEMPTS=10
LOCKOUT_DURATION_MINUTES=30

# AI Integration (Phase 2 - DeepSeek via OpenRouter)
DEEPSEEK_API_KEY=
OPENROUTER_API_KEY=
AI_SERVICE_URL=http://localhost:8000
AI_ENABLED=false

# Logging
LOG_LEVEL=debug
LOG_FORMAT=pretty

# CORS
CORS_ORIGINS=http://localhost:5173,http://localhost:3001