# Server Configuration
PORT=3001
NODE_ENV=development
ALLOWED_ORIGINS=http://localhost:3001,https://yourdomain.com

# Database Configuration
DB_HOST=localhost
DB_USER=postgres
DB_PASSWORD=password
DB_NAME=invoice_db
DB_PORT=5432
DB_SSL=false
DB_POOL_MAX=5
DB_POOL_MIN=0
DB_POOL_ACQUIRE=30000
DB_POOL_IDLE=10000

# JWT Configuration
JWT_SECRET=your_jwt_secret_key
JWT_EXPIRES_IN=1h
JWT_REFRESH_SECRET=your_refresh_token_secret
JWT_REFRESH_EXPIRES_IN=7d

# Logging
LOG_LEVEL=info
LOG_FORMAT=combined
LOG_FILE_MAX_SIZE=5242880
LOG_MAX_FILES=5

# Rate Limiting
RATE_LIMIT_WINDOW_MS=900000
RATE_LIMIT_MAX_REQUESTS=100
RATE_LIMIT_REDIS_URL=redis://localhost:6379

# Security
BCRYPT_SALT_ROUNDS=12
MAX_FILE_UPLOAD_SIZE=5
CORS_MAX_AGE=86400
SESSION_SECRET=your_session_secret
CSP_REPORT_URI=https://your-report-collector.com/csp

# API Documentation
SWAGGER_TITLE=Invoice API
SWAGGER_VERSION=1.0.0

# Monitoring
SENTRY_DSN=your_sentry_dsn
NEW_RELIC_LICENSE_KEY=your_new_relic_key
DATADOG_API_KEY=your_datadog_api_key

# Cache
REDIS_URL=redis://localhost:6379
CACHE_TTL=3600

# Email
SMTP_HOST=smtp.provider.com
SMTP_PORT=587
SMTP_USER=your_smtp_user
SMTP_PASS=your_smtp_password

# Feature Flags
ENABLE_2FA=true
ENABLE_RATE_LIMITING=true
ENABLE_API_VERSIONING=true