###############################################################################
# ESG Lumina — Namecheap Shared Hosting Production .env
# REPLACE every "FILL_ME_*" value via cPanel File Manager before going live.
# This file MUST live at /home/YOUR_CPANEL_USER/laravel_app/.env (NOT inside public_html)
###############################################################################

APP_NAME="ESG Lumina"
APP_ENV=production
APP_KEY=base64:Zq/p7Ek+SslmnXVIz6OffDFTok5fiwQOTPEGG8+1H5E=
APP_DEBUG=false
APP_URL=https://FILL_ME_YOURDOMAIN.com
CORS_ALLOWED_ORIGINS=https://FILL_ME_YOURDOMAIN.com

APP_LOCALE=en
APP_FALLBACK_LOCALE=en
APP_FAKER_LOCALE=en_US

# Shared hosting has no Redis — use file-based maintenance mode
APP_MAINTENANCE_DRIVER=file

PHP_CLI_SERVER_WORKERS=1
BCRYPT_ROUNDS=12

# --- Logging (daily rotation, error-level only to keep disk usage low) ---
LOG_CHANNEL=daily
LOG_STACK=daily
LOG_LEVEL=error
LOG_DAILY_DAYS=7
LOG_DEPRECATIONS_CHANNEL=null

# --- Database (cPanel-created MySQL DB) ---
# In cPanel: "MySQL Databases" — create DB, create user, add user to DB with ALL privileges.
# Names are prefixed with your cPanel username, e.g. cpaneluser_esg
DB_CONNECTION=mysql
DB_HOST=127.0.0.1
DB_PORT=3306
DB_DATABASE=FILL_ME_cpaneluser_esg
DB_USERNAME=FILL_ME_cpaneluser_esguser
DB_PASSWORD=FILL_ME_strong_db_password
DB_CHARSET=utf8mb4
DB_COLLATION=utf8mb4_unicode_ci

# --- Sessions / cache / queue: file-based (no Redis on shared hosting) ---
SESSION_DRIVER=file
SESSION_LIFETIME=120
SESSION_ENCRYPT=true
SESSION_PATH=/
SESSION_DOMAIN=null
SESSION_SECURE_COOKIE=true
SESSION_SAME_SITE=lax

CACHE_DRIVER=file
CACHE_PREFIX=esg_

QUEUE_CONNECTION=sync

# --- Filesystem: local disk only on shared hosting ---
FILESYSTEM_DISK=local

# --- Mail: use cPanel email account OR external SMTP (recommended: Mailgun/SendGrid) ---
MAIL_MAILER=smtp
MAIL_SCHEME=tls
MAIL_HOST=FILL_ME_mail.yourdomain.com
MAIL_PORT=587
MAIL_USERNAME=FILL_ME_noreply@yourdomain.com
MAIL_PASSWORD=FILL_ME_mailbox_password
MAIL_FROM_ADDRESS="noreply@FILL_ME_yourdomain.com"
MAIL_FROM_NAME="${APP_NAME}"

# --- Dev tools: hard off ---
DEBUGBAR_ENABLED=false
QUERY_DETECTOR_ENABLED=false
TELESCOPE_ENABLED=false

# --- Broadcast: off (no Pusher / Redis on shared) ---
BROADCAST_CONNECTION=log

# --- Health check secret ---
HEALTH_CHECK_SECRET=FILL_ME_random_32_char_secret_string

# --- Sentry (optional) ---
SENTRY_LARAVEL_DSN=
SENTRY_TRACES_SAMPLE_RATE=0.0
SENTRY_PROFILES_SAMPLE_RATE=0.0

# --- CSP ---
CSP_ENABLED=true
CSP_REPORT_ONLY=false

# --- Payment gateways ---
STRIPE_KEY=
STRIPE_SECRET=
STRIPE_WEBHOOK_SECRET=
STRIPE_CURRENCY=USD

PAYPAL_MODE=live
PAYPAL_CLIENT_ID=
PAYPAL_SECRET=
PAYPAL_WEBHOOK_ID=
PAYPAL_CURRENCY=USD

AI_CREDITS_ALLOW_STUB=false

# --- AI providers (optional) ---
CODANOVA_API_KEY=
CODANOVA_ENABLED=false
DEEPINFRA_ENABLED=false
AI_DEFAULT_PROVIDER=codanova
AI_FALLBACK_ENABLED=false

# --- Feature flags ---
FEATURE_ML_PREDICTIONS=false
FEATURE_CBAM=true
FEATURE_CSRD_ESRS=true
FEATURE_EU_TAXONOMY=true
FEATURE_IFRS_S2=true
FEATURE_SUPPLIER_PORTAL=true
FEATURE_ANOMALY_DETECTION=true
FEATURE_IOT=false
FEATURE_SMART_BUILDINGS=false
FEATURE_CDP_AUTOFILL=false
FEATURE_WIZARDS_V2=true
FEATURE_AI_COPILOT=false
FEATURE_DOUBLE_MATERIALITY=true

# --- Off-by-default on shared hosting ---
ETHEREUM_ENABLED=false
PUSHER_APP_ID=
PUSHER_APP_KEY=
PUSHER_APP_SECRET=
PUSHER_APP_CLUSTER=mt1

VITE_APP_NAME="${APP_NAME}"

###############################################################################
# DEPLOY SETUP TOKEN — needed by /__deploy_setup.php to run one-time bootstrap
# (storage:link, migrate, optimize). DELETE that file after running.
###############################################################################
DEPLOY_SETUP_TOKEN=6d880fb63a74668f7587658e61ce8a47db3112ed32d0166f
