# ============================================================================= # .env.production — secrets + dynamic ports for the running containers # ============================================================================= # # deploy.sh writes the first three lines on every successful deploy. # Everything below is YOUR responsibility to populate. deploy.sh preserves # unknown lines verbatim across deploys (it only overwrites the lines it # knows about), so you can safely commit this file to a private repo or # provision it via your secrets manager of choice. # # In production, this file should be mode 0600 and owned by the deploy user. # ============================================================================= # --- managed by deploy.sh (do not edit by hand) ------------------------------- POSTGREST_HOST_PORT=3011 NEXTJS_HOST_PORT=3012 NEXT_PUBLIC_API_URL=http://localhost:3011 # --- PostgREST connection --------------------------------------------------- PGRST_DB_URI=postgres://app:secret@db.internal:5432/app_production PGRST_DB_ANON_ROLE=anon PGRST_DB_SCHEMA=public # --- Next.js server-side secrets ------------------------------------------- # Anything not prefixed NEXT_PUBLIC_ is server-only and read at request time. DATABASE_URL=postgres://app:secret@db.internal:5432/app_production NEXTAUTH_SECRET=change-me-to-a-long-random-string NEXTAUTH_URL=https://app.example.com SESSION_SECRET=change-me-too # --- External services ------------------------------------------------------ STRIPE_SECRET_KEY=sk_live_replace_me STRIPE_PUBLISHABLE_KEY=pk_live_replace_me STRIPE_WEBHOOK_SECRET=whsec_replace_me SMTP_HOST=smtp.example.com SMTP_PORT=587 SMTP_USER=apikey SMTP_PASSWORD=replace_me SMTP_FROM="My App "