# Copy to .env and fill in values before starting in production.
# Generate SESSION_SECRET with: openssl rand -hex 32

SESSION_SECRET=replace-with-a-random-64-character-hex-string
SESSION_MAX_AGE_HOURS=168   # default: 168 (7 days)
PORT=3000
DB_PATH=/app/data/check-printing.db

# OIDC settings are configured in the admin UI (Manage Users > Single Sign-On).
# No environment variables needed — discovery URL, client ID/secret, and
# redirect URI are stored in the database settings table.