.env.example

DB_USER=rdadmin
DB_PASSWORD=changeme_dev_only
JWT_SECRET=replace_me_with_at_least_32_chars_of_random_value

# Origin(s) the backend will accept CORS requests from. In production behind
# Cloudflare set to your public web URL, e.g. https://nomain.uk. Comma-separated
# for multiple origins.
CORS_ORIGIN=http://localhost:3000

# Host port the web container binds for HTTPS (mapped to nginx:443).
# Override if 443 is already taken on your dev machine. Production deployments
# should keep this at 443 since Cloudflare's edge connects on the standard port.
WEB_TLS_PORT=443

# ── Initial admin ────────────────────────────────────────────────────────
# Seeded on first boot ONLY (no-op once the Users table has any row). In
# production these MUST be set; otherwise Seed falls back to admin@local /
# admin and logs a loud warning. Generate a strong password with
# `openssl rand -base64 24`. Email is the login identifier + display value.
ADMIN_EMAIL=
ADMIN_PASSWORD=

# ── Pairing ──────────────────────────────────────────────────────────────
# URL the QR code points the agent at. Leave unset for `dotnet run` on your
# dev box (backend falls back to the request Host header + scheme). In
# production set to your public HTTPS URL — the backend emits rdpairs:// in
# the QR when the scheme here is https, and the agent dials accordingly.
#   dev:  http://192.168.1.10:5000
#   prod: https://nomain.uk
PAIRING_BASE_URL=

# ── TURN (optional — off by default) ─────────────────────────────────────
# The backend always serves Cloudflare's public STUN (stun.cloudflare.com:3478)
# for NAT traversal. That's sufficient for direct peer-to-peer WebRTC on
# virtually all real-world networks.
#
# Set BOTH variables below ONLY if you want TURN fallback for the rare
# symmetric-NAT / UDP-blocked cases. Run your own coturn elsewhere or use a
# hosted TURN provider (Twilio Network Traversal, Metered.ca, etc.) and
# fill in the credentials they expose.
#
# Leave blank for STUN-only operation.
# TURN_SECRET=
# TURN_HOSTNAME=
# TURN_PORT=3478