# In all environments, the following files are loaded if they exist,
# the later taking precedence over the former:
#
#  * .env                contains default values for the environment variables needed by the app
#  * .env.local          uncommitted file with local overrides
#  * .env.$APP_ENV       committed environment-specific defaults
#  * .env.$APP_ENV.local uncommitted environment-specific overrides
#
# Real environment variables win over .env files.
#
# DO NOT DEFINE PRODUCTION SECRETS IN THIS FILE NOR IN ANY OTHER COMMITTED FILES.
#
# Run "composer dump-env prod" to compile .env files for production use (requires symfony/flex >=1.2).
# https://symfony.com/doc/current/best_practices/configuration.html#infrastructure-related-configuration

APP_ENV=dev

# LDAP
LDAP_HOST=directory.tugraz.at
LDAP_USER=cn=ldap_middleware,o=tug
LDAP_BASE_DN=o=tug
LDAP_PASS=

# KEYCLOAK
KEYCLOAK_SERVER_URL=https://auth-dev.tugraz.at/auth
KEYCLOAK_REALM=tugraz
KEYCLOAK_CLIENT_ID=auth-dev-mw-dev
KEYCLOAK_FRONTEND_CLIENT_ID=auth-dev-mw-frontend-local
KEYCLOAK_CLIENT_SECRET=
# If not empty gets used to check if the access token got issued
# for this audience ('api-gw' for example)
KEYCLOAK_AUDIENCE=api-gw

# Set to true to enable local access token validation
KEYCLOAK_LOCAL_VALIDATION=true

# Deployment related
APP_BUILDINFO=unknown  # a git hash or something identifying the build
APP_BUILDINFO_URL='#'

# Disable the webserver bundle (avoids deprecation warnings). Use docker instead.
DISABLE_DEV_SERVER=true

# XXX: Remove
TU_ONLINE_ORGANIZATION_API_URL=https://online.tugraz.at/tug_onlinej/ws/webservice_v1.0/cdm/organization/xml
KNOWLEDGE_BASE_API_TOKEN=