# Oracle Database Configuration (prin SSH tunnel) # IMPORTANT: Conectare la schema CONTAFIN_ORACLE pentru authentication # Schema CONTAFIN_ORACLE conține utilizatorii și pack_drepturi.verificautilizator # Fiecare firmă este o schema separată în Oracle ORACLE_USER=CONTAFIN_ORACLE ORACLE_PASSWORD=SET_IN_PRODUCTION_ENV ORACLE_HOST=localhost ORACLE_PORT=1526 ORACLE_SID=ROA # Authentication Flow Information: # 1. Conectare la CONTAFIN_ORACLE schema # 2. Verificare user/pass prin pack_drepturi.verificautilizator(username, password) # 3. Citire drepturi/firme din vdef_util_grup WHERE id_util = user_id # 4. User selectează firma/schema pentru acces la date # Test User Credentials (pentru dezvoltare): # 🔐 SECURITY: Nu pune credențiale reale în acest fișier! # Username: "SET_IN_PRODUCTION" # Password: "SET_IN_PRODUCTION" # Are acces la 66+ firme/scheme Oracle # SSH Tunnel Setup Required: # Rulează: ./ssh_tunnel.sh start # Verifică: ./ssh_tunnel.sh status # JWT Configuration # 🔐 SECURITY: Generate a strong secret key in production! JWT_SECRET_KEY=GENERATE_STRONG_SECRET_IN_PRODUCTION ACCESS_TOKEN_EXPIRE_MINUTES=30 REFRESH_TOKEN_EXPIRE_DAYS=7 # Session Security (Email Authentication) # Must match telegram-bot AUTH_SESSION_SECRET for email login flow # Generate with: python3 -c "import secrets; print(secrets.token_urlsafe(32))" AUTH_SESSION_SECRET=your-secure-random-secret-here-min-32-chars # Application Configuration API_HOST=0.0.0.0 API_PORT=8000 DEBUG=True # CORS Configuration FRONTEND_URLS=http://localhost:3000,http://localhost:5173 # Telegram Bot Integration # Internal API URL for telegram bot service (auth code management) # Development (with SSH tunnel): http://localhost:8002 # Windows Production (local): http://localhost:8002 # Docker Production: http://telegram-bot:8002 TELEGRAM_BOT_INTERNAL_API=http://localhost:8002