# Production Environment Configuration
# Copy this file to .env.production and configure for your production environment
# DO NOT commit .env.production - use secrets management in production

# CORS Configuration
# Required in production - empty CORS_ALLOWED_ORIGINS will reject all CORS requests
# This makes the service inaccessible from frontend
CORS_ALLOWED_ORIGINS=https://app.veza.com,https://www.veza.com

# Note: Other production variables should be set via:
# - Environment variables in your deployment platform
# - Secrets management system (e.g., Kubernetes secrets, AWS Secrets Manager)
# - CI/CD pipeline variables