.env.example
Set these on your host before deploying. Each platform has an “Environment Variables” section in the deploy flow.
DATABASE_URL
secret
1. DATABASE CONFIGURATION Example PostgreSQL connection string Format: postgresql://USER:PASSWORD@HOST:PORT/DATABASE?schema=public
AUTH_SECRET
secret
2. NEXT AUTH (Authentication) NextAuth Secret used to encrypt JWT tokens. Generate a secure secret using: openssl rand -base64 32
NEXTAUTH_URL
Base URL for the application (required for NextAuth in production)
JWT_MAX_AGE
secret
JWT/session lifetime in seconds (default: 86400 = 24h)
ENCRYPTION_KEY
secret
3. ENCRYPTION (Field-Level Encryption at Rest) Used by src/lib/encryption.ts for encrypting PII data (IBAN, TaxId, etc.) ENCRYPTION_KEY…
ENCRYPTION_SALT
Salt for key derivation Generate using: node -e "console.log(require('crypto').randomBytes(16).toString('hex'))"
GIB_ENVIRONMENT
4. GIB E-INVOICE (e-Fatura Integration Optional) Gelir İdaresi Başkanlığı (GIB) Test Credentials
GIB_USERNAME
GIB_PASSWORD
secret
GIB_ENDPOINT
REDIS_URL
secret
5. REDIS (Rate Limiting & Caching Optional) If you are using Redis for rate limiting (BullMQ / Upstash)
NEXT_PUBLIC_SENTRY_DSN
6. SENTRY (Error Tracking Optional)
SENTRY_AUTH_TOKEN
secret