SECRET_KEY=your-super-secret-key-change-in-production DEBUG=True DB_NAME=gapguide_db DB_USER=postgres DB_PASSWORD=postgres DB_HOST=localhost DB_PORT=5432 ALLOWED_HOSTS=localhost,127.0.0.1 CORS_ALLOWED_ORIGINS=http://localhost:5173,http://127.0.0.1:5173 # Optional. Enables the "Import modules from URL" admin action to read chapter # markers from single YouTube videos via the Data API v3 (free, 10k units/day). # Leave unset and YouTube imports fall back to manual checkpoint entry. # YOUTUBE_API_KEY= # Prevent __pycache__/*.pyc files from shadowing edited source during dev. PYTHONDONTWRITEBYTECODE=1 # --------------------------------------------------------------------------- # Production / deployment only (Hugging Face Space secrets). Leave ALL of these # UNSET locally — when unset the app uses the local DB_* + DEBUG=True defaults # above. Do NOT put these in a local .env. # --------------------------------------------------------------------------- # DEBUG=False # SECRET_KEY= # ALLOWED_HOSTS=* # DATABASE_URL=postgresql://USER:PASSWORD@HOST/DB?sslmode=require # Neon DIRECT (non-pooled) URL # CORS_ALLOWED_ORIGINS=https://.vercel.app # CSRF_TRUSTED_ORIGINS=https://.hf.space # SECURE_SSL_REDIRECT=False # HF terminates HTTPS at its edge # DEMO_ADMIN_PASSWORD= # BUILD_EMBEDDINGS=1 # first boot only: build SBERT skill embeddings # THROTTLE_RESUME=200/hour # optional: raise the resume-parse rate for a demo