# Hugging Face Spaces: add these under Settings → Repository secrets (or Variables).
# Local dev: copy to .env and adjust (python-dotenv loads .env if present).

# Public origin of your app (HTTPS, no trailing slash). Required on HF so Google Apps Script
# stores a reachable webhook URL when creating forms. If unset behind a proxy, autosync often breaks.
PUBLIC_URL=https://your-username-your-space.hf.space

# Bearer token Google Apps Script sends to POST /api/v1/webhook/forms/submit
# Must match Script property WEBHOOK_SECRET in Apps Script (Project Settings → Script properties).
WEBHOOK_SECRET=webhook-secret-key

# Secret for POST bodies from your backend to Google Apps Script (action create_form, etc.)
# Must match Script property SECRET_KEY in Apps Script (default below if unset).
APPS_SCRIPT_SECRET=datalens2026

# Google Apps Script Web App deployment URL (must end with /exec, not /dev)
APPS_SCRIPT_URL=https://script.google.com/macros/s/YOUR_DEPLOYMENT_ID/exec

# After changing PUBLIC_URL, create a NEW event/form from the dashboard so each form's
# stored webhook_url is regenerated. Old forms keep the previous URL in Script Properties.