app.js

const { env } = require('bootstrap')

module.exports = {
	env: env('NODE_ENV', 'development'),
	key: env('APP_KEY', new Error('No App Key Set')),
	session_key: env('SESSION_IDENTIFIER', 'jetsam.sid'),
	port: Number(env('PORT', 4000)),
	name: env('APP_NAME', 'application'),
	host: {
		api: env('API_URL', 'http://api.example.local'),
		web: env('WEB_URL', 'http://example.local'),
	},
	dev: env('NODE_ENV', 'development') === 'development',
	safe_mode: env('DISABLE_MUTATION', 'false') === 'true',
	security: {
		use_ephemeral: env('USE_EPHEMERAL_KEYS', 'true') === 'true',
		public_key: null,
		public_key_b64: env('RSA_PUBLIC_KEY_B64', null),
		private_key: null,
		private_key_b64: env('RSA_PRIVATE_KEY_B64', null),
		key_id: env('JWK_KEY_ID', null),
		super_auth_clients: env('ADMIN_AUTH_CLIENTS', '')
			.split(',')
			.map(s => s.trim())
			.filter(Boolean)
	},
}

module.exports.secure_session =
	env('SECURE_SESSIONS') != null
		? env('SECURE_SESSIONS') !== 'FALSE'
		: !module.exports.dev