logger:
    level: ${EMISSARY_SERVER_LOGGER_LEVEL:-1}
    format: ${EMISSARY_SERVER_LOGGER_FORMAT:-human}
sentry:
    dsn: ${EMISSARY_SERVER_SENTRY_DSN}
server:
    http:
        host: ${EMISSARY_SERVER_HTTP_HOST:-0.0.0.0}
        port: ${EMISSARY_SERVER_HTTP_HOST:-3000}
    database:
        driver: ${EMISSARY_SERVER_DATABASE_DRIVER:-sqlite}
        dsn: ${EMISSARY_SERVER_DATABASE_DSN:-sqlite:///data/emissary.sqlite?_pragma=foreign_keys(1)&_pragma=busy_timeout=150000&_pragma=journal_mode=WAL}
    cors:
        allowedOrigins:
            - ${EMISSARY_SERVER_CORS_ALLOWED_ORIGINS:-http://localhost:3001}
        allowCredentials: ${EMISSARY_SERVER_CORS_ALLOW_CREDENTIALS:-true}
        allowMethods:
            - POST
            - GET
            - PUT
            - DELETE
        allowedHeaders:
            - Origin
            - Accept
            - Content-Type
            - Authorization
            - Sentry-Trace
        debug: ${EMISSARY_SERVER_CORS_DEBUG:-false}
    auth:
        local:
            privateKeyPath: ${EMISSARY_SERVER_AUTH_LOCAL_PRIVATE_KEY_PATH:-/data/server-key.json}
        remote:
            jwksUrl: "${EMISSARY_SERVER_AUTH_REMOTE_JWKS_URL}"
        roleExtractionRules:
            - "${EMISSARY_SERVER_AUTH_ROLE_EXTRACTION_RULES_0:-jwt.role != nil ? str(jwt.role) : ''}"