# Environment Variables for eMoney Token Factory Deployment
# 
# SECURITY WARNING: Never commit your .env file to version control!
# This file contains sensitive information including private keys.
#
# Copy this file to .env and fill in your actual values:
#   cp .env.example .env
#
# For production deployments, use a hardware wallet or secure key management service.

# ==============================================================================
# REQUIRED: Deployment Configuration
# ==============================================================================

# Private key for deployment (without 0x prefix)
# WARNING: This key will have admin access to deployed contracts
# Use a dedicated deployment wallet with minimal funds
PRIVATE_KEY=your_private_key_here

# RPC URL for the target network (ChainID 138)
# Format: https://your-rpc-endpoint-url
RPC_URL=https://your-rpc-endpoint-url

# ==============================================================================
# REQUIRED: Contract Addresses (for Configure.s.sol)
# ==============================================================================
# These are set after initial deployment using Deploy.s.sol
# They will be printed in the deployment summary

# ComplianceRegistry contract address
COMPLIANCE_REGISTRY=0x0000000000000000000000000000000000000000

# PolicyManager contract address
POLICY_MANAGER=0x0000000000000000000000000000000000000000

# TokenFactory138 contract address
TOKEN_FACTORY=0x0000000000000000000000000000000000000000

# ==============================================================================
# OPTIONAL: API Keys (for contract verification and gas estimation)
# ==============================================================================

# Infura API Key (optional, for RPC endpoints)
# INFURA_API_KEY=your_infura_api_key

# Etherscan API Key (optional, for contract verification)
# ETHERSCAN_API_KEY=your_etherscan_api_key

# ==============================================================================
# OPTIONAL: Multisig Configuration (for production deployments)
# ==============================================================================
# In production, use multisig addresses instead of single deployer

# Governance multisig address
# GOVERNANCE_MULTISIG=0x0000000000000000000000000000000000000000

# Policy operator multisig address
# POLICY_OPERATOR_MULTISIG=0x0000000000000000000000000000000000000000

# ==============================================================================
# Security Best Practices
# ==============================================================================
# 1. Never commit .env to version control (it's in .gitignore)
# 2. Use different keys for development, staging, and production
# 3. Rotate keys regularly
# 4. Use hardware wallets for production deployments
# 5. Store sensitive values in secure key management services
# 6. Limit permissions of deployment keys to minimum necessary
# 7. Monitor deployed contracts for unauthorized access