# Leave this as is if connecting from a remote machine
SERVER_IP=0.0.0.0
GRAYLOG_API_HEADER_VALUE=ab73de7a-6f61-4dde-87cd-3af5175a7281
VELOCIRAPTOR_API_HEADER_VALUE=ab73de7a-6f61-4dde-87cd-3af5175a7281

MYSQL_URL=copilot-mysql
# ! Avoid using special characters in the password ! #
MYSQL_ROOT_PASSWORD=REPLACE_WITH_PASSWORD
MYSQL_USER=copilot
# ! Avoid using special characters in the password ! #
MYSQL_PASSWORD=REPLACE_WITH_PASSWORD

MINIO_URL=copilot-minio
MINIO_ROOT_USER=admin
# ! Make the password at least 8 characters long ! #
MINIO_ROOT_PASSWORD=REPLACE_ME
MINIO_SECURE=False

# ! ALERT FORWARDING IP
# Set this to the IP of the host running CoPilot. This is used by Graylog to forward alerts to CoPilot
# ! Not needed anymore since we are reading from the index now
# ! Ensure Graylog is able to reach this IP and port 5000
ALERT_FORWARDING_IP=0.0.0.0

# Connector Credentials
# ! SETTING UP YOUR CONNECTORS DEMOs https://www.youtube.com/@taylorwalton_socfortress/videos! #
WAZUH_INDEXER_URL=https://127.1.1.1:9200
WAZUH_INDEXER_USERNAME=admin
WAZUH_INDEXER_PASSWORD=admin

WAZUH_MANAGER_URL=https://127.1.1.1
WAZUH_MANAGER_USERNAME=dummy
WAZUH_MANAGER_PASSWORD=dummy

GRAYLOG_URL=http://127.1.1.1
GRAYLOG_USERNAME=dummy
GRAYLOG_PASSWORD=dummy

SHUFFLE_URL=https://127.1.1.1
SHUFFLER_API_KEY=dummy
SHUFFLE_WORKFLOW_ID=dummy

VELOCIRAPTOR_URL=https://127.1.1.1
VELOCIRAPTOR_API_KEY_PATH=dummy

SUBLIME_URL=http://127.1.1.1
SUBLIME_API_KEY=dummy

INFLUXDB_URL=http://127.1.1.1
INFLUXDB_API_KEY=dummy
INFLUXDB_ORG_AND_BUCKET=dummy,dummy

GRAFANA_URL=http://127.1.1.1
GRAFANA_USERNAME=dummy
GRAFANA_PASSWORD=dummy

WAZUH_WORKER_PROVISIONING_URL=http://127.1.1.1

EVENT_SHIPPER_URL=graylog_host
GELF_INPUT_PORT=gelf_port

ALERT_CREATION_PROVISIONING_URL=http://127.1.1.1

HAPROXY_PROVISIONING_URL=http://127.1.1.1

# VirusTotal
VIRUSTOTAL_URL=https://www.virustotal.com/api/v3
VIRUSTOTAL_API_KEY=REPLACE_ME

# Portainer
PORTAINER_URL=http://127.1.1.1:9000
PORTAINER_USERNAME=admin
PORTAINER_PASSWORD=admin
PORTAINER_ENDPOINT_ID=2

# ! CoPilot MCP

# OpenAI Configuration
OPENAI_API_KEY=REPLACE_ME
OPENAI_MODEL=gpt-4o

# Application Configuration
LOG_LEVEL=INFO

# MCP Server Process Management
MCP_SERVER_ENABLED=true

# External OpenSearch Configuration
OPENSEARCH_URL=https://your-wazuh-indexer-url:9200 # Likely your wazuh-indexer
OPENSEARCH_USERNAME=YOUR_WAZUH_INDEXER_USERNAME
OPENSEARCH_PASSWORD=YOUR_WAZUH_INDEXER_PASSWORD
OPENSEARCH_SSL_VERIFY=false
OPENSEARCH_SSL_SHOW_WARN=false

# OpenSearch MCP Server Configuration
MCP_OPENSEARCH_AUTH_TOKEN=secret-token

# External MySQL Configuration
MYSQL_ENABLED=true
MYSQL_HOST=copilot-mysql
MYSQL_PORT=3306
MYSQL_DATABASE=copilot

# MySQL MCP Server Configuration
MCP_MYSQL_AUTH_TOKEN=mysql-token
MCP_MYSQL_SERVER_ENABLED=true

# External Wazuh Configuration
WAZUH_PROD_URL=https://your-wazuh-manager:55000
WAZUH_PROD_USERNAME=wazuh-wui
WAZUH_PROD_PASSWORD=wazuh-wui
WAZUH_PROD_SSL_VERIFY=false
WAZUH_PROD_TIMEOUT=30

# Wazuh MCP Server Configuration
MCP_WAZUH_AUTH_TOKEN=wazuh-token
MCP_WAZUH_SERVER_ENABLED=true

# External Velociraptor Configuration
VELOCIRAPTOR_API_KEY=/app/velociraptor-config.yaml # Dont change this
VELOCIRAPTOR_SSL_VERIFY=false
VELOCIRAPTOR_TIMEOUT=30

# Velociraptor MCP Server Configuration
MCP_VELOCIRAPTOR_AUTH_TOKEN=velociraptor-token
MCP_VELOCIRAPTOR_SERVER_ENABLED=true
MCP_VELOCIRAPTOR_HOST=0.0.0.0
MCP_VELOCIRAPTOR_PORT=8001