JWT_SECRET_KEY=               # generate with: python -c "import secrets; print(secrets.token_hex(32))"
DATABASE_URL=                 # postgresql://user:password@host/dbname
RESEND_API_KEY=               # from resend.com dashboard
EMAIL_FROM=                   # e.g. noreply@yourdomain.com
FRONTEND_URL=                 # e.g. https://yourdomain.com
CORS_ORIGINS=                 # comma-separated, e.g. https://yourdomain.com
WIKIRANK_USER_AGENT=          # e.g. WikiTCG/1.0 (you@email.com)
STRIPE_SECRET_KEY=            # from stripe dashboard
STRIPE_PUBLISHABLE_KEY=       # from stripe dashboard
STRIPE_WEBHOOK_SECRET=        # from stripe dashboard