# Gitea MCP runtime profile — EXAMPLE / PLACEHOLDERS ONLY. # # Copy to a real, gitignored env file (e.g. .env.reviewer) per runtime profile. # The same MCP server code is launched as separate MCP entries, each pointed at # a different env file so each process authenticates as ONE token and carries # ONE profile name. Do NOT put real tokens in this file. # # The token is read only by the auth layer; it is never returned, logged, or # committed. Profile name and allowed operations are non-secret metadata. # Base URL of the Gitea instance (informational). GITEA_BASE_URL=https://gitea.example.invalid # The API token for THIS runtime profile. Placeholder only — replace in a real, # gitignored env file. Never commit a real token. GITEA_TOKEN=replace-with-token # Human label for the running profile (non-secret metadata). # Examples: gitea-author, gitea-reviewer, gitea-merger, gitea-issue-manager. GITEA_PROFILE_NAME=gitea-reviewer # Optional, comma-separated operation categories this profile is intended for # (descriptive only in this issue; enforcement is a later roadmap item). GITEA_ALLOWED_OPERATIONS=read,review,approve