# Fylgja Configuration File
# This file contains all configurable settings for the Fylgja Slack bot

# Slack settings
slack:
  bot_token: "xoxb-TOKEN"
  signing_secret: "SIGNING_SECRET"

# Server settings
server:
  port: 3000

# Paths configuration
paths:
  sigma_repo_dir: "./sigma-repo"
  db_path: "./sigma.db"

# Sigma settings
sigma:
  sigma-cli:
    path: "./.venv/bin/sigma"
    backend: "lucene"
    target: "ecs_windows"
    format: "siem_rule_ndjson"
  repo:
    url: "https://github.com/SigmaHQ/sigma.git"
    branch: "main"

# Elasticsearch settings
elasticsearch:
  protocol: "http"
  hosts: ["localhost:9200"]
  username: "elastic"
  password: "changeme"
  api_endpoint: "http://localhost:5601/api/detection_engine/rules"
  spaces: [
    {
      name: "Default",
      id: "default",
      indexPattern: "logs-*",
      emoji: "🔍"
    },
    {
      name: "space2",
      id: "space2",
      indexPattern: ["space2-*", "test2-*"],
      emoji: "🟢"
    },
    {
      name: "space3",
      id: "space3",
      indexPattern: "space3-*",
      emoji: "🐧"
    }
  ]

# Logging settings
logging:
  level: "debug"
  file: "./logs/fylgja.log"