From 1249c9a4994d19a8d8f5aea590019fd0f11ad11e Mon Sep 17 00:00:00 2001
From: Tiago Yamamoto <tiago.ribeiro@inventcloud.com.br>
Date: Wed, 31 Dec 2025 16:34:59 -0300
Subject: [PATCH] docs: add RSA_PRIVATE_KEY_BASE64 to backoffice .env.example

---
 backoffice/.env.example | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/backoffice/.env.example b/backoffice/.env.example
index 86f0984..a93d08a 100644
--- a/backoffice/.env.example
+++ b/backoffice/.env.example
@@ -34,6 +34,10 @@ JWT_SECRET=your-super-secret-jwt-key
 # Token expiration (should match backend for consistency)
 JWT_EXPIRATION=7d
 
+# RSA Private Key (for Credentials Encryption)
+# Must match the one used by the Backend to decrypt.
+RSA_PRIVATE_KEY_BASE64=your-base64-encoded-private-key
+
 # NOTE: PASSWORD_PEPPER is NOT needed here.
 # The backoffice does not handle login - it only validates tokens via Bearer header or cookie.