# Watchdog Analytics Configuration Example

site:
  # Domains to track (required)
  # For single-site analytics, use a single domain:
  domains:
    - "example.com"
  # For multi-site analytics, add multiple domains:
  #   - "example.com"
  #   - "blog.example.com"
  #   - "shop.example.com"

  # Salt rotation for IP hashing (optional, default: daily)
  # Options: "daily", "hourly"
  salt_rotation: "daily"

  # Sampling rate (0.0 to 1.0, default: 1.0 = 100%)
  # Use 0.1 to track 10% of traffic for high-volume sites
  sampling: 1.0

  # Which dimensions to collect
  collect:
    pageviews: true
    country: true
    device: true
    # Referrer collection mode: "off", "domain", "url"
    # "domain" - collect only the domain part (e.g., "google.com")
    # "url" - collect full URL (not recommended - high cardinality)
    # "off" - don't collect referrer data
    referrer: "domain"

    # Domain tracking (for multi-site analytics)
    # Set to true to add "domain" dimension to pageview metrics
    # Only useful when tracking multiple domains
    domain: false

  # Custom events to track (optional)
  custom_events:
    - "signup"
    - "purchase"
    - "download"

  # Path normalization options
  path:
    # Remove query strings from paths (e.g., /page?id=1 -> /page)
    strip_query: true
    # Remove fragments from paths (e.g., /page#section -> /page)
    strip_fragment: true
    # Collapse numeric segments to :id (e.g., /user/123 -> /user/:id)
    collapse_numeric_segments: true
    # Maximum number of path segments to keep (0 = unlimited)
    max_segments: 5
    # Normalize trailing slashes (e.g., /page/ -> /page)
    normalize_trailing_slash: true

# Cardinality limits to prevent metric explosion
limits:
  # Maximum number of unique paths to track
  max_paths: 10000
  # Maximum number of unique referrer sources to track
  max_sources: 500
  # Maximum number of unique custom event names to track
  max_custom_events: 100
  # Maximum events per minute (rate limiting, 0 = unlimited)
  max_events_per_minute: 10000

  # Device classification breakpoints (screen width in pixels)
  device_breakpoints:
    mobile: 768  # < 768px = mobile
    tablet: 1024 # < 1024px = tablet, >= 1024px = desktop

# Security settings
security:
  # Trusted proxy IPs/CIDRs - only trust X-Forwarded-For from these IPs
  # Leave empty to never trust proxy headers
  trusted_proxies:
    - "127.0.0.1"
    - "10.0.0.0/8"
    # - "your-load-balancer-ip"

  # CORS configuration for cross-origin tracking
  cors:
    enabled: false
    allowed_origins:
      - "*"  # Or specific domains: ["https://example.com", "https://www.example.com"]

  # Basic authentication for /metrics endpoint
  metrics_auth:
    enabled: false
    username: "admin"
    password: "changeme"

# Server configuration
server:
  # Address to listen on
  listen_addr: ":8080"
  # Prometheus metrics endpoint
  metrics_path: "/metrics"
  # Event ingestion endpoint
  ingestion_path: "/api/event"