feat: PocketVeto v1.0.0 — initial public release

Self-hosted US Congress monitoring platform with AI policy briefs, bill/member/topic follows, ntfy + RSS + email notifications, alignment scoring, collections, and draft-letter generator. Authored by: Jack Levy
2026-03-15 01:35:01 -04:00
commit 4c86a5b9ca
150 changed files with 19859 additions and 0 deletions
--- a/backend/app/config.py
+++ b/backend/app/config.py
@@ -0,0 +1,86 @@
+from functools import lru_cache
+from pydantic import model_validator
+from pydantic_settings import BaseSettings, SettingsConfigDict
+
+
+class Settings(BaseSettings):
+    model_config = SettingsConfigDict(env_file=".env", extra="ignore")
+
+    # URLs
+    LOCAL_URL: str = "http://localhost"
+    PUBLIC_URL: str = ""
+
+    # Auth / JWT
+    JWT_SECRET_KEY: str = "change-me-in-production"
+    JWT_EXPIRE_MINUTES: int = 60 * 24 * 7  # 7 days
+
+    # Symmetric encryption for sensitive user prefs (ntfy password, etc.)
+    # Generate with: python -c "from cryptography.fernet import Fernet; print(Fernet.generate_key().decode())"
+    # Falls back to JWT_SECRET_KEY derivation if not set (not recommended for production)
+    ENCRYPTION_SECRET_KEY: str = ""
+
+    # Database
+    DATABASE_URL: str = "postgresql+asyncpg://congress:congress@postgres:5432/pocketveto"
+    SYNC_DATABASE_URL: str = "postgresql://congress:congress@postgres:5432/pocketveto"
+
+    # Redis
+    REDIS_URL: str = "redis://redis:6379/0"
+
+    # api.data.gov (shared key for Congress.gov and GovInfo)
+    DATA_GOV_API_KEY: str = ""
+    CONGRESS_POLL_INTERVAL_MINUTES: int = 30
+
+    # LLM
+    LLM_PROVIDER: str = "openai"  # openai | anthropic | gemini | ollama
+
+    OPENAI_API_KEY: str = ""
+    OPENAI_MODEL: str = "gpt-4o-mini"      # gpt-4o-mini: excellent JSON quality at ~10x lower cost than gpt-4o
+
+    ANTHROPIC_API_KEY: str = ""
+    ANTHROPIC_MODEL: str = "claude-sonnet-4-6"  # Sonnet matches Opus for structured tasks at ~5x lower cost
+
+    GEMINI_API_KEY: str = ""
+    GEMINI_MODEL: str = "gemini-2.0-flash"
+
+    OLLAMA_BASE_URL: str = "http://host.docker.internal:11434"
+    OLLAMA_MODEL: str = "llama3.1"
+
+    # Max LLM requests per minute — Celery enforces this globally across all workers.
+    # Defaults: free Gemini=15 RPM, Anthropic paid=50 RPM, OpenAI paid=500 RPM.
+    # Lower this in .env if you hit rate limit errors on a restricted tier.
+    LLM_RATE_LIMIT_RPM: int = 50
+
+    # Google Civic Information API (zip → representative lookup)
+    # Free key: https://console.cloud.google.com/apis/library/civicinfo.googleapis.com
+    CIVIC_API_KEY: str = ""
+
+    # News
+    NEWSAPI_KEY: str = ""
+
+    # pytrends
+    PYTRENDS_ENABLED: bool = True
+
+    @model_validator(mode="after")
+    def check_secrets(self) -> "Settings":
+        if self.JWT_SECRET_KEY == "change-me-in-production":
+            raise ValueError(
+                "JWT_SECRET_KEY must be set to a secure random value in .env. "
+                "Generate one with: python -c \"import secrets; print(secrets.token_hex(32))\""
+            )
+        return self
+
+    # SMTP (Email notifications)
+    SMTP_HOST: str = ""
+    SMTP_PORT: int = 587
+    SMTP_USER: str = ""
+    SMTP_PASSWORD: str = ""
+    SMTP_FROM: str = ""       # Defaults to SMTP_USER if blank
+    SMTP_STARTTLS: bool = True
+
+
+@lru_cache
+def get_settings() -> Settings:
+    return Settings()
+
+
+settings = get_settings()