Web App - Authentication

Variable	Purpose
`NEXTAUTH_SECRET`	NextAuth encryption secret
`NEXTAUTH_URL`	NextAuth base URL
`GOOGLE_CLIENT_ID`	Google OAuth client ID
`GOOGLE_CLIENT_SECRET`	Google OAuth client secret
`FACEBOOK_CLIENT_ID`	Facebook OAuth client ID
`FACEBOOK_CLIENT_SECRET`	Facebook OAuth client secret
`NEXT_PUBLIC_BACKEND_URL`	Django backend URL (used by api instance)
`WALTER_INTERNAL_KEY`	Internal API key (server-side only)

Date	Author	Change
2026-01-30	Admin	Initial creation
2026-01-30	Docs team	Rewritten with real code: 3 providers, TOTP/2FA flow, JWT lifecycle, UserObject interface, session/JWT types, error handling, extension support

¶ Web App - Authentication