@axova/shared 1.0.0

package/src/configs/index.ts

@@ -0,0 +1,654 @@
+// =============================================================================
+// AXOVA SHARED CONFIGURATIONS
+// Service-specific configuration profiles for the Axova platform
+// =============================================================================
+
+import { getKafkaConfigFromEnv } from "../events/kafka";
+import { getServiceAuthConfigFromEnv } from "../middleware/serviceAuth";
+
+// =============================================================================
+// Base Configuration Interfaces
+// =============================================================================
+
+export interface BaseServiceConfig {
+	serviceName: string;
+	port: number;
+	host: string;
+	environment: "development" | "staging" | "production";
+	cors: {
+		origins: string[];
+		credentials: boolean;
+	};
+	rateLimiting: {
+		max: number;
+		timeWindow: string;
+	};
+}
+
+export interface DatabaseConfig {
+	url: string;
+	host: string;
+	port: number;
+	user: string;
+	password: string;
+	database: string;
+	ssl: boolean;
+	poolSize: number;
+}
+
+export interface KafkaServiceConfig {
+	enabled: boolean;
+	clientId: string;
+	groupId: string;
+	topics: string[];
+	autoCommit: boolean;
+}
+
+export interface RedisConfig {
+	host: string;
+	port: number;
+	password?: string;
+	db: number;
+	ttl: number;
+}
+
+export interface AuditConfig {
+	enabled: boolean;
+	level: "minimal" | "standard" | "comprehensive";
+	bufferSize: number;
+	flushInterval: number;
+	sensitiveFieldMasking: boolean;
+}
+
+export interface ServiceProfile {
+	base: BaseServiceConfig;
+	database: DatabaseConfig;
+	kafka: KafkaServiceConfig;
+	redis?: RedisConfig;
+	audit: AuditConfig;
+	features: Record<string, boolean>;
+	customConfig?: Record<string, unknown>;
+}
+
+// =============================================================================
+// Service-Specific Configurations
+// =============================================================================
+
+export const STORE_SERVICE_PROFILE: ServiceProfile = {
+	base: {
+		serviceName: "store-service",
+		port: Number(process.env.PORT) || 3001,
+		host: process.env.HOST || "0.0.0.0",
+		environment: (process.env.NODE_ENV as any) || "development",
+		cors: {
+			origins: process.env.CORS_ORIGINS?.split(",") || [
+				"http://localhost:3000",
+			],
+			credentials: true,
+		},
+		rateLimiting: {
+			max: Number(process.env.RATE_LIMIT_MAX) || 100,
+			timeWindow: process.env.RATE_LIMIT_WINDOW || "1 minute",
+		},
+	},
+	database: {
+		url:
+			process.env.DATABASE_URL ||
+			"postgresql://postgres:password@localhost:5432/axova_store_db",
+		host: process.env.POSTGRES_HOST || "localhost",
+		port: Number(process.env.POSTGRES_PORT) || 5432,
+		user: process.env.POSTGRES_USER || "postgres",
+		password: process.env.POSTGRES_PASSWORD || "password",
+		database: process.env.POSTGRES_DB || "axova_store_db",
+		ssl: process.env.DB_SSL === "true",
+		poolSize: Number(process.env.DB_POOL_SIZE) || 10,
+	},
+	kafka: {
+		enabled: process.env.KAFKA_ENABLED !== "false",
+		clientId: process.env.KAFKA_CLIENT_ID || "store-service",
+		groupId: process.env.KAFKA_GROUP_ID || "store-service-group",
+		topics: [
+			"store.created",
+			"store.updated",
+			"store.deleted",
+			"store.business.updated",
+			"store.social.updated",
+			"store.blog.created",
+			"store.blog.updated",
+			"store.contact.updated",
+		],
+		autoCommit: process.env.KAFKA_AUTO_COMMIT !== "false",
+	},
+	redis: {
+		host: process.env.REDIS_HOST || "localhost",
+		port: Number(process.env.REDIS_PORT) || 6379,
+		password: process.env.REDIS_PASSWORD,
+		db: Number(process.env.REDIS_DB) || 0,
+		ttl: Number(process.env.REDIS_TTL) || 3600,
+	},
+	audit: {
+		enabled: process.env.AUDIT_ENABLED !== "false",
+		level: (process.env.AUDIT_LEVEL as any) || "comprehensive",
+		bufferSize: Number(process.env.AUDIT_BUFFER_SIZE) || 100,
+		flushInterval: Number(process.env.AUDIT_FLUSH_INTERVAL) || 5000,
+		sensitiveFieldMasking: process.env.AUDIT_MASK_SENSITIVE !== "false",
+	},
+	features: {
+		realTimeSync: process.env.ENABLE_REAL_TIME_SYNC !== "false",
+		auditLogging: process.env.ENABLE_AUDIT_LOGGING !== "false",
+		advancedAnalytics: process.env.ENABLE_ADVANCED_ANALYTICS === "true",
+		multiTenant: true,
+		storeCustomization: true,
+		blogManagement: true,
+		socialProfiles: true,
+		businessDetails: true,
+		contactManagement: true,
+	},
+	customConfig: {
+		storeDomain: process.env.STORE_DOMAIN || "myaxova.store",
+		maxStoresPerUser: Number(process.env.MAX_STORES_PER_USER) || 5,
+		storeCustomizationLimits: {
+			maxThemes: 10,
+			maxPages: 50,
+			maxProducts: 10000,
+		},
+	},
+};
+
+export const COMPLIANCE_SERVICE_PROFILE: ServiceProfile = {
+	base: {
+		serviceName: "compliance-service",
+		port: Number(process.env.PORT) || 3002,
+		host: process.env.HOST || "0.0.0.0",
+		environment: (process.env.NODE_ENV as any) || "development",
+		cors: {
+			origins: process.env.CORS_ORIGINS?.split(",") || [
+				"http://localhost:3000",
+			],
+			credentials: true,
+		},
+		rateLimiting: {
+			max: Number(process.env.RATE_LIMIT_MAX) || 200,
+			timeWindow: process.env.RATE_LIMIT_WINDOW || "1 minute",
+		},
+	},
+	database: {
+		url:
+			process.env.DATABASE_URL ||
+			"postgresql://postgres:password@localhost:5432/axova_compliance_db",
+		host: process.env.POSTGRES_HOST || "localhost",
+		port: Number(process.env.POSTGRES_PORT) || 5432,
+		user: process.env.POSTGRES_USER || "postgres",
+		password: process.env.POSTGRES_PASSWORD || "password",
+		database: process.env.POSTGRES_DB || "axova_compliance_db",
+		ssl: process.env.DB_SSL === "true",
+		poolSize: Number(process.env.DB_POOL_SIZE) || 15,
+	},
+	kafka: {
+		enabled: process.env.KAFKA_ENABLED !== "false",
+		clientId: process.env.KAFKA_CLIENT_ID || "compliance-service",
+		groupId: process.env.KAFKA_GROUP_ID || "compliance-service-group",
+		topics: [
+			"store.created",
+			"store.updated",
+			"compliance.violation.detected",
+			"compliance.violation.resolved",
+			"appeal.submitted",
+			"appeal.reviewed",
+			"store.suspended",
+			"store.unbanned",
+			"audit.logged",
+		],
+		autoCommit: process.env.KAFKA_AUTO_COMMIT !== "false",
+	},
+	audit: {
+		enabled: process.env.AUDIT_ENABLED !== "false",
+		level: (process.env.AUDIT_LEVEL as any) || "comprehensive",
+		bufferSize: Number(process.env.AUDIT_BUFFER_SIZE) || 200,
+		flushInterval: Number(process.env.AUDIT_FLUSH_INTERVAL) || 3000,
+		sensitiveFieldMasking: process.env.AUDIT_MASK_SENSITIVE !== "false",
+	},
+	features: {
+		realTimeMonitoring: true,
+		automaticViolationDetection: true,
+		appealManagement: true,
+		riskAssessment: true,
+		complianceReporting: true,
+		auditTrails: true,
+		escalationMatrix: true,
+		mlBasedDetection: process.env.ENABLE_ML_DETECTION === "true",
+	},
+	customConfig: {
+		violationThresholds: {
+			low: 3,
+			medium: 5,
+			high: 2,
+			critical: 1,
+		},
+		appealProcessing: {
+			autoReviewEnabled: process.env.AUTO_REVIEW_APPEALS === "true",
+			maxAppealTime: Number(process.env.MAX_APPEAL_TIME) || 72, // hours
+			escalationLevels: 3,
+		},
+		suspensionRules: {
+			automaticSuspension: process.env.AUTO_SUSPEND === "true",
+			gracePeriod: Number(process.env.SUSPENSION_GRACE_PERIOD) || 24, // hours
+		},
+	},
+};
+
+export const PRODUCT_SERVICE_PROFILE: ServiceProfile = {
+	base: {
+		serviceName: "product-service",
+		port: Number(process.env.PORT) || 3003,
+		host: process.env.HOST || "0.0.0.0",
+		environment: (process.env.NODE_ENV as any) || "development",
+		cors: {
+			origins: process.env.CORS_ORIGINS?.split(",") || [
+				"http://localhost:3000",
+			],
+			credentials: true,
+		},
+		rateLimiting: {
+			max: Number(process.env.RATE_LIMIT_MAX) || 500,
+			timeWindow: process.env.RATE_LIMIT_WINDOW || "1 minute",
+		},
+	},
+	database: {
+		url:
+			process.env.DATABASE_URL ||
+			"postgresql://postgres:password@localhost:5432/axova_product_db",
+		host: process.env.POSTGRES_HOST || "localhost",
+		port: Number(process.env.POSTGRES_PORT) || 5432,
+		user: process.env.POSTGRES_USER || "postgres",
+		password: process.env.POSTGRES_PASSWORD || "password",
+		database: process.env.POSTGRES_DB || "axova_product_db",
+		ssl: process.env.DB_SSL === "true",
+		poolSize: Number(process.env.DB_POOL_SIZE) || 20,
+	},
+	kafka: {
+		enabled: process.env.KAFKA_ENABLED !== "false",
+		clientId: process.env.KAFKA_CLIENT_ID || "product-service",
+		groupId: process.env.KAFKA_GROUP_ID || "product-service-group",
+		topics: [
+			"product.created",
+			"product.updated",
+			"product.deleted",
+			"variant.created",
+			"variant.updated",
+			"variant.deleted",
+			"collection.created",
+			"collection.updated",
+			"collection.deleted",
+			"inventory.updated",
+		],
+		autoCommit: process.env.KAFKA_AUTO_COMMIT !== "false",
+	},
+	redis: {
+		host: process.env.REDIS_HOST || "localhost",
+		port: Number(process.env.REDIS_PORT) || 6379,
+		password: process.env.REDIS_PASSWORD,
+		db: Number(process.env.REDIS_DB) || 1,
+		ttl: Number(process.env.REDIS_TTL) || 7200,
+	},
+	audit: {
+		enabled: process.env.AUDIT_ENABLED !== "false",
+		level: (process.env.AUDIT_LEVEL as any) || "standard",
+		bufferSize: Number(process.env.AUDIT_BUFFER_SIZE) || 150,
+		flushInterval: Number(process.env.AUDIT_FLUSH_INTERVAL) || 4000,
+		sensitiveFieldMasking: process.env.AUDIT_MASK_SENSITIVE !== "false",
+	},
+	features: {
+		searchOptimization: true,
+		imageProcessing: true,
+		variantManagement: true,
+		collectionManagement: true,
+		bulkOperations: true,
+		seoOptimization: true,
+		analyticsIntegration: true,
+		recommendationEngine: process.env.ENABLE_RECOMMENDATIONS === "true",
+	},
+	customConfig: {
+		searchConfig: {
+			indexingEnabled: process.env.SEARCH_INDEXING !== "false",
+			elasticsearchUrl: process.env.ELASTICSEARCH_URL,
+			algoliaAppId: process.env.ALGOLIA_APP_ID,
+			algoliaApiKey: process.env.ALGOLIA_API_KEY,
+		},
+		imageProcessing: {
+			maxFileSize: Number(process.env.MAX_IMAGE_SIZE) || 10485760, // 10MB
+			allowedFormats: ["jpg", "jpeg", "png", "webp"],
+			autoOptimization: process.env.AUTO_OPTIMIZE_IMAGES !== "false",
+		},
+		productLimits: {
+			maxVariants: Number(process.env.MAX_VARIANTS_PER_PRODUCT) || 100,
+			maxImages: Number(process.env.MAX_IMAGES_PER_PRODUCT) || 20,
+			maxCategories: Number(process.env.MAX_CATEGORIES_PER_PRODUCT) || 5,
+		},
+	},
+};
+
+export const INVENTORY_SERVICE_PROFILE: ServiceProfile = {
+	base: {
+		serviceName: "inventory-core-service",
+		port: Number(process.env.PORT) || 3005,
+		host: process.env.HOST || "0.0.0.0",
+		environment: (process.env.NODE_ENV as any) || "development",
+		cors: {
+			origins: process.env.CORS_ORIGINS?.split(",") || [
+				"http://localhost:3000",
+			],
+			credentials: true,
+		},
+		rateLimiting: {
+			max: Number(process.env.RATE_LIMIT_MAX) || 300,
+			timeWindow: process.env.RATE_LIMIT_WINDOW || "1 minute",
+		},
+	},
+	database: {
+		url:
+			process.env.DATABASE_URL ||
+			"postgresql://postgres:password@localhost:5432/inventory_core_db",
+		host: process.env.DB_HOST || "localhost",
+		port: Number(process.env.DB_PORT) || 5432,
+		user: process.env.DB_USER || "postgres",
+		password: process.env.DB_PASSWORD || "password",
+		database: process.env.DB_NAME || "inventory_core_db",
+		ssl: process.env.DB_SSL === "true",
+		poolSize: Number(process.env.DB_POOL_SIZE) || 15,
+	},
+	kafka: {
+		enabled: process.env.KAFKA_ENABLED !== "false",
+		clientId: process.env.KAFKA_CLIENT_ID || "inventory-core-service",
+		groupId: process.env.KAFKA_GROUP_ID || "inventory-core-group",
+		topics: [
+			"inventory.created",
+			"inventory.updated",
+			"inventory.adjusted",
+			"inventory.reserved",
+			"inventory.released",
+			"warehouse.created",
+			"warehouse.updated",
+			"pos.location.created",
+			"pos.location.updated",
+		],
+		autoCommit: process.env.KAFKA_AUTO_COMMIT !== "false",
+	},
+	redis: {
+		host: process.env.REDIS_HOST || "localhost",
+		port: Number(process.env.REDIS_PORT) || 6379,
+		password: process.env.REDIS_PASSWORD,
+		db: Number(process.env.REDIS_DB) || 2,
+		ttl: Number(process.env.REDIS_TTL) || 1800,
+	},
+	audit: {
+		enabled: process.env.ENABLE_AUDIT_LOGGING !== "false",
+		level: (process.env.AUDIT_LEVEL as any) || "comprehensive",
+		bufferSize: Number(process.env.AUDIT_BUFFER_SIZE) || 200,
+		flushInterval: Number(process.env.AUDIT_FLUSH_INTERVAL) || 3000,
+		sensitiveFieldMasking: process.env.AUDIT_MASK_SENSITIVE !== "false",
+	},
+	features: {
+		realTimeSync: process.env.ENABLE_REAL_TIME_SYNC !== "false",
+		batchProcessing: process.env.ENABLE_BATCH_PROCESSING !== "false",
+		warehouseManagement: true,
+		posLocationManagement: true,
+		inventoryReservations: true,
+		movementTracking: true,
+		qualityControl: true,
+		supplierManagement: true,
+	},
+	customConfig: {
+		inventoryLimits: {
+			maxReservationTime: Number(process.env.MAX_RESERVATION_TIME) || 1440, // minutes
+			lowStockThreshold: Number(process.env.LOW_STOCK_THRESHOLD) || 10,
+			criticalStockThreshold: Number(process.env.CRITICAL_STOCK_THRESHOLD) || 5,
+		},
+		warehouseConfig: {
+			maxWarehouses: Number(process.env.MAX_WAREHOUSES) || 100,
+			maxLocationsPerWarehouse:
+				Number(process.env.MAX_LOCATIONS_PER_WAREHOUSE) || 1000,
+		},
+		posConfig: {
+			maxPosLocations: Number(process.env.MAX_POS_LOCATIONS) || 500,
+			syncInterval: Number(process.env.POS_SYNC_INTERVAL) || 300, // seconds
+		},
+	},
+};
+
+export const ADMIN_API_SERVICE_PROFILE: ServiceProfile = {
+	base: {
+		serviceName: "admin-api-service",
+		port: Number(process.env.PORT) || 3004,
+		host: process.env.HOST || "0.0.0.0",
+		environment: (process.env.NODE_ENV as any) || "development",
+		cors: {
+			origins: process.env.CORS_ORIGINS?.split(",") || [
+				"http://localhost:3000",
+			],
+			credentials: true,
+		},
+		rateLimiting: {
+			max: Number(process.env.RATE_LIMIT_MAX) || 100,
+			timeWindow: process.env.RATE_LIMIT_WINDOW || "1 minute",
+		},
+	},
+	database: {
+		url:
+			process.env.DATABASE_URL ||
+			"postgresql://postgres:password@localhost:5432/axova_admin_db",
+		host: process.env.POSTGRES_HOST || "localhost",
+		port: Number(process.env.POSTGRES_PORT) || 5432,
+		user: process.env.POSTGRES_USER || "postgres",
+		password: process.env.POSTGRES_PASSWORD || "password",
+		database: process.env.POSTGRES_DB || "axova_admin_db",
+		ssl: process.env.DB_SSL === "true",
+		poolSize: Number(process.env.DB_POOL_SIZE) || 10,
+	},
+	kafka: {
+		enabled: process.env.KAFKA_ENABLED !== "false",
+		clientId: process.env.KAFKA_CLIENT_ID || "admin-api-service",
+		groupId: process.env.KAFKA_GROUP_ID || "admin-api-service-group",
+		topics: [
+			"admin.action.performed",
+			"user.created",
+			"user.updated",
+			"user.deleted",
+			"system.configuration.changed",
+			"audit.requested",
+		],
+		autoCommit: process.env.KAFKA_AUTO_COMMIT !== "false",
+	},
+	audit: {
+		enabled: process.env.AUDIT_ENABLED !== "false",
+		level: (process.env.AUDIT_LEVEL as any) || "comprehensive",
+		bufferSize: Number(process.env.AUDIT_BUFFER_SIZE) || 50,
+		flushInterval: Number(process.env.AUDIT_FLUSH_INTERVAL) || 2000,
+		sensitiveFieldMasking: process.env.AUDIT_MASK_SENSITIVE !== "false",
+	},
+	features: {
+		userManagement: true,
+		systemConfiguration: true,
+		auditReporting: true,
+		complianceMonitoring: true,
+		serviceManagement: true,
+		analyticsAccess: true,
+		backupManagement: true,
+		securityMonitoring: true,
+	},
+	customConfig: {
+		adminSecurity: {
+			mfaRequired: process.env.ADMIN_MFA_REQUIRED !== "false",
+			sessionTimeout: Number(process.env.ADMIN_SESSION_TIMEOUT) || 1800, // seconds
+			maxLoginAttempts: Number(process.env.MAX_LOGIN_ATTEMPTS) || 3,
+		},
+		permissions: {
+			superAdminRoles: process.env.SUPER_ADMIN_ROLES?.split(",") || [
+				"super_admin",
+			],
+			adminRoles: process.env.ADMIN_ROLES?.split(",") || [
+				"admin",
+				"super_admin",
+			],
+			moderatorRoles: process.env.MODERATOR_ROLES?.split(",") || [
+				"moderator",
+				"admin",
+				"super_admin",
+			],
+		},
+	},
+};
+
+export const OXA_SERVICE_PROFILE: ServiceProfile = {
+	base: {
+		serviceName: "oxa-service",
+		port: Number(process.env.PORT) || 3010,
+		host: process.env.HOST || "0.0.0.0",
+		environment: (process.env.NODE_ENV as any) || "development",
+		cors: {
+			origins: process.env.CORS_ORIGINS?.split(",") || [
+				"http://localhost:3000",
+				"http://localhost:3010",
+			],
+			credentials: true,
+		},
+		rateLimiting: {
+			max: Number(process.env.RATE_LIMIT_MAX) || 600,
+			timeWindow: process.env.RATE_LIMIT_WINDOW || "1 minute",
+		},
+	},
+	database: {
+		url:
+			process.env.DATABASE_URL ||
+			"postgresql://postgres:password@localhost:5432/axova_oxa_db",
+		host: process.env.POSTGRES_HOST || "localhost",
+		port: Number(process.env.POSTGRES_PORT) || 5432,
+		user: process.env.POSTGRES_USER || "postgres",
+		password: process.env.POSTGRES_PASSWORD || "password",
+		database: process.env.POSTGRES_DB || "axova_oxa_db",
+		ssl: process.env.DB_SSL === "true",
+		poolSize: Number(process.env.DB_POOL_SIZE) || 10,
+	},
+	kafka: {
+		enabled: process.env.KAFKA_ENABLED === "true",
+		clientId: process.env.KAFKA_CLIENT_ID || "oxa-service",
+		groupId: process.env.KAFKA_GROUP_ID || "oxa-service-group",
+		topics: ["audit.logged", "notification.send"],
+		autoCommit: process.env.KAFKA_AUTO_COMMIT !== "false",
+	},
+	audit: {
+		enabled: process.env.AUDIT_ENABLED !== "false",
+		level: (process.env.AUDIT_LEVEL as any) || "comprehensive",
+		bufferSize: Number(process.env.AUDIT_BUFFER_SIZE) || 100,
+		flushInterval: Number(process.env.AUDIT_FLUSH_INTERVAL) || 5000,
+		sensitiveFieldMasking: process.env.AUDIT_MASK_SENSITIVE !== "false",
+	},
+	features: {
+		aiChat: true,
+		aiStreaming: true,
+		embeddings: true,
+		moderation: true,
+		tracing: process.env.OXA_TRACING === "true",
+		ratelimit: true,
+	},
+	customConfig: {
+		oxa: {
+			defaultModel: process.env.OXA_DEFAULT_MODEL || "gpt-4o-mini",
+			defaultEmbeddingModel:
+				process.env.OXA_EMBEDDING_MODEL || "text-embedding-3-small",
+			requestTimeoutMs: Number(process.env.OXA_REQUEST_TIMEOUT_MS) || 60000,
+			maxRetries: Number(process.env.OXA_MAX_RETRIES) || 2,
+		},
+	},
+};
+
+// =============================================================================
+// Configuration Factory and Utilities
+// =============================================================================
+
+export type ServiceName =
+	| "store-service"
+	| "compliance-service"
+	| "product-service"
+	| "inventory-core-service"
+	| "admin-api-service"
+	| "oxa-service";
+
+export const SERVICE_PROFILES: Record<ServiceName, ServiceProfile> = {
+	"store-service": STORE_SERVICE_PROFILE,
+	"compliance-service": COMPLIANCE_SERVICE_PROFILE,
+	"product-service": PRODUCT_SERVICE_PROFILE,
+	"inventory-core-service": INVENTORY_SERVICE_PROFILE,
+	"admin-api-service": ADMIN_API_SERVICE_PROFILE,
+	"oxa-service": OXA_SERVICE_PROFILE,
+};
+
+/**
+ * Get configuration profile for a specific service
+ */
+export function getServiceProfile(serviceName: ServiceName): ServiceProfile {
+	const profile = SERVICE_PROFILES[serviceName];
+	if (!profile) {
+		throw new Error(`Unknown service: ${serviceName}`);
+	}
+	return profile;
+}
+
+/**
+ * Initialize service with its profile and return configured instances
+ */
+export async function initializeServiceWithProfile(serviceName: ServiceName) {
+	const profile = getServiceProfile(serviceName);
+
+	// Get base configurations
+	const kafkaConfig = getKafkaConfigFromEnv();
+	const serviceAuthConfig = getServiceAuthConfigFromEnv();
+
+	// Return initialized configuration
+	return {
+		profile,
+		kafkaConfig,
+		serviceAuthConfig,
+		// Add convenience methods
+		isFeatureEnabled: (feature: string) => profile.features[feature] === true,
+		getCustomConfig: (key: string) => profile.customConfig?.[key],
+		isDevelopment: () => profile.base.environment === "development",
+		isProduction: () => profile.base.environment === "production",
+	};
+}
+
+/**
+ * Validate service configuration
+ */
+export function validateServiceConfig(profile: ServiceProfile): {
+	valid: boolean;
+	errors: string[];
+} {
+	const errors: string[] = [];
+
+	// Validate required fields
+	if (!profile.base.serviceName) errors.push("Service name is required");
+	if (
+		!profile.base.port ||
+		profile.base.port < 1 ||
+		profile.base.port > 65535
+	) {
+		errors.push("Valid port number is required");
+	}
+	if (!profile.database.url) errors.push("Database URL is required");
+
+	// Validate kafka configuration
+	if (profile.kafka.enabled && !profile.kafka.clientId) {
+		errors.push("Kafka client ID is required when Kafka is enabled");
+	}
+
+	// Validate audit configuration
+	if (profile.audit.enabled && profile.audit.bufferSize < 1) {
+		errors.push("Valid audit buffer size is required when audit is enabled");
+	}
+
+	return {
+		valid: errors.length === 0,
+		errors,
+	};
+}