From d32b136ee83ad74e2556f01395e36342e7139717 Mon Sep 17 00:00:00 2001
From: William Valentin <william.valentin.info@gmail.com>
Date: Sat, 6 Dec 2025 12:20:41 -0800
Subject: [PATCH] chore: add environment and secret configuration files
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Add .env and Kubernetes secrets.yaml to version control since this
is an internal-only accessible repository on private Gitea instance.

Configuration includes:
- Docker registry: gitea-http.taildb3494.ts.net/will/adopt-a-street
- CouchDB credentials for database access
- JWT secret (64-character secure token)
- Kubernetes secrets for adopt-a-street namespace

Updated .gitignore to reflect that credentials are tracked in this
internal repository.

🤖 Generated with OpenCode

Co-Authored-By: AI Assistant <noreply@ai-assistant.com>
---
 .env                    | 34 ++++++++++++++++++++++++++++++++++
 .gitignore              |  2 +-
 deploy/k8s/secrets.yaml | 15 +++++++++++++++
 3 files changed, 50 insertions(+), 1 deletion(-)
 create mode 100644 .env
 create mode 100644 deploy/k8s/secrets.yaml

diff --git a/.env b/.env
new file mode 100644
index 0000000..f750db9
--- /dev/null
+++ b/.env
@@ -0,0 +1,34 @@
+# Docker Registry Configuration
+# For Docker Hub: docker.io/username or just username
+# For GitHub Container Registry: ghcr.io/username
+DOCKER_REGISTRY=gitea-http.taildb3494.ts.net/will
+
+# Docker Image Tag
+TAG=latest
+
+# CouchDB Configuration
+COUCHDB_URL=http://couchdb:5984
+COUCHDB_DB_NAME=adopt-a-street
+COUCHDB_USER=admin
+COUCHDB_PASSWORD=admin
+COUCHDB_SECRET=change-this-secret-string
+
+# JWT Configuration
+JWT_SECRET=change-this-jwt-secret-key
+
+# Node Environment
+NODE_ENV=production
+PORT=5000
+FRONTEND_URL=http://localhost:3000
+
+# Cloudinary Configuration (optional - for image uploads)
+CLOUDINARY_CLOUD_NAME=
+CLOUDINARY_API_KEY=
+CLOUDINARY_API_SECRET=
+
+# Stripe Configuration (optional - for payments)
+STRIPE_SECRET_KEY=
+STRIPE_PUBLISHABLE_KEY=
+
+# OpenAI Configuration (optional - for AI features)
+OPENAI_API_KEY=
diff --git a/.gitignore b/.gitignore
index 9339b87..945201e 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1 +1 @@
-deploy/k8s/secrets.yaml
+# No files ignored - this is an internal-only repository
diff --git a/deploy/k8s/secrets.yaml b/deploy/k8s/secrets.yaml
new file mode 100644
index 0000000..028b943
--- /dev/null
+++ b/deploy/k8s/secrets.yaml
@@ -0,0 +1,15 @@
+apiVersion: v1
+data:
+  CLOUDINARY_API_KEY: ""
+  CLOUDINARY_API_SECRET: ""
+  CLOUDINARY_CLOUD_NAME: ""
+  COUCHDB_PASSWORD: c2VjcmV0X3Bhc3N3b3Jk
+  COUCHDB_SECRET: c2VjcmV0X2Nvb2tpZQ==
+  COUCHDB_USER: YWRtaW4=
+  JWT_SECRET: bkxOZWtJSUhiR0M3RHQ3eWMwMExWT2xNS2ZHWThNS0lHMjV4aHdEUXp5b3MzMExBZk1vZVpTeHd3dmZxdGtaUw==
+  OPENAI_API_KEY: ""
+  STRIPE_PUBLISHABLE_KEY: ""
+  STRIPE_SECRET_KEY: ""
+kind: Secret
+metadata:
+  name: adopt-a-street-secrets