From 9075f68d1694caf1f575fe77cc21a8a4b60e6031 Mon Sep 17 00:00:00 2001
From: Stiftung Development <admin@stiftung-project.local>
Date: Wed, 10 Sep 2025 23:07:32 +0200
Subject: [PATCH] Add gitignore for sensitive files and Docker Compose path fix
 script

- Add ACCOUNTS.txt and other sensitive files to .gitignore
- Add fix-paths.sh script for correcting Docker Compose volume paths
- Prevent accidental commit of passwords and API tokens
---
 .gitignore                     |  6 ++++++
 deploy-production/fix-paths.sh | 12 ++++++++++++
 2 files changed, 18 insertions(+)
 create mode 100644 deploy-production/fix-paths.sh

diff --git a/.gitignore b/.gitignore
index 5126ce0..e129623 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,9 @@
+# Sensitive files
+ACCOUNTS.txt
+*.key
+*.pem
+*.p12
+
 # Python
 __pycache__/
 *.py[cod]
diff --git a/deploy-production/fix-paths.sh b/deploy-production/fix-paths.sh
new file mode 100644
index 0000000..f3a42e4
--- /dev/null
+++ b/deploy-production/fix-paths.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# Quick fix for remaining volume paths in docker-compose.prod.yml
+
+cd /opt/stiftung
+git pull
+
+# Fix remaining volume paths in docker-compose.prod.yml
+sed -i 's|./app/media|../app/media|g' deploy-production/docker-compose.prod.yml
+sed -i 's|./backups|../app/backups|g' deploy-production/docker-compose.prod.yml
+
+echo "✅ Volume paths fixed!"
+echo "Now you can run: cd deploy-production && docker-compose -f docker-compose.prod.yml up -d"