server-verwaltung/README.md

# FleetLedger

Self-hosted overview for rented servers (VPS, dedicated, storage, managed). Multi-user, dark-mode first, PWA-ready.

## Features
- Server CRUD per user with soft delete/archiving
- Dashboard (costs, expiring contracts) and admin-wide overview
- Map view per user (Leaflet) based on location names
- Optional encrypted storage of management passwords (Fernet)
- Session auth with CSRF protection, admin role
- PWA: manifest, service worker, installable

## Stack
- FastAPI, SQLModel, Jinja2
- SQLite (default), Passlib (bcrypt), Cryptography (Fernet)
- Tailwind via CDN, Leaflet for maps
- Uvicorn as ASGI server

## Screenshots
Store optimized images in `docs/img/`. Suggested captures (add the files to avoid broken links):
- `docs/img/dashboard.webp` — dashboard overview.
- `docs/img/server-detail.webp` — server detail/edit view.
- `docs/img/map.webp` — per-user map view.

Ready-to-display slots (fill the files above):
![Dashboard](docs/img/dashboard.webp)
![Server detail](docs/img/server-detail.webp)
![Map view](docs/img/map.webp)

Recommended: use WebP or PNG, keep files small (<400 KB), blur/redact sensitive data before committing.

## Containers and Images
- Public repo: `https://github.com/nocci-sl/fleetledger`.
- Prebuilt image on GHCR: `ghcr.io/nocci-sl/fleetledger:latest` (plus commit-tagged `ghcr.io/nocci-sl/fleetledger:<git-sha>`).
  - Pull directly with `docker pull ghcr.io/nocci-sl/fleetledger:latest`.

## Quickstart with Docker Compose (prebuilt image)
Use the included `docker-compose.yml` with the published GHCR image; no local build needed.
```bash
cp .env-example .env
# set SESSION_SECRET in .env to a strong random value
docker-compose up -d
```
SQLite will live on the host in `./data/fleetledger.db`.
To update, pull the latest image and recreate:
```bash
docker-compose pull
docker-compose up -d
```

## Quickstart with Docker (build locally)
```bash
cp .env-example .env
# set SESSION_SECRET in .env
docker build -t fleetledger:local .
mkdir -p data
docker run --rm -p 8000:8000 --env-file .env -v $(pwd)/data:/app/data fleetledger:local
```

## Local development (without Docker)
Requirements: Python 3.12, virtualenv recommended.
```bash
python -m venv .venv
source .venv/bin/activate
pip install -r requirements.txt
cp .env-example .env
export SESSION_SECRET="long_random_value"
export SESSION_COOKIE_SECURE=0  # only for local HTTP
uvicorn app.main:app --reload --port 8000
```

## Environment variables
- `SESSION_SECRET` (required): long random string for session signing.
- `SESSION_COOKIE_SECURE` (default `1`): set `0` only for local HTTP; keep `1` with HTTPS.
- `DATABASE_PATH` (default `/app/data/fleetledger.db`): SQLite file path; locally e.g. `./data/fleetledger.db`.
- `ENCRYPTION_KEY` (optional): Fernet key for encrypted management passwords. Leave empty to disable persistence of these passwords.
- `ALLOW_SELF_REGISTRATION` (default `0`): `1` allows new self-registrations even if an admin exists; `0` means only admin can create users.

## Security notes
- Always use a strong `SESSION_SECRET`; the container refuses to start with a placeholder.
- Run behind HTTPS (`SESSION_COOKIE_SECURE=1`).
- Only store management passwords if `ENCRYPTION_KEY` is set.
- CSRF protection is enabled for form POSTs; service worker caches assets with versioning.

## Data
- SQLite stores data in the file at `DATABASE_PATH`. In Docker, `./data/` on the host is mounted to `/app/data/` in the container.
- Backups: copy the SQLite file in `./data/` while the service is stopped.
🔧 chore(repo): restructure project file hierarchy - move project files out of fleetledger directory to root - update .gitignore to reflect new .env path 📝 docs(README): add detailed project description - provide an overview of FleetLedger's features and usage - include setup instructions and security notes 2025-12-06 11:56:16 +00:00			`# FleetLedger`

🔧 chore(workflows): update Docker image name in GitHub Actions - change IMAGE_NAME from server-verwaltung to fleetledger for consistency 📝 docs(README): translate and update README content - translate README content from German to English - update sections for quickstart, environment variables, and security notes - add detailed instructions for using Docker and Docker Compose 2025-12-07 12:17:01 +00:00			`Self-hosted overview for rented servers (VPS, dedicated, storage, managed). Multi-user, dark-mode first, PWA-ready.`
🔧 chore(repo): restructure project file hierarchy - move project files out of fleetledger directory to root - update .gitignore to reflect new .env path 📝 docs(README): add detailed project description - provide an overview of FleetLedger's features and usage - include setup instructions and security notes 2025-12-06 11:56:16 +00:00
			`## Features`
🔧 chore(workflows): update Docker image name in GitHub Actions - change IMAGE_NAME from server-verwaltung to fleetledger for consistency 📝 docs(README): translate and update README content - translate README content from German to English - update sections for quickstart, environment variables, and security notes - add detailed instructions for using Docker and Docker Compose 2025-12-07 12:17:01 +00:00			`- Server CRUD per user with soft delete/archiving`
			`- Dashboard (costs, expiring contracts) and admin-wide overview`
			`- Map view per user (Leaflet) based on location names`
			`- Optional encrypted storage of management passwords (Fernet)`
			`- Session auth with CSRF protection, admin role`
			`- PWA: manifest, service worker, installable`
🔧 chore(env): update database path in environment files - change DATABASE_PATH in .env-example and docker-compose.yml - ensure consistency with Dockerfile for app directory structure 📦 build(docker): adjust Dockerfile for new data directory - create /app/data directory for database storage - update DATABASE_PATH environment variable accordingly 📝 docs(README): update README for German localization - replace English sections with German equivalents - adjust setup instructions to match new environment configurations 2025-12-06 12:08:20 +00:00
			`## Stack`
			`- FastAPI, SQLModel, Jinja2`
🔧 chore(workflows): update Docker image name in GitHub Actions - change IMAGE_NAME from server-verwaltung to fleetledger for consistency 📝 docs(README): translate and update README content - translate README content from German to English - update sections for quickstart, environment variables, and security notes - add detailed instructions for using Docker and Docker Compose 2025-12-07 12:17:01 +00:00			`- SQLite (default), Passlib (bcrypt), Cryptography (Fernet)`
			`- Tailwind via CDN, Leaflet for maps`
			`- Uvicorn as ASGI server`
🔧 chore(env): update database path in environment files - change DATABASE_PATH in .env-example and docker-compose.yml - ensure consistency with Dockerfile for app directory structure 📦 build(docker): adjust Dockerfile for new data directory - create /app/data directory for database storage - update DATABASE_PATH environment variable accordingly 📝 docs(README): update README for German localization - replace English sections with German equivalents - adjust setup instructions to match new environment configurations 2025-12-06 12:08:20 +00:00
📝 docs(README): add screenshots section with guidelines - introduce screenshots section in README with suggested captures - recommend storing images as WebP or PNG and keeping file size small - advise on blurring or redacting sensitive data before committing 💄 style(images): update application icons - modify `icon-192.png` and `icon-512.png` for consistent style 🔧 chore(images): add .gitkeep to docs/img directory - include .gitkeep to ensure directory presence in version control 2025-12-07 12:57:22 +00:00			`## Screenshots`
			Store optimized images in `docs/img/`. Suggested captures (add the files to avoid broken links):
			- `docs/img/dashboard.webp` — dashboard overview.
			- `docs/img/server-detail.webp` — server detail/edit view.
			- `docs/img/map.webp` — per-user map view.

			`Ready-to-display slots (fill the files above):`
			`![Dashboard](docs/img/dashboard.webp)`
			`![Server detail](docs/img/server-detail.webp)`
			`![Map view](docs/img/map.webp)`

			`Recommended: use WebP or PNG, keep files small (<400 KB), blur/redact sensitive data before committing.`

🔧 chore(workflows): update Docker image name in GitHub Actions - change IMAGE_NAME from server-verwaltung to fleetledger for consistency 📝 docs(README): translate and update README content - translate README content from German to English - update sections for quickstart, environment variables, and security notes - add detailed instructions for using Docker and Docker Compose 2025-12-07 12:17:01 +00:00			`## Containers and Images`
			- Public repo: `https://github.com/nocci-sl/fleetledger`.
			- Prebuilt image on GHCR: `ghcr.io/nocci-sl/fleetledger:latest` (plus commit-tagged `ghcr.io/nocci-sl/fleetledger:<git-sha>`).
			- Pull directly with `docker pull ghcr.io/nocci-sl/fleetledger:latest`.
🔧 chore(env): update database path in environment files - change DATABASE_PATH in .env-example and docker-compose.yml - ensure consistency with Dockerfile for app directory structure 📦 build(docker): adjust Dockerfile for new data directory - create /app/data directory for database storage - update DATABASE_PATH environment variable accordingly 📝 docs(README): update README for German localization - replace English sections with German equivalents - adjust setup instructions to match new environment configurations 2025-12-06 12:08:20 +00:00
🔧 chore(workflows): update Docker image name in GitHub Actions - change IMAGE_NAME from server-verwaltung to fleetledger for consistency 📝 docs(README): translate and update README content - translate README content from German to English - update sections for quickstart, environment variables, and security notes - add detailed instructions for using Docker and Docker Compose 2025-12-07 12:17:01 +00:00			`## Quickstart with Docker Compose (prebuilt image)`
📝 docs(README): update Docker Compose quickstart instructions - use included docker-compose.yml for setup - streamline update process with docker-compose pull ♻️ refactor(docker-compose): use prebuilt image and env_file - switch to prebuilt GHCR image in docker-compose.yml - utilize env_file for environment variables - reorder ports configuration for clarity 2025-12-07 12:22:53 +00:00			Use the included `docker-compose.yml` with the published GHCR image; no local build needed.
🔧 chore(workflows): update Docker image name in GitHub Actions - change IMAGE_NAME from server-verwaltung to fleetledger for consistency 📝 docs(README): translate and update README content - translate README content from German to English - update sections for quickstart, environment variables, and security notes - add detailed instructions for using Docker and Docker Compose 2025-12-07 12:17:01 +00:00			```bash
			`cp .env-example .env`
			`# set SESSION_SECRET in .env to a strong random value`
			`docker-compose up -d`
			```
			SQLite will live on the host in `./data/fleetledger.db`.
📝 docs(README): update Docker Compose quickstart instructions - use included docker-compose.yml for setup - streamline update process with docker-compose pull ♻️ refactor(docker-compose): use prebuilt image and env_file - switch to prebuilt GHCR image in docker-compose.yml - utilize env_file for environment variables - reorder ports configuration for clarity 2025-12-07 12:22:53 +00:00			`To update, pull the latest image and recreate:`
			```bash
			`docker-compose pull`
			`docker-compose up -d`
			```
🔧 chore(env): update database path in environment files - change DATABASE_PATH in .env-example and docker-compose.yml - ensure consistency with Dockerfile for app directory structure 📦 build(docker): adjust Dockerfile for new data directory - create /app/data directory for database storage - update DATABASE_PATH environment variable accordingly 📝 docs(README): update README for German localization - replace English sections with German equivalents - adjust setup instructions to match new environment configurations 2025-12-06 12:08:20 +00:00
🔧 chore(workflows): update Docker image name in GitHub Actions - change IMAGE_NAME from server-verwaltung to fleetledger for consistency 📝 docs(README): translate and update README content - translate README content from German to English - update sections for quickstart, environment variables, and security notes - add detailed instructions for using Docker and Docker Compose 2025-12-07 12:17:01 +00:00			`## Quickstart with Docker (build locally)`
			```bash
			`cp .env-example .env`
			`# set SESSION_SECRET in .env`
			`docker build -t fleetledger:local .`
			`mkdir -p data`
			`docker run --rm -p 8000:8000 --env-file .env -v $(pwd)/data:/app/data fleetledger:local`
			```

			`## Local development (without Docker)`
			`Requirements: Python 3.12, virtualenv recommended.`
			```bash
			`python -m venv .venv`
			`source .venv/bin/activate`
			`pip install -r requirements.txt`
			`cp .env-example .env`
			`export SESSION_SECRET="long_random_value"`
			`export SESSION_COOKIE_SECURE=0 # only for local HTTP`
			`uvicorn app.main:app --reload --port 8000`
			```

			`## Environment variables`
			- `SESSION_SECRET` (required): long random string for session signing.
			- `SESSION_COOKIE_SECURE` (default `1`): set `0` only for local HTTP; keep `1` with HTTPS.
			- `DATABASE_PATH` (default `/app/data/fleetledger.db`): SQLite file path; locally e.g. `./data/fleetledger.db`.
			- `ENCRYPTION_KEY` (optional): Fernet key for encrypted management passwords. Leave empty to disable persistence of these passwords.
			- `ALLOW_SELF_REGISTRATION` (default `0`): `1` allows new self-registrations even if an admin exists; `0` means only admin can create users.

			`## Security notes`
			- Always use a strong `SESSION_SECRET`; the container refuses to start with a placeholder.
			- Run behind HTTPS (`SESSION_COOKIE_SECURE=1`).
			- Only store management passwords if `ENCRYPTION_KEY` is set.
			`- CSRF protection is enabled for form POSTs; service worker caches assets with versioning.`

			`## Data`
			- SQLite stores data in the file at `DATABASE_PATH`. In Docker, `./data/` on the host is mounted to `/app/data/` in the container.
			- Backups: copy the SQLite file in `./data/` while the service is stopped.