From f113a760af2cbcb707c8718be9132cc097c87475 Mon Sep 17 00:00:00 2001
From: nocci <dev@sky-net.it>
Date: Sat, 6 Dec 2025 11:52:55 +0000
Subject: [PATCH] test

---
 .gitignore               | 2 ++
 fleetledger/.env-example | 7 +++++++
 fleetledger/README.md    | 4 ++++
 3 files changed, 13 insertions(+)
 create mode 100644 .gitignore
 create mode 100644 fleetledger/.env-example

diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..e4d7f54
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,2 @@
+.env
+fleetledger/.env
diff --git a/fleetledger/.env-example b/fleetledger/.env-example
new file mode 100644
index 0000000..ced0806
--- /dev/null
+++ b/fleetledger/.env-example
@@ -0,0 +1,7 @@
+# Copy this file to .env and fill in strong values for production.
+SESSION_SECRET=changeme_super_secret_value
+# Set to 1 for HTTPS deployments; set to 0 only for local HTTP testing.
+SESSION_COOKIE_SECURE=1
+DATABASE_PATH=/data/fleetledger.db
+# Optional: Fernet key for encrypting management passwords (leave empty to disable)
+ENCRYPTION_KEY=
diff --git a/fleetledger/README.md b/fleetledger/README.md
index 2a85868..bcf64fc 100644
--- a/fleetledger/README.md
+++ b/fleetledger/README.md
@@ -75,6 +75,10 @@ FleetLedger is a small self-hosted web app to keep track of your rented servers:
 
 ## Quick Start (Docker)
 
+### 0. Environment
+
+Kopiere `.env-example` nach `.env` und setze mindestens ein starkes `SESSION_SECRET`. Für lokale HTTP-Tests kannst du `SESSION_COOKIE_SECURE=0` setzen, in Produktion sollte es `1` bleiben. Optional kannst du einen `ENCRYPTION_KEY` (Fernet) hinterlegen, um Management-Passwörter zu speichern.
+
 ### 1. Clone / copy the repository
 
 ```bash