From 378e730c68e08a8a28e092499633365e2fbf44ac Mon Sep 17 00:00:00 2001
From: Matt <matt@letsbe.solutions>
Date: Thu, 7 Aug 2025 01:32:20 +0200
Subject: [PATCH] chore: update Docker deployment guide and configuration

---
 DOCKER_DEPLOYMENT_GUIDE.md | 34 ++++++++++++++++++++++++++++++++--
 docker-compose.yml         | 16 ----------------
 2 files changed, 32 insertions(+), 18 deletions(-)

diff --git a/DOCKER_DEPLOYMENT_GUIDE.md b/DOCKER_DEPLOYMENT_GUIDE.md
index 5fa1c7c..b0331f4 100644
--- a/DOCKER_DEPLOYMENT_GUIDE.md
+++ b/DOCKER_DEPLOYMENT_GUIDE.md
@@ -220,8 +220,38 @@ sudo mkdir -p /opt/monacousa-portal-staging
 sudo chown -R deploy:deploy /opt/monacousa-portal*
 
 # Create data directories
-sudo -u deploy mkdir -p /opt/monacousa-portal/{data,logs,nginx}
-sudo -u deploy mkdir -p /opt/monacousa-portal-staging/{data,logs,nginx}
+sudo -u deploy mkdir -p /opt/monacousa-portal/{data,logs}
+sudo -u deploy mkdir -p /opt/monacousa-portal-staging/{data,logs}
+```
+
+### Server-Level Nginx Configuration
+
+The included `nginx-portal.conf` file is a reference configuration for your server-level nginx setup. Configure nginx on your server to:
+
+- **Reverse proxy** to the Docker container on port 6060
+- **SSL termination** with your certificates
+- **Security headers** and optimizations
+- **Static file serving** if needed
+
+Example server nginx configuration:
+```nginx
+server {
+    listen 443 ssl http2;
+    server_name portal.monacousa.org;
+    
+    # SSL configuration
+    ssl_certificate /path/to/your/cert.pem;
+    ssl_certificate_key /path/to/your/key.pem;
+    
+    # Proxy to Docker container
+    location / {
+        proxy_pass http://localhost:6060;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-Forwarded-Proto $scheme;
+    }
+}
 ```
 
 ## 🔍 Health Checks & Monitoring
diff --git a/docker-compose.yml b/docker-compose.yml
index 255b154..4f52bad 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -67,22 +67,6 @@ services:
         reservations:
           memory: 256M
 
-  # Optional: Nginx reverse proxy
-  nginx:
-    image: nginx:alpine
-    container_name: monacousa-nginx
-    restart: unless-stopped
-    ports:
-      - "80:80"
-      - "443:443"
-    volumes:
-      - ./nginx/nginx.conf:/etc/nginx/nginx.conf:ro
-      - ./nginx/ssl:/etc/nginx/ssl:ro
-      - ./logs/nginx:/var/log/nginx
-    depends_on:
-      - monacousa-portal
-    networks:
-      - monacousa-network
 
 networks:
   monacousa-network: