From 0678fdcaa738f8c365e791da03412abfeae20dc5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Reinhard=20X=2E=20F=C3=BCrst?= <rexfue@gmail.com>
Date: Sat, 28 Feb 2026 15:34:37 +0000
Subject: [PATCH] mit Auth, aber ohne Hash

---
 .env.example | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/.env.example b/.env.example
index 6ba6239..e33cfca 100644
--- a/.env.example
+++ b/.env.example
@@ -2,3 +2,13 @@ DB_HOST=localhost
 DB_USER=root
 DB_PASSWORD=your_password
 DB_NAME=RXF
+
+# Authentication Configuration
+# Format: username:passwordHash,username2:passwordHash2 (max 5 users)
+# Use 'node scripts/generate-password.js [password]' to generate hashes
+# Leave empty to disable authentication
+# Example hashes below (passwords: admin123, pass1):
+AUTH_USERS=admin:$2b$10$DKLO7uQPmdAw9Z64NChro.8mOsnqZQaRZjctWDojIkK926ROBVyJW,user1:$2b$10$K613Z70Hodr6xyEh10Mw2uoRZMV3U4LIB09929JUWw2n/pXKoUqaW
+
+# Secret key for JWT session encryption (change in production!)
+AUTH_SECRET=your-super-secret-key-change-this-in-production