From 33f6d47b3e15a8219756930848fd212fb7cd4198 Mon Sep 17 00:00:00 2001
From: denshooter <dennis@konkol.net>
Date: Thu, 15 Jan 2026 22:38:10 +0100
Subject: [PATCH] chore: Update Docker Compose configuration for PostgreSQL
 security and initialization

- Removed POSTGRES_HOST_AUTH_METHOD for enhanced security, reverting to default password authentication.
- Eliminated init-db.sql mount, as database initialization is now handled via environment variables, with additional grants managed through Prisma migrations if necessary.
---
 docker-compose.dev.minimal.yml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/docker-compose.dev.minimal.yml b/docker-compose.dev.minimal.yml
index df663dc..76ce8ef 100644
--- a/docker-compose.dev.minimal.yml
+++ b/docker-compose.dev.minimal.yml
@@ -7,10 +7,11 @@ services:
       POSTGRES_DB: portfolio_dev
       POSTGRES_USER: portfolio_user
       POSTGRES_PASSWORD: portfolio_dev_pass
-      POSTGRES_HOST_AUTH_METHOD: trust
+      # POSTGRES_HOST_AUTH_METHOD removed - using default password authentication (more secure)
     volumes:
       - postgres_dev_data:/var/lib/postgresql/data
-      - ./scripts/init-db.sql:/docker-entrypoint-initdb.d/init-db.sql
+      # init-db.sql mount removed - database is initialized via POSTGRES_DB/POSTGRES_USER
+      # Additional grants can be done via Prisma migrations if needed
     networks:
       - portfolio_dev
     healthcheck: