chore(release): obfuscate and hash production assets [skip ci]

2026-06-02 15:58:42 +00:00 · 2026-06-02 14:24:00 +00:00 · 2026-06-02 14:01:36 +00:00 · 2026-06-01 06:50:07 +00:00 · 2026-06-01 06:38:01 +00:00 · 2026-05-29 09:04:26 +00:00
51 changed files with 855 additions and 1305 deletions
--- a/.gitea/workflows/obfuscate-main.yml
+++ b/.gitea/workflows/obfuscate-main.yml
@@ -1,29 +1,27 @@
-name: Obfuscate Main Build
+name: Release Build (ci → main)
 on:
  push:
    branches:
-      - main
+      - ci
  workflow_dispatch:
 env:
  GITEA_HOST: git.hexahost.dev
  REPO_PATH: smueller/HexaHost-Frontend
 jobs:
-  obfuscate:
+  release-build:
    if: ${{ !contains(github.event.head_commit.message, '[skip ci]') }}
    runs-on: ubuntu-latest
    steps:
-      - name: Checkout
+      - name: Checkout ci (Integration)
        uses: actions/checkout@v4
        with:
          fetch-depth: 0
-
+          repository-url: https://git.hexahost.dev/smueller/HexaHost-Frontend
-      - name: Skip loop commits
+          ref: ci
        run: |
          msg="$(git log -1 --pretty=%B)"
          echo "Last commit message: $msg"
          if echo "$msg" | grep -q "\[skip ci\]"; then
            echo "Skip CI commit detected."
            exit 0
          fi
      - name: Setup Python
        uses: actions/setup-python@v5
@@ -38,14 +36,27 @@ jobs:
      - name: Run release obfuscation
        run: python scripts/obfuscate_release.py --root . --hash-assets
-      - name: Commit obfuscated build
+      - name: Publish release to main
        env:
          GITEA_TOKEN: ${{ github.token }}
        run: |
          git config user.name "gitea-actions"
          git config user.email "actions@local"
          git remote set-url origin "https://oauth2:${GITEA_TOKEN}@${GITEA_HOST}/${REPO_PATH}.git"
          git fetch origin main ci
          git add -A
          if git diff --cached --quiet; then
-            echo "No build changes to commit."
+            echo "No release changes to publish."
            exit 0
          fi
-          git commit -m "chore(release): obfuscate and hash production assets [skip ci]"
+
-          git push
+          TREE=$(git write-tree)
          MSG="chore(release): obfuscate and hash production assets [skip ci]"
          if git show-ref --verify --quiet refs/remotes/origin/main; then
            PARENT=$(git rev-parse origin/main)
            COMMIT=$(git commit-tree "$TREE" -p "$PARENT" -m "$MSG")
          else
            COMMIT=$(git commit-tree "$TREE" -m "$MSG")
          fi
          git push origin "${COMMIT}:refs/heads/main"
--- a/.githooks/commit-msg
+++ b/.githooks/commit-msg
@@ -0,0 +1,29 @@
 #!/bin/sh
 # Validiert Commit-Messages nach Conventional Commits
 # https://www.conventionalcommits.org/
 commit_msg_file="$1"
 first_line=$(sed '/^#/d;/^$/d' "$commit_msg_file" | head -n 1)
 # Merge/Revert von Git erlauben
 case "$first_line" in
  Merge\ *|Revert\ *)
    exit 0
    ;;
 esac
 pattern='^(feat|fix|docs|style|refactor|perf|test|build|ci|chore)(\([a-z0-9._-]+\))?!?: .+'
 if ! printf '%s\n' "$first_line" | grep -qE "$pattern"; then
  echo >&2 "❌ Commit-Message entspricht nicht Conventional Commits."
  echo >&2 ""
  echo >&2 "  Format:  type(scope): description"
  echo >&2 "  Beispiel: feat(products): hide vpc in navigation"
  echo >&2 ""
  echo >&2 "  Erlaubte types: feat, fix, docs, style, refactor, perf, test, build, ci, chore"
  echo >&2 "  Überspringen: git commit --no-verify"
  exit 1
 fi
 exit 0
--- a/.github/workflows/obfuscate-main.yml
+++ b/.github/workflows/obfuscate-main.yml
@@ -1,44 +1,63 @@
-name: Obfuscate Main Build
+# Hinweis: Gitea nutzt .gitea/workflows/obfuscate-main.yml (identischer Ablauf).
 name: Release Build (ci → main)
 on:
  push:
    branches:
-      - main
+      - ci
  workflow_dispatch:
-permissions:
+env:
-  contents: write
+  GITEA_HOST: git.hexahost.dev
  REPO_PATH: smueller/HexaHost-Frontend
 jobs:
-  obfuscate:
+  release-build:
-    if: github.actor != 'github-actions[bot]'
+    if: ${{ !contains(github.event.head_commit.message, '[skip ci]') }}
    runs-on: ubuntu-latest
    steps:
-      - name: Checkout
+      - name: Checkout ci (Integration)
        uses: actions/checkout@v4
        with:
          fetch-depth: 0
          repository-url: https://git.hexahost.dev/smueller/HexaHost-Frontend
          ref: ci
      - name: Setup Python
        uses: actions/setup-python@v5
        with:
-          python-version: '3.12'
+          python-version: "3.12"
      - name: Setup Node
        uses: actions/setup-node@v4
        with:
-          node-version: '20'
+          node-version: "20"
      - name: Run release obfuscation
        run: python scripts/obfuscate_release.py --root . --hash-assets
-      - name: Commit obfuscated build
+      - name: Publish release to main
        env:
          GITEA_TOKEN: ${{ github.token }}
        run: |
          git config user.name "gitea-actions"
          git config user.email "actions@local"
          git remote set-url origin "https://oauth2:${GITEA_TOKEN}@${GITEA_HOST}/${REPO_PATH}.git"
          git fetch origin main ci
          git add -A
          if git diff --cached --quiet; then
-            echo "No build changes to commit."
+            echo "No release changes to publish."
            exit 0
          fi
-          git commit -m "chore(release): obfuscate and hash production assets [skip ci]"
+
-          git push
+          TREE=$(git write-tree)
          MSG="chore(release): obfuscate and hash production assets [skip ci]"
          if git show-ref --verify --quiet refs/remotes/origin/main; then
            PARENT=$(git rev-parse origin/main)
            COMMIT=$(git commit-tree "$TREE" -p "$PARENT" -m "$MSG")
          else
            COMMIT=$(git commit-tree "$TREE" -m "$MSG")
          fi
          git push origin "${COMMIT}:refs/heads/main"
--- a/.gitignore
+++ b/.gitignore
@@ -13,6 +13,7 @@ build/
 # Environment variables
 .env
 .cursorrules
 .cursor/
 .cursorrules.txt
 .env.local
 .env.development.local
--- a/.gitmessage
+++ b/.gitmessage
@@ -0,0 +1,16 @@
 # Conventional Commits – nur die erste nicht-kommentierte Zeile wird verwendet
 # Format: type(scope): description
 #
 # feat     Neues Feature
 # fix      Bugfix
 # docs     Dokumentation
 # style    Formatierung (keine Logik)
 # refactor Umbau ohne Feature/Fix
 # perf     Performance
 # test     Tests
 # build    Build / Dependencies
 # ci       CI/CD
 # chore    Sonstiges
 #
 # Beispiel (diese Zeile anpassen und Kommentare löschen oder stehen lassen):
 # feat(products): hide vpc and vps in navigation
--- a/README.md
+++ b/README.md
@@ -166,9 +166,38 @@ Für den Produktivbetrieb `public/` als Webroot konfigurieren.
 ### Production-Build & Veröffentlichung
-Der Quellcode bleibt auf `dev`, der veröffentlichte Stand liegt auf `main`.
+| Branch | Zweck |
 |--------|--------|
 | **`dev`** | Entwicklung (lesbarer Code, Kommentare) |
 | **`ci`** | Integration (du mergst `dev` hierher) |
 | **`main`** | Release/Produktion (obfuskiert, gehashte Assets — nur per Pipeline) |
-Bei jedem Push/Merge auf `main` läuft die GitHub Action `.github/workflows/obfuscate-main.yml` automatisch und führt aus:
+**Ablauf: `dev` → `ci` → `main`**
 1. Auf **`dev`** entwickeln und pushen
 2. **`dev` nach `ci` mergen** (manuell, z. B. in Gitea oder lokal)
 3. **`ci` pushen** → startet `.gitea/workflows/obfuscate-main.yml`
 4. Pipeline obfuskiert im Runner-Workspace und publiziert nach **`main`**
 ```powershell
 # Nach fertigen Änderungen auf dev:
 git checkout ci
 git pull origin ci
 git merge dev
 git push origin ci
 ```
 Bei jedem Push auf **`ci`**:
 1. Checkout von `ci` im temporären Runner-Workspace
 2. Obfuscation-Build (`scripts/obfuscate_release.py --hash-assets`)
 3. Ergebnis nach `main` pushen (Bot-Commit mit `[skip ci]`)
 **Nicht** `dev` oder `ci` direkt nach `main` mergen. Der Branch **`ci` bleibt lesbar** — Obfuscation wird nur nach `main` publiziert.
 `ci`-Branch einmalig anlegen (falls noch nicht vorhanden): `git checkout -b ci dev && git push -u origin ci`
 Der Build führt aus:
 - Entfernen von Kommentaren (inkl. Block-Kommentaren) in PHP/JS/CSS
 - Minify + Obfuscate für JavaScript
@@ -176,7 +205,7 @@ Bei jedem Push/Merge auf `main` läuft die GitHub Action `.github/workflows/obfu
 - Kein Source-Map-Output
 - Hashing von JS/CSS-Dateinamen + automatische Referenz-Anpassung
-Lokal ausführbar:
+Lokal testen (nur in Kopie, nicht committen):
 ```bash
 python scripts/obfuscate_release.py --root . --hash-assets
--- a/backend/api/dns-lookup.php
+++ b/backend/api/dns-lookup.php
@@ -1,21 +1,21 @@
 <?php
-/**
+
- * HexaDNS - DNS Lookup API
+
- *
+
- * Führt echte DNS-Abfragen durch und gibt die Ergebnisse als JSON zurück.
+
- *
+
- * Verwendung: GET /api/dns-lookup.php?domain=example.com
+
- */
+
 require_once __DIR__ . '/../includes/api-helpers.php';
-// CORS Headers für Frontend-Zugriff
+
 header('Content-Type: application/json; charset=utf-8');
 header('Access-Control-Allow-Origin: *');
 header('Access-Control-Allow-Methods: GET, OPTIONS');
 header('Access-Control-Allow-Headers: Content-Type');
-// Preflight request handling
+
 if ($_SERVER['REQUEST_METHOD'] === 'OPTIONS') {
    http_response_code(200);
    exit;
@@ -39,12 +39,12 @@ if ($domain === null) {
    exit;
 }
-// DNS-Abfrage durchführen
+
 $startTime = microtime(true);
 $result = performDnsLookup($domain);
 $queryTime = round((microtime(true) - $startTime) * 1000, 2);
-// Ergebnis zurückgeben
+
 echo json_encode([
    'success' => true,
    'domain' => $domain,
@@ -53,9 +53,9 @@ echo json_encode([
    'records' => $result
 ], JSON_PRETTY_PRINT | JSON_UNESCAPED_UNICODE);
-/**
+
- * Führt DNS-Lookup für verschiedene Record-Typen durch
+
- */
+
 function performDnsLookup(string $domain): array {
    $records = [
        'A' => [],
@@ -67,7 +67,7 @@ function performDnsLookup(string $domain): array {
        'SOA' => []
    ];
-    // A-Records (IPv4)
+    
    $aRecords = @dns_get_record($domain, DNS_A);
    if ($aRecords) {
        foreach ($aRecords as $record) {
@@ -78,7 +78,7 @@ function performDnsLookup(string $domain): array {
        }
    }
-    // AAAA-Records (IPv6)
+    
    $aaaaRecords = @dns_get_record($domain, DNS_AAAA);
    if ($aaaaRecords) {
        foreach ($aaaaRecords as $record) {
@@ -89,7 +89,7 @@ function performDnsLookup(string $domain): array {
        }
    }
-    // MX-Records (Mail)
+    
    $mxRecords = @dns_get_record($domain, DNS_MX);
    if ($mxRecords) {
        foreach ($mxRecords as $record) {
@@ -99,11 +99,11 @@ function performDnsLookup(string $domain): array {
                'ttl' => $record['ttl']
            ];
        }
-        // Nach Priorität sortieren
+        
        usort($records['MX'], fn($a, $b) => $a['priority'] <=> $b['priority']);
    }
-    // NS-Records (Nameserver)
+    
    $nsRecords = @dns_get_record($domain, DNS_NS);
    if ($nsRecords) {
        foreach ($nsRecords as $record) {
@@ -114,7 +114,7 @@ function performDnsLookup(string $domain): array {
        }
    }
-    // TXT-Records
+    
    $txtRecords = @dns_get_record($domain, DNS_TXT);
    if ($txtRecords) {
        foreach ($txtRecords as $record) {
@@ -125,7 +125,7 @@ function performDnsLookup(string $domain): array {
        }
    }
-    // CNAME-Records
+    
    $cnameRecords = @dns_get_record($domain, DNS_CNAME);
    if ($cnameRecords) {
        foreach ($cnameRecords as $record) {
@@ -136,7 +136,7 @@ function performDnsLookup(string $domain): array {
        }
    }
-    // SOA-Record (Start of Authority)
+    
    $soaRecords = @dns_get_record($domain, DNS_SOA);
    if ($soaRecords) {
        foreach ($soaRecords as $record) {
@@ -153,6 +153,6 @@ function performDnsLookup(string $domain): array {
        }
    }
-    // Leere Arrays entfernen
+    
    return array_filter($records, fn($arr) => !empty($arr));
 }
--- a/backend/api/dns-propagation.php
+++ b/backend/api/dns-propagation.php
@@ -1,11 +1,11 @@
 <?php
-/**
+
- * HexaDNS - DNS Propagation Check API
+
- *
+
- * Prüft DNS-Records bei verschiedenen öffentlichen DNS-Servern
+
- *
+
- * Verwendung: GET /api/dns-propagation.php?domain=example.com&type=A
+
- */
+
 require_once __DIR__ . '/../includes/api-helpers.php';
@@ -23,7 +23,7 @@ if (!checkApiRateLimit('dns-propagation')) {
    rejectApiRateLimit();
 }
-// Öffentliche DNS-Server für Propagation-Check
+
 $dnsServers = [
    ['name' => 'Google', 'ip' => '8.8.8.8', 'location' => 'Global'],
    ['name' => 'Google Secondary', 'ip' => '8.8.4.4', 'location' => 'Global'],
@@ -44,7 +44,7 @@ if ($domain === null) {
    exit;
 }
-// Erlaubte Record-Typen
+
 $allowedTypes = ['A', 'AAAA', 'MX', 'NS', 'TXT', 'CNAME'];
 if (!in_array($type, $allowedTypes)) {
    $type = 'A';
@@ -65,7 +65,7 @@ foreach ($dnsServers as $server) {
    $queryStart = microtime(true);
-    // DNS-Abfrage mit spezifischem Server via dig (falls verfügbar) oder dns_get_record
+    
    $records = queryDnsServer($domain, $type, $server['ip']);
    $serverResult['response_time'] = round((microtime(true) - $queryStart) * 1000, 2);
@@ -80,7 +80,7 @@ foreach ($dnsServers as $server) {
 $totalTime = round((microtime(true) - $startTime) * 1000, 2);
-// Propagation-Status berechnen
+
 $propagationStatus = calculatePropagationStatus($results);
 echo json_encode([
@@ -93,13 +93,13 @@ echo json_encode([
    'servers' => $results
 ], JSON_PRETTY_PRINT | JSON_UNESCAPED_UNICODE);
-/**
+
- * DNS-Abfrage bei spezifischem Server
+
- */
+
 function queryDnsServer(string $domain, string $type, string $server): array {
    $records = [];
-    // Versuche zuerst dig zu verwenden (genauer)
+    
    $digResult = @shell_exec(
        'dig @' . escapeshellarg($server) . ' '
        . escapeshellarg($domain) . ' '
@@ -115,7 +115,7 @@ function queryDnsServer(string $domain, string $type, string $server): array {
        return $records;
    }
-    // Fallback auf PHP dns_get_record (verwendet System-DNS)
+    
    $dnsType = constant('DNS_' . $type);
    $result = @dns_get_record($domain, $dnsType);
@@ -145,9 +145,9 @@ function queryDnsServer(string $domain, string $type, string $server): array {
    return array_filter($records);
 }
-/**
+
- * Berechnet den Propagation-Status
+
- */
+
 function calculatePropagationStatus(array $results): array {
    $totalServers = count($results);
    $serversWithRecords = 0;
@@ -162,10 +162,10 @@ function calculatePropagationStatus(array $results): array {
        }
    }
-    // Einzigartige Records
+    
    $uniqueRecords = array_unique($allRecords);
-    // Konsistenz prüfen (haben alle Server die gleichen Records?)
+    
    $isConsistent = count($uniqueRecords) <= 1 || $serversWithRecords === 0;
    $percentage = $totalServers > 0 ? round(($serversWithRecords / $totalServers) * 100) : 0;
--- a/backend/api/ping-check.php
+++ b/backend/api/ping-check.php
@@ -1,11 +1,11 @@
 <?php
-/**
+
- * HexaDNS - Ping/Verfügbarkeitstest API
+
- * 
+
- * Prüft die Erreichbarkeit einer Domain
+
- * 
+
- * Verwendung: GET /api/ping-check.php?domain=example.com
+
- */
+
 require_once __DIR__ . '/../includes/api-helpers.php';
@@ -43,9 +43,9 @@ echo json_encode([
    'results' => $results
 ], JSON_PRETTY_PRINT | JSON_UNESCAPED_UNICODE);
-/**
+
- * Führt verschiedene Erreichbarkeitstests durch
+
- */
+
 function performConnectivityCheck(string $domain): array {
    $results = [
        'dns_resolution' => checkDnsResolution($domain),
@@ -55,7 +55,7 @@ function performConnectivityCheck(string $domain): array {
        'overall_status' => 'offline'
    ];
-    // Overall-Status bestimmen
+    
    if ($results['https']['reachable'] || $results['http']['reachable']) {
        $results['overall_status'] = 'online';
    } elseif ($results['icmp_ping']['reachable']) {
@@ -67,9 +67,9 @@ function performConnectivityCheck(string $domain): array {
    return $results;
 }
-/**
+
- * DNS-Auflösung prüfen
+
- */
+
 function checkDnsResolution(string $domain): array {
    $start = microtime(true);
    $ip = gethostbyname($domain);
@@ -84,9 +84,9 @@ function checkDnsResolution(string $domain): array {
    ];
 }
-/**
+
- * ICMP Ping (falls verfügbar)
+
- */
+
 function checkIcmpPing(string $domain): array {
    $result = [
        'reachable' => false,
@@ -94,18 +94,18 @@ function checkIcmpPing(string $domain): array {
        'packet_loss' => null
    ];
-    // Versuche ping-Kommando
+    
    $safeDomain = escapeshellarg($domain);
    $pingResult = @shell_exec("ping -c 3 -W 2 {$safeDomain} 2>/dev/null");
    if ($pingResult) {
-        // Prüfe auf erfolgreiche Antworten
+        
        if (preg_match('/(\d+)% packet loss/', $pingResult, $lossMatch)) {
            $result['packet_loss'] = (int)$lossMatch[1];
            $result['reachable'] = $result['packet_loss'] < 100;
        }
-        // Durchschnittliche Zeit extrahieren
+        
        if (preg_match('/avg.*?=.*?[\d.]+\/([\d.]+)\//', $pingResult, $timeMatch)) {
            $result['response_time_ms'] = (float)$timeMatch[1];
        } elseif (preg_match('/time[=<]([\d.]+)\s*ms/', $pingResult, $timeMatch)) {
@@ -116,9 +116,9 @@ function checkIcmpPing(string $domain): array {
    return $result;
 }
-/**
+
- * HTTP(S)-Verbindung prüfen
+
- */
+
 function checkHttpConnection(string $domain, bool $https = false): array {
    $protocol = $https ? 'https' : 'http';
    $port = $https ? 443 : 80;
@@ -134,7 +134,7 @@ function checkHttpConnection(string $domain, bool $https = false): array {
    $start = microtime(true);
-    // cURL verwenden
+    
    $ch = curl_init();
    curl_setopt_array($ch, [
        CURLOPT_URL => $url,
@@ -156,13 +156,13 @@ function checkHttpConnection(string $domain, bool $https = false): array {
        $result['status_code'] = curl_getinfo($ch, CURLINFO_HTTP_CODE);
        $result['reachable'] = $result['status_code'] > 0;
-        // Redirect-URL
+        
        $redirectUrl = curl_getinfo($ch, CURLINFO_REDIRECT_URL);
        if (!empty($redirectUrl)) {
            $result['redirect_url'] = $redirectUrl;
        }
-        // Server-Header
+        
        if (preg_match('/Server:\s*([^\r\n]+)/i', $response, $serverMatch)) {
            $result['server'] = trim($serverMatch[1]);
        }
--- a/backend/api/reverse-dns.php
+++ b/backend/api/reverse-dns.php
@@ -1,11 +1,11 @@
 <?php
-/**
+
- * HexaDNS - Reverse DNS Lookup API
+
- *
+
- * Löst eine IP-Adresse zu einem Hostnamen auf
+
- *
+
- * Verwendung: GET /api/reverse-dns.php?ip=8.8.8.8
+
- */
+
 require_once __DIR__ . '/../includes/api-helpers.php';
@@ -31,7 +31,7 @@ if (empty($ip)) {
    exit;
 }
-// IPv4 oder IPv6 validieren
+
 $isIPv4 = filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV4);
 $isIPv6 = filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV6);
@@ -54,9 +54,9 @@ echo json_encode([
    'result' => $result
 ], JSON_PRETTY_PRINT | JSON_UNESCAPED_UNICODE);
-/**
+
- * Führt Reverse DNS Lookup durch
+
- */
+
 function performReverseLookup(string $ip, string $version): array {
    $result = [
        'hostname' => null,
@@ -64,44 +64,44 @@ function performReverseLookup(string $ip, string $version): array {
        'additional_info' => []
    ];
-    // PHP gethostbyaddr
+    
    $hostname = @gethostbyaddr($ip);
    if ($hostname && $hostname !== $ip) {
        $result['hostname'] = $hostname;
-        // Verifizieren durch Forward-Lookup
+        
        $forwardIp = gethostbyname($hostname);
        $result['forward_verified'] = ($forwardIp === $ip);
-        // Zusätzliche Infos über den Host sammeln
+        
        $result['additional_info'] = getHostInfo($hostname);
    } else {
        $result['error'] = 'Kein PTR-Record gefunden';
    }
-    // PTR-Record direkt abfragen
+    
    $ptrRecord = getPtrRecord($ip, $version);
    if ($ptrRecord) {
        $result['ptr_record'] = $ptrRecord;
    }
-    // IP-Info (GeoIP wenn verfügbar, sonst Basic-Infos)
+    
    $result['ip_info'] = getIpInfo($ip);
    return $result;
 }
-/**
+
- * PTR-Record direkt abfragen
+
- */
+
 function getPtrRecord(string $ip, string $version): ?string {
    if ($version === 'IPv4') {
-        // IPv4: Reverse die Oktette
+        
        $parts = array_reverse(explode('.', $ip));
        $ptrDomain = implode('.', $parts) . '.in-addr.arpa';
    } else {
-        // IPv6: Komplexer - jedes Nibble umkehren
+        
        $expanded = expandIPv6($ip);
        $nibbles = str_replace(':', '', $expanded);
        $reversed = implode('.', array_reverse(str_split($nibbles)));
@@ -117,11 +117,11 @@ function getPtrRecord(string $ip, string $version): ?string {
    return null;
 }
-/**
+
- * Expandiert eine IPv6-Adresse
+
- */
+
 function expandIPv6(string $ip): string {
-    // Ersetze :: mit der richtigen Anzahl von 0000
+    
    if (strpos($ip, '::') !== false) {
        $parts = explode('::', $ip);
        $left = $parts[0] ? explode(':', $parts[0]) : [];
@@ -133,7 +133,7 @@ function expandIPv6(string $ip): string {
        $all = explode(':', $ip);
    }
-    // Jedes Segment auf 4 Zeichen auffüllen
+    
    $all = array_map(function($segment) {
        return str_pad($segment, 4, '0', STR_PAD_LEFT);
    }, $all);
@@ -141,19 +141,19 @@ function expandIPv6(string $ip): string {
    return implode(':', $all);
 }
-/**
+
- * Sammelt Infos über einen Hostnamen
+
- */
+
 function getHostInfo(string $hostname): array {
    $info = [];
-    // Domain-Teile analysieren
+    
    $parts = explode('.', $hostname);
    $tld = end($parts);
    $info['tld'] = $tld;
-    // Bekannte Hosting-Provider erkennen
+    
    $providerPatterns = [
        'amazonaws.com' => 'Amazon AWS',
        'googleusercontent.com' => 'Google Cloud',
@@ -183,15 +183,15 @@ function getHostInfo(string $hostname): array {
    return $info;
 }
-/**
+
- * Basis-Infos zur IP
+
- */
+
 function getIpInfo(string $ip): array {
    $info = [
        'type' => 'unknown'
    ];
-    // Private IP-Bereiche prüfen
+    
    if (filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV4)) {
        if (preg_match('/^(10\.|172\.(1[6-9]|2[0-9]|3[01])\.|192\.168\.)/', $ip)) {
            $info['type'] = 'private';
@@ -201,7 +201,7 @@ function getIpInfo(string $ip): array {
            $info['type'] = 'public';
        }
    } else {
-        // IPv6
+        
        if (preg_match('/^(fc|fd)/i', $ip)) {
            $info['type'] = 'private';
        } elseif (preg_match('/^::1$/', $ip) || preg_match('/^fe80:/i', $ip)) {
--- a/backend/api/ssl-check.php
+++ b/backend/api/ssl-check.php
@@ -1,11 +1,11 @@
 <?php
-/**
+
- * HexaDNS - SSL Certificate Check API
+
- *
+
- * Prüft SSL-Zertifikat-Informationen einer Domain
+
- *
+
- * Verwendung: GET /api/ssl-check.php?domain=example.com
+
- */
+
 require_once __DIR__ . '/../includes/api-helpers.php';
@@ -43,9 +43,9 @@ echo json_encode([
    'ssl' => $sslData
 ], JSON_PRETTY_PRINT | JSON_UNESCAPED_UNICODE);
-/**
+
- * Prüft SSL-Zertifikat einer Domain
+
- */
+
 function checkSslCertificate(string $domain): array {
    $result = [
        'success' => false,
@@ -55,7 +55,7 @@ function checkSslCertificate(string $domain): array {
        'certificate' => null
    ];
-    // Stream Context für SSL
+    
    $context = stream_context_create([
        'ssl' => [
            'capture_peer_cert' => true,
@@ -64,18 +64,18 @@ function checkSslCertificate(string $domain): array {
        ]
    ]);
-    // Verbindung herstellen
+    
    $socket = @stream_socket_client(
        "ssl://{$domain}:443",
        $errno,
        $errstr,
-        10, // Timeout
+        10, 
        STREAM_CLIENT_CONNECT,
        $context
    );
    if (!$socket) {
-        // Versuche ohne SSL (um zu prüfen ob Server erreichbar)
+        
        $httpSocket = @fsockopen($domain, 80, $errno, $errstr, 5);
        if ($httpSocket) {
            fclose($httpSocket);
@@ -89,7 +89,7 @@ function checkSslCertificate(string $domain): array {
    $result['has_ssl'] = true;
    $result['success'] = true;
-    // Zertifikat extrahieren
+    
    $params = stream_context_get_params($socket);
    $cert = $params['options']['ssl']['peer_certificate'] ?? null;
@@ -105,10 +105,10 @@ function checkSslCertificate(string $domain): array {
            $isNotYetValid = $now < $validFrom;
            $result['is_valid'] = !$isExpired && !$isNotYetValid;
-            // Tage bis Ablauf
+            
            $daysUntilExpiry = floor(($validTo - $now) / 86400);
-            // Subject Alternative Names (SANs)
+            
            $sans = [];
            if (isset($certInfo['extensions']['subjectAltName'])) {
                $sanStr = $certInfo['extensions']['subjectAltName'];
@@ -116,7 +116,7 @@ function checkSslCertificate(string $domain): array {
                $sans = $matches[1] ?? [];
            }
-            // Issuer aufbereiten
+            
            $issuer = [];
            if (isset($certInfo['issuer'])) {
                if (isset($certInfo['issuer']['O'])) $issuer['organization'] = $certInfo['issuer']['O'];
@@ -124,7 +124,7 @@ function checkSslCertificate(string $domain): array {
                if (isset($certInfo['issuer']['C'])) $issuer['country'] = $certInfo['issuer']['C'];
            }
-            // Subject aufbereiten
+            
            $subject = [];
            if (isset($certInfo['subject'])) {
                if (isset($certInfo['subject']['CN'])) $subject['common_name'] = $certInfo['subject']['CN'];
@@ -144,7 +144,7 @@ function checkSslCertificate(string $domain): array {
                'version' => $certInfo['version'] ?? null,
            ];
-            // Warnung wenn bald ablaufend
+            
            if ($daysUntilExpiry <= 30 && $daysUntilExpiry > 0) {
                $result['warning'] = "Zertifikat läuft in {$daysUntilExpiry} Tagen ab!";
            } elseif ($isExpired) {
--- a/backend/api/whois-lookup.php
+++ b/backend/api/whois-lookup.php
@@ -1,11 +1,11 @@
 <?php
-/**
+
- * HexaDNS - WHOIS Lookup API
+
- *
+
- * Ruft WHOIS-Informationen für eine Domain ab
+
- *
+
- * Verwendung: GET /api/whois-lookup.php?domain=example.com
+
- */
+
 require_once __DIR__ . '/../includes/api-helpers.php';
@@ -31,7 +31,7 @@ if (empty($domain)) {
    exit;
 }
-// Nur Root-Domain extrahieren
+
 $domain = extractRootDomain($domain);
 if (!preg_match('/^[a-zA-Z0-9][a-zA-Z0-9\-]*\.[a-zA-Z]{2,}$/', $domain)) {
@@ -58,9 +58,9 @@ echo json_encode([
    'whois' => $whoisData
 ], JSON_PRETTY_PRINT | JSON_UNESCAPED_UNICODE);
-/**
+
- * Extrahiert die Root-Domain (ohne Subdomain)
+
- */
+
 function extractRootDomain(string $domain): string {
    $domain = strtolower($domain);
    $domain = preg_replace('/^(https?:\/\/)?(www\.)?/', '', $domain);
@@ -68,22 +68,22 @@ function extractRootDomain(string $domain): string {
    $parts = explode('.', $domain);
    if (count($parts) > 2) {
-        // Einfache Logik: nimm die letzten 2 Teile
+        
-        // (funktioniert nicht perfekt für .co.uk etc., aber gut genug)
+        
        return implode('.', array_slice($parts, -2));
    }
    return $domain;
 }
-/**
+
- * Führt WHOIS-Lookup durch
+
- */
+
 function performWhoisLookup(string $domain): ?array {
-    // Primär: Socket-basierte Abfrage (funktioniert ohne shell_exec)
+    
    $whoisRaw = whoisViaSocket($domain);
-    // Fallback: Shell-Kommando (sicher escaped)
+    
    if (empty($whoisRaw) && function_exists('shell_exec')) {
        $escapedDomain = escapeshellarg($domain);
        $whoisRaw = @shell_exec("whois {$escapedDomain} 2>/dev/null");
@@ -93,13 +93,13 @@ function performWhoisLookup(string $domain): ?array {
        return null;
    }
-    // Parse WHOIS-Daten
+    
    return parseWhoisData($whoisRaw, $domain);
 }
-/**
+
- * WHOIS-Abfrage über Socket (unabhängig von shell_exec)
+
- */
+
 function whoisViaSocket(string $domain): ?string {
    $whoisServer = getWhoisServer($domain);
@@ -109,7 +109,7 @@ function whoisViaSocket(string $domain): ?string {
    $result = queryWhoisServer($whoisServer, $domain);
-    // Prüfe auf Weiterleitungen zu anderen WHOIS-Servern
+    
    if ($result && preg_match('/Registrar WHOIS Server:\s*(\S+)/i', $result, $matches)) {
        $referralServer = trim($matches[1]);
        if ($referralServer && $referralServer !== $whoisServer) {
@@ -123,9 +123,9 @@ function whoisViaSocket(string $domain): ?string {
    return $result;
 }
-/**
+
- * Abfrage an einen spezifischen WHOIS-Server
+
- */
+
 function queryWhoisServer(string $server, string $domain): ?string {
    $port = 43;
    $timeout = 10;
@@ -136,13 +136,13 @@ function queryWhoisServer(string $server, string $domain): ?string {
        return null;
    }
-    // Setze Stream-Timeout
+    
    stream_set_timeout($socket, $timeout);
-    // Sende Anfrage
+    
    fwrite($socket, $domain . "\r\n");
-    // Lese Antwort
+    
    $response = '';
    while (!feof($socket)) {
        $response .= fread($socket, 8192);
@@ -153,16 +153,16 @@ function queryWhoisServer(string $server, string $domain): ?string {
    return !empty($response) ? $response : null;
 }
-/**
+
- * Ermittelt den zuständigen WHOIS-Server für eine TLD
+
- */
+
 function getWhoisServer(string $domain): ?string {
    $parts = explode('.', $domain);
    $tld = strtolower(end($parts));
-    // Bekannte WHOIS-Server nach TLD
+    
    $whoisServers = [
-        // Generische TLDs
+        
        'com' => 'whois.verisign-grs.com',
        'net' => 'whois.verisign-grs.com',
        'org' => 'whois.pir.org',
@@ -186,7 +186,7 @@ function getWhoisServer(string $domain): ?string {
        'travel' => 'whois.nic.travel',
        'xxx' => 'whois.nic.xxx',
-        // Neue gTLDs
+        
        'app' => 'whois.nic.google',
        'dev' => 'whois.nic.google',
        'page' => 'whois.nic.google',
@@ -205,7 +205,7 @@ function getWhoisServer(string $domain): ?string {
        'cc' => 'ccwhois.verisign-grs.com',
        'ws' => 'whois.website.ws',
-        // Europäische ccTLDs
+        
        'de' => 'whois.denic.de',
        'at' => 'whois.nic.at',
        'ch' => 'whois.nic.ch',
@@ -235,7 +235,7 @@ function getWhoisServer(string $domain): ?string {
        'eu' => 'whois.eu',
        'lu' => 'whois.dns.lu',
-        // Andere ccTLDs
+        
        'ru' => 'whois.tcinet.ru',
        'ua' => 'whois.ua',
        'us' => 'whois.nic.us',
@@ -255,7 +255,7 @@ function getWhoisServer(string $domain): ?string {
        'za' => 'whois.registry.net.za',
    ];
-    // Spezielle Behandlung für .co.uk, .com.au etc.
+    
    if (count($parts) >= 2) {
        $sld = $parts[count($parts) - 2];
        $combinedTld = $sld . '.' . $tld;
@@ -279,9 +279,9 @@ function getWhoisServer(string $domain): ?string {
    return $whoisServers[$tld] ?? 'whois.iana.org';
 }
-/**
+
- * Parsed WHOIS-Rohdaten in strukturiertes Format
+
- */
+
 function parseWhoisData(string $raw, string $domain): array {
    $data = [
        'raw' => $raw,
@@ -306,50 +306,50 @@ function parseWhoisData(string $raw, string $domain): array {
            continue;
        }
-        // Key: Value Format
+        
        if (strpos($line, ':') !== false) {
            list($key, $value) = array_map('trim', explode(':', $line, 2));
            $keyLower = strtolower($key);
-            // Registrar
+            
            if (strpos($keyLower, 'registrar') !== false && strpos($keyLower, 'abuse') === false && strpos($keyLower, 'url') === false) {
                if (empty($data['parsed']['registrar'])) {
                    $data['parsed']['registrar'] = $value;
                }
            }
-            // Registrar URL
+            
            if (strpos($keyLower, 'registrar') !== false && strpos($keyLower, 'url') !== false) {
                $data['parsed']['registrar_url'] = $value;
            }
-            // Erstellungsdatum
+            
            if (preg_match('/(creation|created|registered)/i', $keyLower) && strpos($keyLower, 'registrar') === false) {
                if (empty($data['parsed']['creation_date'])) {
                    $data['parsed']['creation_date'] = $value;
                }
            }
-            // Ablaufdatum
+            
            if (preg_match('/(expir|paid-till)/i', $keyLower)) {
                if (empty($data['parsed']['expiration_date'])) {
                    $data['parsed']['expiration_date'] = $value;
                }
            }
-            // Aktualisierungsdatum
+            
            if (preg_match('/(updated|modified|changed)/i', $keyLower) && strpos($keyLower, 'registrar') === false) {
                if (empty($data['parsed']['updated_date'])) {
                    $data['parsed']['updated_date'] = $value;
                }
            }
-            // Status
+            
            if (preg_match('/(status|state)/i', $keyLower) && !empty($value)) {
                $data['parsed']['status'][] = $value;
            }
-            // Nameserver
+            
            if (preg_match('/^(name.?server|nserver)/i', $keyLower) && !empty($value)) {
                $ns = strtolower(explode(' ', $value)[0]);
                if (!in_array($ns, $data['parsed']['nameservers'])) {
@@ -357,14 +357,14 @@ function parseWhoisData(string $raw, string $domain): array {
                }
            }
-            // DNSSEC
+            
            if (strpos($keyLower, 'dnssec') !== false) {
                $data['parsed']['dnssec'] = $value;
            }
        }
    }
-    // Status einzigartig machen
+    
    $data['parsed']['status'] = array_unique($data['parsed']['status']);
    return $data;
--- a/backend/config/config.php
+++ b/backend/config/config.php
@@ -1,17 +1,17 @@
 <?php
 /**
 * HexaHost.de Konfiguration
 * 
 * HINWEIS: Diese Datei ist veraltet!
 * 
 * Die Konfiguration wurde nach mail-config.php verschoben.
 * Bitte verwenden Sie stattdessen:
 * 
 *   require_once 'config/mail-config.php';
 * 
 * Diese Datei wird nur aus Kompatibilitätsgründen beibehalten.
 */
-// Lade die neue Konfiguration
+
 require_once __DIR__ . '/mail-config.php';
 ?>
--- a/backend/config/contact-config.php
+++ b/backend/config/contact-config.php
@@ -1,11 +1,11 @@
 <?php
 /**
 * Zentrale Betreff-Konfiguration für das Kontaktformular
 */
-/**
+
- * @return array<string, string> Betreff-Schlüssel => Anzeigename
+
- */
+
 function getContactSubjectMap(): array {
    return [
        'allgemeine-anfrage' => 'Allgemeine Anfrage',
@@ -26,16 +26,16 @@ function getContactSubjectMap(): array {
    ];
 }
-/**
+
- * @param string $subjectKey
+
- */
+
 function isAllowedContactSubject(string $subjectKey): bool {
    return array_key_exists($subjectKey, getContactSubjectMap());
 }
-/**
+
- * Betreff aus ?product= oder ?package= für die Kontaktseite ableiten
+
- */
+
 function getPreselectedContactSubject(): string {
    $productMap = [
        'vpc' => 'vpc-anfrage',
--- a/backend/config/mail-config.php
+++ b/backend/config/mail-config.php
@@ -1,30 +1,30 @@
 <?php
 /**
 * HexaHost.de Mail Configuration
 *
 * Dieses Projekt versendet E-Mails nativ über PHP mail().
 * Es sind keine externen Bibliotheken oder Composer-Installationen erforderlich.
 */
 // E-Mail Adressen
 define('SMTP_FROM_EMAIL', 'kontakt@hexahost.de');  // Absender-E-Mail
 define('SMTP_TO_EMAIL', 'info@hexahost.de');       // Empfänger-E-Mail für Kontaktformular
 // Sicherheitseinstellungen
 define('ENABLE_CSRF_PROTECTION', true);            // CSRF-Schutz aktivieren
 define('ENABLE_RATE_LIMITING', true);              // Rate-Limiting aktivieren
 define('MAX_REQUESTS_PER_HOUR', 10);               // Max. Anfragen pro Stunde
 // Spam-Schutz Einstellungen
 define('ENABLE_SPAM_PROTECTION', true);            // Spam-Schutz aktivieren
 define('MAX_MESSAGE_LENGTH', 5000);                // Max. Nachrichtenlänge
 define('MIN_MESSAGE_LENGTH', 10);                  // Min. Nachrichtenlänge
 // Debug-Einstellungen (nur für Entwicklung)
 define('DEBUG_MODE', false);                       // Debug-Modus (true/false)
 define('LOG_EMAILS', true);                        // E-Mails loggen (true/false)
-// Zusätzliche Sicherheitsheader
+
 define('SMTP_FROM_EMAIL', 'kontakt@hexahost.de');  
 define('SMTP_TO_EMAIL', 'info@hexahost.de');       
 define('ENABLE_CSRF_PROTECTION', true);            
 define('ENABLE_RATE_LIMITING', true);              
 define('MAX_REQUESTS_PER_HOUR', 5);               
 define('ENABLE_SPAM_PROTECTION', true);            
 define('MAX_MESSAGE_LENGTH', 5000);                
 define('MIN_MESSAGE_LENGTH', 10);                  
 define('DEBUG_MODE', false);                       
 define('LOG_EMAILS', true);                        
 define('ADDITIONAL_HEADERS', [
    'X-Mailer' => 'HexaHost.de Contact Form',
    'X-Priority' => '3',
@@ -35,22 +35,22 @@ define('ADDITIONAL_HEADERS', [
    'Precedence' => 'bulk'
 ]);
-// Erlaubte Domains für E-Mail-Adressen (optional)
+
 define('ALLOWED_EMAIL_DOMAINS', [
-    // Leer lassen für alle Domains zu erlauben
+    
-    // 'gmail.com',
+    
-    // 'outlook.com',
+    
-    // 'web.de',
+    
-    // 'gmx.de'
+    
 ]);
-// Blacklist für E-Mail-Adressen (optional)
+
 define('BLACKLISTED_EMAILS', [
-    // 'spam@example.com',
+    
-    // 'test@test.com'
+    
 ]);
-// Überprüfung der E-Mail-Adressen
+
 if (!filter_var(SMTP_FROM_EMAIL, FILTER_VALIDATE_EMAIL)) {
    die('Ungültige SMTP_FROM_EMAIL Adresse');
 }
@@ -59,7 +59,7 @@ if (!filter_var(SMTP_TO_EMAIL, FILTER_VALIDATE_EMAIL)) {
    die('Ungültige SMTP_TO_EMAIL Adresse');
 }
-// Logging-Funktion
+
 function logEmail($type, $data) {
    if (!LOG_EMAILS) return;
@@ -76,18 +76,18 @@ function logEmail($type, $data) {
    file_put_contents($logFile, $logEntry, FILE_APPEND | LOCK_EX);
 }
-// Hilfsfunktion für E-Mail-Validierung
+
 function isValidEmail($email) {
    if (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
        return false;
    }
-    // Prüfe Blacklist
+    
    if (in_array($email, BLACKLISTED_EMAILS)) {
        return false;
    }
-    // Prüfe Domain-Whitelist (falls gesetzt)
+    
    if (!empty(ALLOWED_EMAIL_DOMAINS)) {
        $domain = substr(strrchr($email, "@"), 1);
        if (!in_array($domain, ALLOWED_EMAIL_DOMAINS)) {
@@ -98,29 +98,29 @@ function isValidEmail($email) {
    return true;
 }
-/**
+
- * Hilfsfunktion zum Abrufen der Konfiguration als Array
+
- * Kompatibilität mit contact-handler.php
+
- * 
+
- * @param string|null $key Optional: einzelner Schlüssel
+
- * @return mixed Konfigurationsarray oder einzelner Wert
+
- */
+
 function getHexaHostConfig($key = null) {
    $config = [
-        // Absender/Empfänger
+        
        'from_email' => SMTP_FROM_EMAIL,
        'from_name' => 'HexaHost.de Kontaktformular',
        'to_email' => SMTP_TO_EMAIL,
        'to_name' => 'HexaHost Support',
-        // Sicherheit
+        
        'max_requests_per_hour' => MAX_REQUESTS_PER_HOUR,
        'honeypot_field' => 'website',
        'enable_csrf' => ENABLE_CSRF_PROTECTION,
        'min_message_length' => MIN_MESSAGE_LENGTH,
        'max_message_length' => MAX_MESSAGE_LENGTH,
-        // Debug
+        
        'debug_mode' => DEBUG_MODE,
        'log_errors' => LOG_EMAILS,
    ];
--- a/backend/config/products-config.php
+++ b/backend/config/products-config.php
@@ -1,19 +1,19 @@
 <?php
 /**
 * HexaHost.de Produkt-Konfiguration
 * 
 * Hier können Sie alle Preise, Shop-Links und Produktinformationen zentral verwalten.
 * Pro Paket: shop_url (WHMCS/Warenkorb-Link, z. B. https://shop.hexahost.de/cart.php?a=add&pid=123)
 * Nach Änderungen: npm run build && npm run deploy
 * 
 * Verwendung in PHP-Seiten:
 *   require_once 'config/products-config.php';
 *   $packages = getProductPackages('vpc');
 */
-// ============================================================================
+
-// VIRTUAL PRIVATE CONTAINER (VPC)
+
-// ============================================================================
+
 $PRODUCTS['vpc'] = [
    'name' => 'Virtual Private Container',
    'short_name' => 'VPC',
@@ -117,9 +117,9 @@ $PRODUCTS['vpc'] = [
    ],
 ];
-// ============================================================================
+
-// VIRTUAL PRIVATE SERVER (VPS)
+
-// ============================================================================
+
 $PRODUCTS['vps'] = [
    'name' => 'Virtual Private Server',
    'short_name' => 'VPS',
@@ -223,9 +223,9 @@ $PRODUCTS['vps'] = [
    ],
 ];
-// ============================================================================
+
-// MAIL GATEWAY
+
-// ============================================================================
+
 $PRODUCTS['mail-gateway'] = [
    'name' => 'Mail Gateway',
    'short_name' => 'Mail',
@@ -329,9 +329,9 @@ $PRODUCTS['mail-gateway'] = [
    ],
 ];
-// ============================================================================
+
-// WEBHOSTING
+
-// ============================================================================
+
 $PRODUCTS['webhosting'] = [
    'name' => 'Webhosting',
    'short_name' => 'Webhosting',
@@ -443,68 +443,101 @@ $PRODUCTS['webhosting'] = [
    ],
 ];
 // ============================================================================
 // HILFSFUNKTIONEN
 // ============================================================================
-/**
+$PRODUCT_VISIBILITY = [
- * Alle Produkte abrufen
+    'vpc' => false,
- */
+    'vps' => false,
    'mail-gateway' => false,
    'webhosting' => true,
 ];
 function isProductVisible(string $productId): bool {
    global $PRODUCT_VISIBILITY;
    return $PRODUCT_VISIBILITY[$productId] ?? true;
 }
 function productHiddenAttr(string $productId): string {
    return isProductVisible($productId) ? '' : ' hidden';
 }
 function getVisibleProductPageIds(): array {
    global $PRODUCT_VISIBILITY;
    return array_keys(array_filter($PRODUCT_VISIBILITY, static fn(bool $visible): bool => $visible));
 }
 function getAllProducts() {
    global $PRODUCTS;
    return $PRODUCTS;
 }
-/**
+
- * Ein Produkt abrufen
+
- */
+
 function getProduct($productId) {
    global $PRODUCTS;
    return $PRODUCTS[$productId] ?? null;
 }
-/**
+
- * Alle Pakete eines Produkts abrufen
+
- */
+
 function getProductPackages($productId) {
    global $PRODUCTS;
    return $PRODUCTS[$productId]['packages'] ?? [];
 }
-/**
+
- * Ein bestimmtes Paket abrufen
+
- */
+
 function getPackage($productId, $packageId) {
    global $PRODUCTS;
    return $PRODUCTS[$productId]['packages'][$packageId] ?? null;
 }
-/**
+
- * Preis eines Pakets abrufen
+
- */
+
 function getPackagePrice($productId, $packageId) {
    $package = getPackage($productId, $packageId);
    return $package['price'] ?? null;
 }
-/**
+
- * Minimalen Preis eines Produkts abrufen
+
- */
+
 function getMinPrice($productId) {
    global $PRODUCTS;
    return $PRODUCTS[$productId]['min_price'] ?? null;
 }
-/**
+
- * Preis formatiert ausgeben
+
- */
+
 function formatPrice($price, $withCurrency = true) {
    return $withCurrency ? $price . '€' : $price;
 }
-/**
+
- * Bestell-Link für ein Paket (Online-Shop oder Kontaktformular)
+
- */
+
 function getOrderUrl($productId, $packageId) {
    $package = getPackage($productId, $packageId);
    if ($package && !empty($package['shop_url'])) {
@@ -514,9 +547,9 @@ function getOrderUrl($productId, $packageId) {
    return sprintf('contact.php?package=%s-%s', $productId, $packageId);
 }
-/**
+
- * Bestell-Link für CTA (beliebtes Paket oder erstes Paket)
+
- */
+
 function getProductOrderUrl($productId) {
    $packages = getProductPackages($productId);
@@ -534,9 +567,9 @@ function getProductOrderUrl($productId) {
    return sprintf('contact.php?product=%s', $productId);
 }
-/**
+
- * Generiert HTML für eine Paket-Karte
+
- */
+
 function renderPackageCard($productId, $packageId, $package) {
    $featuredClass = $package['featured'] ? ' featured' : '';
    $featuredBadge = $package['featured'] ? '<div class="featured-badge">Beliebt</div>' : '';
@@ -583,9 +616,9 @@ function renderPackageCard($productId, $packageId, $package) {
    );
 }
-/**
+
- * Generiert HTML für alle Pakete eines Produkts
+
- */
+
 function renderAllPackages($productId) {
    $packages = getProductPackages($productId);
    $html = '';
--- a/backend/includes/api-helpers.php
+++ b/backend/includes/api-helpers.php
@@ -1,11 +1,11 @@
 <?php
 /**
 * Gemeinsame Hilfsfunktionen für öffentliche DNS/API-Endpunkte
 */
-/**
+
- * Client-IP für Rate-Limiting (Cloudflare-sicher, kein blindes X-Forwarded-For)
+
- */
+
 function getApiClientIp(): string {
    if (!empty($_SERVER['HTTP_CF_CONNECTING_IP'])
        && filter_var($_SERVER['HTTP_CF_CONNECTING_IP'], FILTER_VALIDATE_IP)) {
@@ -34,9 +34,9 @@ function getApiClientIp(): string {
    return $remoteAddr;
 }
-/**
+
- * Einfaches Rate-Limiting pro Endpunkt und IP
+
- */
+
 function checkApiRateLimit(string $endpoint, int $maxPerHour = 120): bool {
    $ip = getApiClientIp();
    $cacheFile = sys_get_temp_dir() . '/hexahost_api_' . md5($endpoint . '_' . $ip) . '.txt';
@@ -82,9 +82,9 @@ function checkApiRateLimit(string $endpoint, int $maxPerHour = 120): bool {
    return true;
 }
-/**
+
- * Domain aus GET-Parameter normalisieren und validieren
+
- */
+
 function getValidatedDomainParam(string $param = 'domain'): ?string {
    if (empty($_GET[$param])) {
        return null;
@@ -102,9 +102,9 @@ function getValidatedDomainParam(string $param = 'domain'): ?string {
    return $domain;
 }
-/**
+
- * Rate-Limit-JSON-Antwort senden und beenden
+
- */
+
 function rejectApiRateLimit(): void {
    http_response_code(429);
    echo json_encode(['error' => 'Zu viele Anfragen. Bitte versuchen Sie es später erneut.']);
--- a/backend/includes/footer.php
+++ b/backend/includes/footer.php
@@ -15,10 +15,17 @@
                <div class="footer-section">
                    <h4>Produkte</h4>
                    <ul>
-                        <li><a href="/vpc">Virtual Private Container</a></li>
+                        <li<?php echo productHiddenAttr('vpc'); ?>><a href="/vpc">Virtual Private Container</a></li>
-                        <li><a href="/vps">Virtual Private Server</a></li>
+                        <li<?php echo productHiddenAttr('vps'); ?>><a href="/vps">Virtual Private Server</a></li>
-                        <li><a href="/mail-gateway">Mail Gateway</a></li>
+                        <li<?php echo productHiddenAttr('mail-gateway'); ?>><a href="/mail-gateway">Mail Gateway</a></li>
-                        <li><a href="/webhosting">Webhosting</a></li>
+                        <li<?php echo productHiddenAttr('webhosting'); ?>><a href="/webhosting">Webhosting</a></li>
                    </ul>
                </div>
                <div class="footer-section">
                    <h4>Andere Dienste</h4>
                    <ul>
                        <li><a href="https://hexadns.de" target="_blank" rel="noopener noreferrer">hexadns.de</a></li>
                        <li><a href="https://www.hexa-mail.de/" target="_blank" rel="noopener noreferrer">hexa-mail.de</a></li>
                    </ul>
                </div>
                <div class="footer-section">
@@ -126,7 +133,7 @@
        window.dataLayer = window.dataLayer || [];
        function gtag(){dataLayer.push(arguments);}
-        // Standard: keine Analyse/Marketing-Cookies bis zur Einwilligung
+        
        gtag('consent', 'default', {
            analytics_storage: 'denied',
            ad_storage: 'denied',
@@ -139,7 +146,7 @@
            anonymize_ip: true
        });
-        // Übergibt Consent-Änderungen aus dem eigenen Cookie-Banner an GA
+        
        window.addEventListener('cookieConsentUpdated', function (event) {
            var payload = event && event.detail ? event.detail : {};
            var consent = payload.consent ? payload.consent : payload;
@@ -156,8 +163,8 @@
    </script>
    <script async src="https://www.googletagmanager.com/gtag/js?id=G-EF0E9VPMTD"></script>
-    <script src="/assets/js/main.js" defer></script>
+    <script src="/assets/js/main.e2f10a1bc052.js" defer></script>
-    <script src="/assets/js/cookie-consent.js" defer></script>
+    <script src="/assets/js/cookie-consent.4c1a86945d56.js" defer></script>
    <?php if (isset($additional_scripts)): ?>
        <?php foreach ($additional_scripts as $script): ?>
            <script src="<?php echo htmlspecialchars($script, ENT_QUOTES, 'UTF-8'); ?>" defer></script>
--- a/backend/includes/functions.php
+++ b/backend/includes/functions.php
@@ -1,11 +1,13 @@
 <?php
 /**
 * Helper functions for HexaHost.de
 */
-// Sichere Session-Konfiguration
+
 require_once __DIR__ . '/../config/products-config.php';
 if (session_status() === PHP_SESSION_NONE) {
-    // Session-Cookie-Sicherheit
+    
    ini_set('session.cookie_httponly', 1);
    ini_set('session.cookie_secure', isset($_SERVER['HTTPS']) ? 1 : 0);
    ini_set('session.cookie_samesite', 'Strict');
@@ -14,14 +16,14 @@ if (session_status() === PHP_SESSION_NONE) {
    session_start();
-    // Session-ID regenerieren bei Login/wichtigen Aktionen (Schutz vor Session Fixation)
+    
    if (!isset($_SESSION['initiated'])) {
        session_regenerate_id(true);
        $_SESSION['initiated'] = true;
    }
 }
-// PHP Error Display in Produktion deaktivieren
+
 if (!defined('DEBUG_MODE') || !DEBUG_MODE) {
    ini_set('display_errors', 0);
    ini_set('display_startup_errors', 0);
@@ -29,18 +31,18 @@ if (!defined('DEBUG_MODE') || !DEBUG_MODE) {
    ini_set('log_errors', 1);
 }
-/**
+
- * Set page configuration and include header
+
- * 
+
- * @param string $title The page title
+
- * @param string $description The page description
+
- * @param string $page The current page identifier
+
- * @param array $scripts Additional scripts to include
+
- */
+
 function includeHeader($title = '', $description = '', $page = '', $scripts = []) {
    global $page_title, $page_description, $current_page, $additional_scripts;
-    // Set page configuration from parameters
+    
    $page_title = !empty($title) 
        ? $title 
        : 'HexaHost.de - Zuverlässiges Hosting aus Niederbayern';
@@ -55,28 +57,28 @@ function includeHeader($title = '', $description = '', $page = '', $scripts = []
    include __DIR__ . '/header.php';
 }
-/**
+
- * Include footer
+
- */
+
 function includeFooter() {
    include __DIR__ . '/footer.php';
 }
-/**
+
- * Generate breadcrumb navigation
+
- * 
+
- * @param array $breadcrumbs Array of breadcrumb items [['title' => 'Home', 'url' => 'index.html'], ...]
+
- */
+
 function generateBreadcrumbs($breadcrumbs) {
    echo '<div class="breadcrumb">';
    $last_index = count($breadcrumbs) - 1;
    foreach ($breadcrumbs as $index => $item) {
        if ($index === $last_index) {
-            // Last item (current page)
+            
            echo '<span>' . htmlspecialchars($item['title']) . '</span>';
        } else {
-            // Link to other pages
+            
            echo '<a href="' . htmlspecialchars($item['url']) . '">' . htmlspecialchars($item['title']) . '</a>';
            echo '<span>/</span>';
        }
@@ -84,11 +86,11 @@ function generateBreadcrumbs($breadcrumbs) {
    echo '</div>';
 }
-/**
+
- * Generate CSRF token for form security
+
- * 
+
- * @return string CSRF token
+
- */
+
 function generateCSRFToken() {
    if (!isset($_SESSION['csrf_token'])) {
        $_SESSION['csrf_token'] = bin2hex(random_bytes(32));
@@ -96,9 +98,9 @@ function generateCSRFToken() {
    return $_SESSION['csrf_token'];
 }
-/**
+
- * CSRF-Token prüfen und nach Erfolg invalidieren (Replay-Schutz)
+
- */
+
 function validateCSRFToken($token) {
    if (!isset($_SESSION['csrf_token']) || !is_string($token)) {
        return false;
@@ -110,16 +112,16 @@ function validateCSRFToken($token) {
    return true;
 }
-/**
+
- * Werte für E-Mail-Header bereinigen (Header-Injection verhindern)
+
- */
+
 function sanitizeHeaderValue(string $value): string {
    return str_replace(["\r", "\n", "\0"], '', trim($value));
 }
-/**
+
- * Client-IP für Logging (Cloudflare / vertrauenswürdiger Reverse-Proxy)
+
- */
+
 function getClientIP(): string {
    if (!empty($_SERVER['HTTP_CF_CONNECTING_IP'])
        && filter_var($_SERVER['HTTP_CF_CONNECTING_IP'], FILTER_VALIDATE_IP)) {
--- a/backend/includes/header.php
+++ b/backend/includes/header.php
@@ -13,7 +13,7 @@
    <link rel="preconnect" href="https://cdn.hexahost.de" crossorigin>
    <!-- Performance: Preload kritischer Ressourcen -->
-    <link rel="preload" href="/assets/css/style.css" as="style">
+    <link rel="preload" href="/assets/css/style.d01979e8c871.css" as="style">
    <link rel="preload" href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap" as="style">
    <title><?php echo isset($page_title) ? htmlspecialchars($page_title) : 'HexaHost.de - Zuverlässiges Hosting aus Niederbayern'; ?></title>
@@ -32,8 +32,8 @@
    <meta property="og:locale" content="de_DE">
    <!-- Main Stylesheets -->
-    <link rel="stylesheet" href="/assets/css/style.css">
+    <link rel="stylesheet" href="/assets/css/style.d01979e8c871.css">
-    <link rel="stylesheet" href="/assets/css/custom.css">
+    <link rel="stylesheet" href="/assets/css/custom.9712c2869e20.css">
    <!-- Fonts -->
    <link href="https://fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&family=Russo+One&family=Source+Sans+Pro:wght@300;400;600;700&display=swap" rel="stylesheet">
@@ -59,12 +59,12 @@
                <ul class="nav-menu">
                    <li><a href="/" class="nav-link <?php echo ($current_page === 'home') ? 'active' : ''; ?>">Home</a></li>
                    <li class="nav-dropdown">
-                        <a href="#" class="nav-link <?php echo (in_array($current_page, ['vpc', 'vps', 'mail-gateway', 'webhosting'])) ? 'active' : ''; ?>">Produkte</a>
+                        <a href="#" class="nav-link <?php echo (in_array($current_page, getVisibleProductPageIds(), true)) ? 'active' : ''; ?>">Produkte</a>
                        <ul class="dropdown-menu">
-                            <li><a href="/vpc" class="<?php echo ($current_page === 'vpc') ? 'active' : ''; ?>">Virtual Private Container</a></li>
+                            <li<?php echo productHiddenAttr('vpc'); ?>><a href="/vpc" class="<?php echo ($current_page === 'vpc') ? 'active' : ''; ?>">Virtual Private Container</a></li>
-                            <li><a href="/vps" class="<?php echo ($current_page === 'vps') ? 'active' : ''; ?>">Virtual Private Server</a></li>
+                            <li<?php echo productHiddenAttr('vps'); ?>><a href="/vps" class="<?php echo ($current_page === 'vps') ? 'active' : ''; ?>">Virtual Private Server</a></li>
-                            <li><a href="/mail-gateway" class="<?php echo ($current_page === 'mail-gateway') ? 'active' : ''; ?>">Mail Gateway</a></li>
+                            <li<?php echo productHiddenAttr('mail-gateway'); ?>><a href="/mail-gateway" class="<?php echo ($current_page === 'mail-gateway') ? 'active' : ''; ?>">Mail Gateway</a></li>
-                            <li><a href="/webhosting" class="<?php echo ($current_page === 'webhosting') ? 'active' : ''; ?>">Webhosting</a></li>
+                            <li<?php echo productHiddenAttr('webhosting'); ?>><a href="/webhosting" class="<?php echo ($current_page === 'webhosting') ? 'active' : ''; ?>">Webhosting</a></li>
                        </ul>
                    </li>
                    <li><a href="/it-dienstleistungen" class="nav-link <?php echo ($current_page === 'it-dienstleistungen') ? 'active' : ''; ?>">IT-Dienstleistungen</a></li>
--- a/public/404.php
+++ b/public/404.php
@@ -1,15 +1,15 @@
 <?php
 require_once __DIR__ . '/../backend/includes/functions.php';
-// Page configuration
+
 $page_title = '404 - Seite nicht gefunden | HexaHost.de';
 $page_description = 'Die angeforderte Seite wurde nicht gefunden.';
 $current_page = '404';
-// Set 404 header
+
 http_response_code(404);
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
@@ -45,7 +45,7 @@ includeHeader($page_title, $page_description, $current_page);
 .error-code {
    font-size: 6rem;
    font-weight: 700;
-    background: linear-gradient(135deg, #ff51f9, #a348ff);
+    background: linear-gradient(135deg, 
    -webkit-background-clip: text;
    -webkit-text-fill-color: transparent;
    background-clip: text;
@@ -57,7 +57,7 @@ includeHeader($page_title, $page_description, $current_page);
    margin-bottom: 1rem;
 }
 .error-content p {
-    color: #888;
+    color: 
    margin-bottom: 2rem;
 }
 .error-actions {
--- a/public/500.php
+++ b/public/500.php
@@ -1,15 +1,15 @@
 <?php
 require_once __DIR__ . '/../backend/includes/functions.php';
-// Page configuration
+
 $page_title = '500 - Serverfehler | HexaHost.de';
 $page_description = 'Ein interner Serverfehler ist aufgetreten.';
 $current_page = '500';
-// Set 500 header
+
 http_response_code(500);
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
@@ -45,7 +45,7 @@ includeHeader($page_title, $page_description, $current_page);
 .error-code {
    font-size: 6rem;
    font-weight: 700;
-    background: linear-gradient(135deg, #ff51f9, #a348ff);
+    background: linear-gradient(135deg, 
    -webkit-background-clip: text;
    -webkit-text-fill-color: transparent;
    background-clip: text;
@@ -57,7 +57,7 @@ includeHeader($page_title, $page_description, $current_page);
    margin-bottom: 1rem;
 }
 .error-content p {
-    color: #888;
+    color: 
    margin-bottom: 2rem;
 }
 .error-actions {
--- a/public/about.php
+++ b/public/about.php
@@ -1,12 +1,12 @@
 <?php
 require_once __DIR__ . '/../backend/includes/functions.php';
-// Page configuration
+
 $page_title = 'Über mich - HexaHost.de | Hosting aus Niederbayern';
 $page_description = 'Erfahren Sie mehr über HexaHost.de - Ihr zuverlässiger Hosting-Partner aus Niederbayern. Moderne Technologie mit persönlichem Service.';
 $current_page = 'about';
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
@@ -245,6 +245,6 @@ includeHeader($page_title, $page_description, $current_page);
 </main>
 <?php
-// Include footer
+
 includeFooter();
 ?> 
--- a/public/agb.php
+++ b/public/agb.php
@@ -1,12 +1,12 @@
 <?php
 require_once __DIR__ . '/../backend/includes/functions.php';
-// Page configuration
+
 $page_title = 'Allgemeine Geschäftsbedingungen - HexaHost.de | AGB';
 $page_description = 'Allgemeine Geschäftsbedingungen (AGB) von HexaHost.de für Hosting-Dienstleistungen.';
 $current_page = 'agb';
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
@@ -527,6 +527,6 @@ includeHeader($page_title, $page_description, $current_page);
 </main>
 <?php
-// Include footer
+
 includeFooter();
 ?>
--- a/public/assets/css/custom.9712c2869e20.css
+++ b/public/assets/css/custom.9712c2869e20.css
@@ -0,0 +1 @@
 .btn-tertiary{color:var(--text-primary);background:transparent;border:1px solid rgba(255,255,255,0.25);transition:all 0.3s ease;}.btn-tertiary:hover{border-color:var(--primary-color);color:var(--primary-color);background:rgba(255,81,249,0.08);}.it-services-actions{justify-content:center;margin-top:2rem;}.it-services-page .values .values-grid{display:flex !important;flex-wrap:wrap !important;justify-content:center !important;align-items:stretch;grid-template-columns:none !important;gap:1.5rem !important;}.it-services-page .values .value-item{flex:0 1 320px !important;max-width:360px;aspect-ratio:1 / 1;margin:0 !important;display:flex;flex-direction:column;justify-content:center;}.legal-hero,.legal-content{background:#ffffff;color:#000000;}.legal-hero{margin-top:70px;padding:2rem 0 1.5rem;border-bottom:1px solid #e5e5e5;}.legal-content{padding-top:2rem;}.legal-hero-title{background:none;-webkit-text-fill-color:#000000;color:#000000;margin-bottom:0.5rem;}.legal-hero-description,.legal-section h2,.legal-section h3,.legal-block p,.legal-block li,.legal-hero .breadcrumb,.legal-hero .breadcrumb span,.legal-content .breadcrumb,.legal-content .breadcrumb span{color:#000000;}.legal-section,.legal-section.glass-card{background:transparent;border:none;box-shadow:none;backdrop-filter:none;-webkit-backdrop-filter:none;border-radius:0;padding:0;}.legal-section:hover,.legal-section.glass-card:hover{transform:none;box-shadow:none;border:none;background:transparent;}.legal-content .glass-card:hover{transform:none;box-shadow:none;}.legal-section h2{border-bottom:1px solid #e5e5e5;padding-bottom:0.5rem;margin-bottom:0.8rem;}.legal-block a,.legal-hero .breadcrumb a,.legal-content .breadcrumb a{color:#0b57d0;}.legal-block a:hover,.legal-hero .breadcrumb a:hover,.legal-content .breadcrumb a:hover{color:#0b57d0;text-decoration:none;}.legal-hero *,.legal-content *,.legal-hero *:hover,.legal-content *:hover,.legal-hero *:focus,.legal-content *:focus,.legal-hero *:active,.legal-content *:active{transform:none !important;box-shadow:none !important;text-shadow:none !important;transition:none !important;animation:none !important;}.footer-content{grid-template-columns:repeat(5,minmax(0,1fr));gap:1.5rem 1.25rem;align-items:start;}.footer-section h4{margin-bottom:0.65rem;}.footer-section ul li{margin-bottom:0.4rem;}@media (max-width:1100px){.footer-content{grid-template-columns:repeat(3,minmax(0,1fr));}}@media (max-width:768px){.footer-content{grid-template-columns:repeat(2,minmax(0,1fr));}}@media (max-width:520px){.footer-content{grid-template-columns:1fr;}.it-services-page .values .value-item{flex-basis:100%;max-width:100%;}}
--- a/public/assets/css/custom.css
+++ b/public/assets/css/custom.css
@@ -1,108 +0,0 @@
 .btn-tertiary {
    color: var(--text-primary);
    background: transparent;
    border: 1px solid rgba(255, 255, 255, 0.25);
    transition: all 0.3s ease;
 }
 .btn-tertiary:hover {
    border-color: var(--primary-color);
    color: var(--primary-color);
    background: rgba(255, 81, 249, 0.08);
 }
 .it-services-actions {
    justify-content: center;
    margin-top: 2rem;
 }
 /* Legal pages: plain white content with black text */
 .legal-hero,
 .legal-content {
    background: #ffffff;
    color: #000000;
 }
 .legal-hero {
    margin-top: 70px;
    padding: 2rem 0 1.5rem;
    border-bottom: 1px solid #e5e5e5;
 }
 .legal-content {
    padding-top: 2rem;
 }
 .legal-hero-title {
    background: none;
    -webkit-text-fill-color: #000000;
    color: #000000;
    margin-bottom: 0.5rem;
 }
 .legal-hero-description,
 .legal-section h2,
 .legal-section h3,
 .legal-block p,
 .legal-block li,
 .breadcrumb,
 .breadcrumb span {
    color: #000000;
 }
 .legal-section,
 .legal-section.glass-card {
    background: transparent;
    border: none;
    box-shadow: none;
    backdrop-filter: none;
    -webkit-backdrop-filter: none;
    border-radius: 0;
    padding: 0;
 }
 .legal-section:hover,
 .legal-section.glass-card:hover {
    transform: none;
    box-shadow: none;
    border: none;
    background: transparent;
 }
 .legal-content .glass-card:hover {
    transform: none;
    box-shadow: none;
 }
 .legal-section h2 {
    border-bottom: 1px solid #e5e5e5;
    padding-bottom: 0.5rem;
    margin-bottom: 0.8rem;
 }
 .legal-block a,
 .breadcrumb a {
    color: #0b57d0;
 }
 .legal-block a:hover,
 .breadcrumb a:hover {
    color: #0b57d0;
    text-decoration: none;
 }
 /* Ensure absolutely no hover effects on legal text/content */
 .legal-hero *,
 .legal-content *,
 .legal-hero *:hover,
 .legal-content *:hover,
 .legal-hero *:focus,
 .legal-content *:focus,
 .legal-hero *:active,
 .legal-content *:active {
    transform: none !important;
    box-shadow: none !important;
    text-shadow: none !important;
    transition: none !important;
    animation: none !important;
 }
--- a/public/assets/css/style.css
+++ b/public/assets/css/style.css
--- a/public/assets/css/style.d01979e8c871.css
+++ b/public/assets/css/style.d01979e8c871.css
--- a/public/assets/js/contact.641876ea7594.js
+++ b/public/assets/js/contact.641876ea7594.js
--- a/public/assets/js/contact.js
+++ b/public/assets/js/contact.js
@@ -1,239 +0,0 @@
 (function () {
  "use strict";
  function initFaqAccordion() {
    const faqItems = document.querySelectorAll(".faq-item");
    faqItems.forEach(faqItem => {
      const faqQuestion = faqItem.querySelector(".faq-question");
      const faqAnswer = faqItem.querySelector(".faq-answer");
      const faqToggle = faqItem.querySelector(".faq-toggle");
      faqQuestion.addEventListener("click", function () {
        const isOpen = faqItem.classList.contains("open");
        faqItems.forEach(otherItem => {
          if (otherItem !== faqItem) {
            otherItem.classList.remove("open");
            const otherAnswer = otherItem.querySelector(".faq-answer");
            const otherToggle = otherItem.querySelector(".faq-toggle");
            otherAnswer.style.maxHeight = null;
            otherToggle.textContent = "+";
          }
        });
        if (isOpen) {
          faqItem.classList.remove("open");
          faqAnswer.style.maxHeight = null;
          faqToggle.textContent = "+";
        } else {
          faqItem.classList.add("open");
          faqAnswer.style.maxHeight = faqAnswer.scrollHeight + "px";
          faqToggle.textContent = "−";
        }
      });
    });
  }
  function initContactForm() {
    const contactForm = document.getElementById("contactForm");
    if (!contactForm) {
      return;
    }
    contactForm.addEventListener("submit", function (submitEvent) {
      submitEvent.preventDefault();
      const formData = new FormData(contactForm);
      const payload = {};
      for (let [key, value] of formData.entries()) {
        payload[key] = value;
      }
      if (!validateFormData(payload)) {
        return;
      }
      const submitButton = contactForm.querySelector("button[type=\"submit\"]");
      const originalButtonText = submitButton.textContent;
      submitButton.textContent = "Wird gesendet...";
      submitButton.disabled = true;
      const requestOptions = {
        method: "POST",
        body: formData
      };
      fetch("contact-handler.php", requestOptions).then(response => response.json()).then(result => {
        submitButton.textContent = originalButtonText;
        submitButton.disabled = false;
        if (result.success) {
          contactForm.reset();
          showNotification(result.message, "success");
          window.scrollTo({
            top: 0,
            behavior: "smooth"
          });
        } else {
          showNotification(result.message, "error");
          if (result.missing_fields) {
            result.missing_fields.forEach(missingFieldId => {
              const missingField = document.getElementById(missingFieldId);
              if (missingField) {
                missingField.style.borderColor = "#ff4d6d";
                setTimeout(() => {
                  missingField.style.borderColor = "";
                }, 3000);
              }
            });
          }
        }
      }).catch(error => {
        console.error("Error:", error);
        showNotification("Ein Fehler ist aufgetreten. Bitte versuchen Sie es später erneut.", "error");
        submitButton.textContent = originalButtonText;
        submitButton.disabled = false;
      });
    });
  }
  function validateFormData(formValues) {
    const requiredKeys = ["firstName", "lastName", "email", "subject", "message"];
    const errors = [];
    requiredKeys.forEach(fieldName => {
      if (!formValues[fieldName] || formValues[fieldName].trim() === "") {
        errors.push("Das Feld \"" + getFieldLabel(fieldName) + "\" ist erforderlich.");
      }
    });
    if (formValues.email && !isValidEmail(formValues.email)) {
      errors.push("Bitte geben Sie eine gültige E-Mail-Adresse ein.");
    }
    if (!formValues.privacy) {
      errors.push("Sie müssen der Datenschutzerklärung zustimmen.");
    }
    if (errors.length > 0) {
      showNotification(errors.join("\n"), "error");
      return false;
    }
    return true;
  }
  function getFieldLabel(keyName) {
    const fieldLabels = {
      firstName: "Vorname",
      lastName: "Nachname",
      email: "E-Mail-Adresse",
      subject: "Betreff",
      message: "Nachricht"
    };
    return fieldLabels[keyName] || keyName;
  }
  function isValidEmail(email) {
    const emailPattern = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
    return emailPattern.test(email);
  }
  function showNotification(message, type = "info") {
    if (window.HexaHost && window.HexaHost.showNotification) {
      window.HexaHost.showNotification(message, type);
    } else {
      alert(message);
    }
  }
  window.openLiveChat = function () {
    showNotification("Live Chat wird geöffnet... (Demo-Funktion)", "info");
  };
  function prefillFromQueryParams() {
    const queryParams = new URLSearchParams(window.location.search);
    const packageParam = queryParams.get("package");
    const productParam = queryParams.get("product");
    if (packageParam || productParam) {
      const subjectField = document.getElementById("subject");
      const messageField = document.getElementById("message");
      if (packageParam) {
        const packageLabels = {
          "vpc-starter": "Virtual Private Container - Starter Paket",
          "vpc-business": "Virtual Private Container - Business Paket",
          "vpc-professional": "Virtual Private Container - Professional Paket",
          "vpc-enterprise": "Virtual Private Container - Enterprise Paket",
          "vps-basic": "Virtual Private Server - Basic Paket",
          "vps-standard": "Virtual Private Server - Standard Paket",
          "vps-premium": "Virtual Private Server - Premium Paket",
          "vps-enterprise": "Virtual Private Server - Enterprise Paket",
          "mail-starter": "Mail Gateway - Starter Paket",
          "mail-business": "Mail Gateway - Business Paket",
          "mail-professional": "Mail Gateway - Professional Paket",
          "mail-enterprise": "Mail Gateway - Enterprise Paket",
          "web-starter": "Webhosting - Starter Paket",
          "web-business": "Webhosting - Business Paket",
          "web-professional": "Webhosting - Professional Paket",
          "web-enterprise": "Webhosting - Enterprise Paket"
        };
        if (packageLabels[packageParam]) {
          messageField.value = "Hallo,\n\nich interessiere mich für das " + packageLabels[packageParam] + ".\n\nBitte senden Sie mir weitere Informationen und ein individuelles Angebot.\n\nVielen Dank!";
          if (packageParam.startsWith("vpc-")) {
            subjectField.value = "vpc-anfrage";
          } else if (packageParam.startsWith("vps-")) {
            subjectField.value = "vps-anfrage";
          } else if (packageParam.startsWith("mail-")) {
            subjectField.value = "mail-gateway-anfrage";
          } else if (packageParam.startsWith("web-")) {
            subjectField.value = "webhosting-anfrage";
          }
        }
      } else if (productParam) {
        const productSubjects = {
          vpc: "vpc-anfrage",
          vps: "vps-anfrage",
          "mail-gateway": "mail-gateway-anfrage",
          webhosting: "webhosting-anfrage"
        };
        if (productSubjects[productParam]) {
          subjectField.value = productSubjects[productParam];
          messageField.value = "Hallo,\n\nich interessiere mich für Ihre " + productParam.replace("-", " ") + " Lösungen.\n\nBitte kontaktieren Sie mich für eine persönliche Beratung.\n\nVielen Dank!";
        }
      }
    }
  }
  function initFieldUiEnhancements() {
    const inputElements = document.querySelectorAll("input, select, textarea");
    inputElements.forEach(inputEl => {
      inputEl.addEventListener("focus", function () {
        this.parentElement.classList.add("focused");
      });
      inputEl.addEventListener("blur", function () {
        if (!this.value) {
          this.parentElement.classList.remove("focused");
        }
      });
      if (inputEl.value) {
        inputEl.parentElement.classList.add("focused");
      }
    });
    const phoneInput = document.getElementById("phone");
    if (phoneInput) {
      phoneInput.addEventListener("input", function () {
        let digitsOnly = this.value.replace(/\D/g, "");
        if (digitsOnly.startsWith("49")) {
          digitsOnly = "+" + digitsOnly;
        } else if (digitsOnly.startsWith("0")) {
          digitsOnly = "+49" + digitsOnly.substring(1);
        }
        this.value = digitsOnly;
      });
    }
  }
  function initAccessibility() {
    const requiredInputs = document.querySelectorAll("input[required], select[required], textarea[required]");
    requiredInputs.forEach(requiredInput => {
      requiredInput.setAttribute("aria-required", "true");
    });
    const faqQuestions = document.querySelectorAll(".faq-question");
    faqQuestions.forEach(questionEl => {
      questionEl.setAttribute("tabindex", "0");
      questionEl.setAttribute("role", "button");
      questionEl.setAttribute("aria-expanded", "false");
      questionEl.addEventListener("keydown", function (keyboardEvent) {
        if (keyboardEvent.key === "Enter" || keyboardEvent.key === " ") {
          keyboardEvent.preventDefault();
          this.click();
        }
      });
    });
  }
  document.addEventListener("DOMContentLoaded", function () {
    initFaqAccordion();
    initContactForm();
    prefillFromQueryParams();
    initFieldUiEnhancements();
    initAccessibility();
    setTimeout(() => {
      showNotification("💬 Haben Sie Fragen? Wir helfen gerne!", "info");
    }, 2000);
  });
 })();
--- a/public/assets/js/cookie-consent.4c1a86945d56.js
+++ b/public/assets/js/cookie-consent.4c1a86945d56.js
--- a/public/assets/js/cookie-consent.js
+++ b/public/assets/js/cookie-consent.js
@@ -1,210 +0,0 @@
 (function () {
  "use strict";
  const CONSENT_COOKIE_NAME = "hexahost_cookie_consent";
  const CONSENT_DAYS = 365;
  const cookieBanner = document.getElementById("cookieConsent");
  const settingsPanel = document.getElementById("cookieSettingsPanel");
  const acceptAllButton = document.getElementById("cookieAcceptAll");
  const acceptEssentialButton = document.getElementById("cookieAcceptEssential");
  const settingsButton = document.getElementById("cookieSettings");
  const saveSettingsButton = document.getElementById("cookieSaveSettings");
  const closeSettingsButton = document.getElementById("cookieCloseSettings");
  const analyticsCheckbox = document.getElementById("cookieAnalytics");
  const marketingCheckbox = document.getElementById("cookieMarketing");
  const cookieStore = {
    set: function (name, value, days) {
      const expiresDate = new Date();
      expiresDate.setTime(expiresDate.getTime() + days * 24 * 60 * 60 * 1000);
      const expiresString = "expires=" + expiresDate.toUTCString();
      document.cookie = name + "=" + JSON.stringify(value) + ";" + expiresString + ";path=/;SameSite=Lax;Secure";
    },
    get: function (name) {
      const prefix = name + "=";
      const cookies = document.cookie.split(";");
      for (let index = 0; index < cookies.length; index++) {
        let cookie = cookies[index].trim();
        if (cookie.indexOf(prefix) === 0) {
          try {
            return JSON.parse(cookie.substring(prefix.length));
          } catch (parseError) {
            return null;
          }
        }
      }
      return null;
    },
    delete: function (name) {
      document.cookie = name + "=;expires=Thu, 01 Jan 1970 00:00:00 UTC;path=/;";
    }
  };
  const cookieConsentManager = {
    defaultConsent: {
      essential: true,
      analytics: false,
      marketing: false,
      timestamp: null
    },
    init: function () {
      if (!cookieBanner) {
        return;
      }
      const storedConsent = this.getConsent();
      if (storedConsent && storedConsent.timestamp) {
        this.hideBanner();
        this.applyConsent(storedConsent);
      } else {
        this.showBanner();
      }
      this.bindEvents();
    },
    bindEvents: function () {
      if (acceptAllButton) {
        acceptAllButton.addEventListener("click", () => this.acceptAll());
      }
      if (acceptEssentialButton) {
        acceptEssentialButton.addEventListener("click", () => this.acceptEssential());
      }
      if (settingsButton) {
        settingsButton.addEventListener("click", () => this.showSettings());
      }
      if (saveSettingsButton) {
        saveSettingsButton.addEventListener("click", () => this.saveSettings());
      }
      if (closeSettingsButton) {
        closeSettingsButton.addEventListener("click", () => this.hideSettings());
      }
      document.addEventListener("keydown", event => {
        if (event.key === "Escape" && settingsPanel && settingsPanel.style.display !== "none") {
          this.hideSettings();
        }
      });
    },
    acceptAll: function () {
      const allConsent = {
        essential: true,
        analytics: true,
        marketing: true,
        timestamp: new Date().toISOString()
      };
      this.saveConsent(allConsent);
      this.hideBanner();
      this.applyConsent(allConsent);
      this.showNotification("Alle Cookies wurden akzeptiert.", "success");
    },
    acceptEssential: function () {
      const essentialConsent = {
        essential: true,
        analytics: false,
        marketing: false,
        timestamp: new Date().toISOString()
      };
      this.saveConsent(essentialConsent);
      this.hideBanner();
      this.applyConsent(essentialConsent);
      this.showNotification("Nur notwendige Cookies wurden akzeptiert.", "info");
    },
    saveSettings: function () {
      const customConsent = {
        essential: true,
        analytics: analyticsCheckbox ? analyticsCheckbox.checked : false,
        marketing: marketingCheckbox ? marketingCheckbox.checked : false,
        timestamp: new Date().toISOString()
      };
      this.saveConsent(customConsent);
      this.hideSettings();
      this.hideBanner();
      this.applyConsent(customConsent);
      this.showNotification("Cookie-Einstellungen wurden gespeichert.", "success");
    },
    saveConsent: function (consent) {
      cookieStore.set(CONSENT_COOKIE_NAME, consent, CONSENT_DAYS);
    },
    getConsent: function () {
      return cookieStore.get(CONSENT_COOKIE_NAME);
    },
    applyConsent: function (consent) {
      const eventPayload = {
        detail: consent
      };
      window.dispatchEvent(new CustomEvent("cookieConsentUpdated", eventPayload));
      if (consent.analytics) {
        this.enableAnalytics();
      } else {
        this.disableAnalytics();
      }
      if (consent.marketing) {
        this.enableMarketing();
      } else {
        this.disableMarketing();
      }
    },
    enableAnalytics: function () {
      console.log("Analytics enabled");
    },
    disableAnalytics: function () {
      console.log("Analytics disabled");
    },
    enableMarketing: function () {
      console.log("Marketing enabled");
    },
    disableMarketing: function () {
      console.log("Marketing disabled");
    },
    showBanner: function () {
      if (cookieBanner) {
        cookieBanner.classList.remove("hide");
        cookieBanner.classList.add("show");
        cookieBanner.setAttribute("aria-hidden", "false");
        setTimeout(() => {
          if (acceptAllButton) {
            acceptAllButton.focus();
          }
        }, 100);
      }
    },
    hideBanner: function () {
      if (cookieBanner) {
        cookieBanner.classList.remove("show");
        cookieBanner.classList.add("hide");
        cookieBanner.setAttribute("aria-hidden", "true");
      }
    },
    showSettings: function () {
      if (settingsPanel) {
        const savedConsent = this.getConsent() || this.defaultConsent;
        if (analyticsCheckbox) {
          analyticsCheckbox.checked = savedConsent.analytics;
        }
        if (marketingCheckbox) {
          marketingCheckbox.checked = savedConsent.marketing;
        }
        settingsPanel.style.display = "block";
        settingsPanel.setAttribute("aria-hidden", "false");
      }
    },
    hideSettings: function () {
      if (settingsPanel) {
        settingsPanel.style.display = "none";
        settingsPanel.setAttribute("aria-hidden", "true");
      }
    },
    showNotification: function (message, type) {
      if (window.HexaHost && typeof window.HexaHost.showNotification === "function") {
        window.HexaHost.showNotification(message, type);
      }
    },
    resetConsent: function () {
      cookieStore.delete(CONSENT_COOKIE_NAME);
      this.showBanner();
      if (settingsPanel) {
        settingsPanel.style.display = "none";
      }
    }
  };
  if (document.readyState === "loading") {
    document.addEventListener("DOMContentLoaded", () => cookieConsentManager.init());
  } else {
    cookieConsentManager.init();
  }
  window.CookieConsent = cookieConsentManager;
 })();
--- a/public/assets/js/main.e2f10a1bc052.js
+++ b/public/assets/js/main.e2f10a1bc052.js
--- a/public/assets/js/main.js
+++ b/public/assets/js/main.js
@@ -1,235 +0,0 @@
 (function () {
  "use strict";
  const navToggle = document.querySelector(".nav-toggle");
  const navMenu = document.querySelector(".nav-menu");
  const navLinks = document.querySelectorAll(".nav-link");
  const glassCards = document.querySelectorAll(".glass-card");
  const productCards = document.querySelectorAll(".product-card");
  if (navToggle && navMenu) {
    navToggle.addEventListener("click", function () {
      navMenu.classList.toggle("active");
      navToggle.classList.toggle("active");
    });
    navLinks.forEach(navLink => {
      navLink.addEventListener("click", function () {
        navMenu.classList.remove("active");
        navToggle.classList.remove("active");
      });
    });
  }
  document.querySelectorAll("a[href^=\"#\"]").forEach(anchorLink => {
    anchorLink.addEventListener("click", function (event) {
      event.preventDefault();
      const targetSection = document.querySelector(this.getAttribute("href"));
      if (targetSection) {
        targetSection.scrollIntoView({
          behavior: "smooth",
          block: "start"
        });
      }
    });
  });
  glassCards.forEach(card => {
    card.addEventListener("mouseenter", function () {
      this.style.transform = "translateY(-8px) scale(1.02)";
    });
    card.addEventListener("mouseleave", function () {
      this.style.transform = "translateY(0) scale(1)";
    });
  });
  productCards.forEach(productCard => {
    productCard.addEventListener("mouseenter", function () {
      if (!this.classList.contains("featured")) {
        this.style.transform = "translateY(-10px) scale(1.03)";
      }
    });
    productCard.addEventListener("mouseleave", function () {
      if (!this.classList.contains("featured")) {
        this.style.transform = "translateY(0) scale(1)";
      }
    });
  });
  const observerOptions = {
    threshold: 0.1,
    rootMargin: "0px 0px -50px 0px"
  };
  const animationObserver = new IntersectionObserver(function (entries) {
    entries.forEach(entry => {
      if (entry.isIntersecting) {
        entry.target.classList.add("animate-in");
      }
    });
  }, observerOptions);
  const animatedElements = document.querySelectorAll(".glass-card, .feature-item, .product-card");
  animatedElements.forEach(element => {
    animationObserver.observe(element);
  });
  const headerElement = document.querySelector(".header");
  const heroSection = document.querySelector(".hero");
  let isScrollTicking = false;
  function updateOnScroll() {
    const scrollTop = window.pageYOffset || document.documentElement.scrollTop;
    if (headerElement) {
      if (scrollTop > 50) {
        headerElement.classList.add("scrolled");
      } else {
        headerElement.classList.remove("scrolled");
      }
    }
    if (heroSection) {
      const parallaxOffset = scrollTop * -0.5;
      heroSection.style.transform = "translateY(" + parallaxOffset + "px)";
    }
    isScrollTicking = false;
  }
  window.addEventListener("scroll", function () {
    if (!isScrollTicking) {
      requestAnimationFrame(updateOnScroll);
      isScrollTicking = true;
    }
  }, {
    passive: true
  });
  const forms = document.querySelectorAll("form");
  forms.forEach(form => {
    form.addEventListener("submit", function (submitEvent) {
      const requiredFields = form.querySelectorAll("[required]");
      let isValid = true;
      requiredFields.forEach(field => {
        if (!field.value.trim()) {
          isValid = false;
          field.classList.add("error");
          field.addEventListener("focus", function () {
            this.classList.remove("error");
          }, {
            once: true
          });
        }
      });
      if (!isValid) {
        submitEvent.preventDefault();
        showNotification("Bitte füllen Sie alle Pflichtfelder aus.", "error");
      }
    });
  });
  function showNotification(message, type = "info") {
    const notificationEl = document.createElement("div");
    notificationEl.className = "notification notification-" + type;
    notificationEl.textContent = message;
    notificationEl.style.position = "fixed";
    notificationEl.style.top = "20px";
    notificationEl.style.right = "20px";
    notificationEl.style.padding = "15px 20px";
    notificationEl.style.borderRadius = "8px";
    notificationEl.style.color = "white";
    notificationEl.style.fontWeight = "500";
    notificationEl.style.zIndex = "9999";
    notificationEl.style.transform = "translateX(400px)";
    notificationEl.style.transition = "transform 0.3s ease-in-out";
    if (type === "error") {
      notificationEl.style.background = "linear-gradient(135deg, #ef4444, #dc2626)";
    } else if (type === "success") {
      notificationEl.style.background = "linear-gradient(135deg, #10b981, #059669)";
    } else {
      notificationEl.style.background = "linear-gradient(135deg, #3b82f6, #2563eb)";
    }
    document.body.appendChild(notificationEl);
    setTimeout(() => {
      notificationEl.style.transform = "translateX(0)";
    }, 100);
    setTimeout(() => {
      notificationEl.style.transform = "translateX(400px)";
      setTimeout(() => {
        if (notificationEl.parentNode) {
          notificationEl.parentNode.removeChild(notificationEl);
        }
      }, 300);
    }, 5000);
  }
  const lazyImages = document.querySelectorAll("img[data-src]");
  const lazyImageObserver = new IntersectionObserver(imageEntries => {
    imageEntries.forEach(imageEntry => {
      if (imageEntry.isIntersecting) {
        const image = imageEntry.target;
        image.src = image.dataset.src;
        image.classList.remove("lazy");
        lazyImageObserver.unobserve(image);
      }
    });
  });
  lazyImages.forEach(lazyImage => lazyImageObserver.observe(lazyImage));
  function debounce(callback, delay) {
    let timeoutId;
    return function debouncedFunction(...args) {
      const runLater = () => {
        clearTimeout(timeoutId);
        callback(...args);
      };
      clearTimeout(timeoutId);
      timeoutId = setTimeout(runLater, delay);
    };
  }
  const debouncedScrollProgress = debounce(function () {
    updateScrollProgress();
  }, 16);
  window.addEventListener("scroll", debouncedScrollProgress);
  function updateScrollProgress() {
    const pageYOffset = window.pageYOffset;
    const scrollableHeight = document.body.scrollHeight - window.innerHeight;
    const progressPercent = pageYOffset / scrollableHeight * 100;
    document.documentElement.style.setProperty("--scroll-progress", progressPercent + "%");
  }
  function initDarkMode() {
    const darkModeToggle = document.querySelector(".dark-mode-toggle");
    if (darkModeToggle) {
      darkModeToggle.addEventListener("click", function () {
        document.body.classList.toggle("dark-mode");
        localStorage.setItem("darkMode", document.body.classList.contains("dark-mode"));
      });
      if (localStorage.getItem("darkMode") === "true") {
        document.body.classList.add("dark-mode");
      }
    }
  }
  function initFaqAccordion() {
    const faqItems = document.querySelectorAll(".faq-item");
    faqItems.forEach(faqItem => {
      const faqQuestion = faqItem.querySelector(".faq-question");
      const faqAnswer = faqItem.querySelector(".faq-answer");
      if (faqQuestion && faqAnswer) {
        faqQuestion.addEventListener("click", function () {
          faqItems.forEach(otherFaqItem => {
            if (otherFaqItem !== faqItem && otherFaqItem.classList.contains("open")) {
              otherFaqItem.classList.remove("open");
              const otherFaqAnswer = otherFaqItem.querySelector(".faq-answer");
              if (otherFaqAnswer) {
                otherFaqAnswer.style.maxHeight = null;
              }
            }
          });
          faqItem.classList.toggle("open");
          if (faqItem.classList.contains("open")) {
            faqAnswer.style.maxHeight = faqAnswer.scrollHeight + "px";
          } else {
            faqAnswer.style.maxHeight = null;
          }
        });
      }
    });
  }
  document.addEventListener("DOMContentLoaded", function () {
    initDarkMode();
    initFaqAccordion();
    document.body.classList.add("loaded");
    if (!localStorage.getItem("hasVisited")) {
      setTimeout(() => {
        showNotification("Willkommen bei HexaHost.de! 🚀", "success");
        localStorage.setItem("hasVisited", "true");
      }, 1000);
    }
  });
  const hexaHostApi = {
    showNotification: showNotification
  };
  window.HexaHost = hexaHostApi;
 })();
--- a/public/config/mail-config.php
+++ b/public/config/mail-config.php
@@ -1,5 +1,5 @@
 <?php
-/**
+
- * Kompatibilitäts-Wrapper – leitet auf die zentrale Backend-Konfiguration um.
+
- */
+
 require_once __DIR__ . '/../../backend/config/mail-config.php';
--- a/public/contact-handler.php
+++ b/public/contact-handler.php
@@ -1,8 +1,8 @@
 <?php
-/**
+
- * HexaHost.de Contact Form Handler
+
- * E-Mail-Verarbeitung mit nativer PHP-mail()-Funktion und Spam-Schutz
+
- */
+
 require_once __DIR__ . '/../backend/includes/functions.php';
 require_once __DIR__ . '/../backend/config/mail-config.php';
@@ -10,7 +10,7 @@ require_once __DIR__ . '/../backend/config/contact-config.php';
 $config = getHexaHostConfig();
-// CORS Headers für AJAX-Requests (nur eigene Domain erlauben)
+
 $allowed_origins = [
    'https://hexahost.de',
    'https://www.hexahost.de',
@@ -113,7 +113,7 @@ function sendEmail($data) {
        'X-Report-Abuse: Please report abuse here: abuse@hexahost.de',
    ];
-    // Native PHP Mailversand ohne externe Libraries
+    
    return mail($config['to_email'], $subject, generateEmailHTML($data), implode("\r\n", $headers));
 }
--- a/public/contact.php
+++ b/public/contact.php
@@ -4,13 +4,13 @@ require_once __DIR__ . '/../backend/config/contact-config.php';
 $preselected_subject = getPreselectedContactSubject();
-// Page configuration
+
 $page_title = 'Kontakt - HexaHost.de | Hosting aus Niederbayern';
 $page_description = 'Kontaktieren Sie HexaHost.de - Ihr Hosting-Partner aus Niederbayern. Persönlicher Support und kompetente Beratung.';
 $current_page = 'contact';
-$additional_scripts = ['assets/js/contact.js'];
+$additional_scripts = ['assets/js/contact.641876ea7594.js'];
 // Include header
 includeHeader($page_title, $page_description, $current_page, $additional_scripts);
 ?>
@@ -252,6 +252,6 @@ includeHeader($page_title, $page_description, $current_page, $additional_scripts
 </main>
 <?php
-// Include footer
+
 includeFooter();
 ?> 
--- a/public/datenschutz.php
+++ b/public/datenschutz.php
@@ -1,12 +1,12 @@
 <?php
 require_once __DIR__ . '/../backend/includes/functions.php';
-// Page configuration
+
 $page_title = 'Datenschutzerklärung - HexaHost.de | Datenschutz';
 $page_description = 'Datenschutzerklärung von HexaHost.de - Informationen zum Schutz Ihrer personenbezogenen Daten.';
 $current_page = 'datenschutz';
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
@@ -344,6 +344,6 @@ includeHeader($page_title, $page_description, $current_page);
 </main>
 <?php
-// Include footer
+
 includeFooter();
 ?>
--- a/public/impressum.php
+++ b/public/impressum.php
@@ -1,12 +1,12 @@
 <?php
 require_once __DIR__ . '/../backend/includes/functions.php';
-// Page configuration
+
 $page_title = 'Impressum - HexaHost.de | Rechtliche Angaben';
 $page_description = 'Impressum und rechtliche Angaben von HexaHost.de - Hosting aus Niederbayern.';
 $current_page = 'impressum';
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
@@ -92,7 +92,7 @@ includeHeader($page_title, $page_description, $current_page);
                        <p>
                            Die Europäische Kommission stellt eine Plattform zur Online-Streitbeilegung (OS) bereit:
                            <a href="https://ec.europa.eu/consumers/odr/" target="_blank" rel="noopener noreferrer">
-                                https://ec.europa.eu/consumers/odr/
+                                https:
                            </a>
                        </p>
                        <p>
@@ -180,6 +180,6 @@ includeHeader($page_title, $page_description, $current_page);
 </main>
 <?php
-// Include footer
+
 includeFooter();
 ?>
--- a/public/index.php
+++ b/public/index.php
@@ -1,12 +1,12 @@
 <?php
 require_once __DIR__ . '/../backend/includes/functions.php';
-// Page configuration
+
 $page_title = 'HexaHost.de - Zuverlässiges Hosting aus Niederbayern';
 $page_description = 'HexaHost.de - Zuverlässiges und preiswertes Hosting aus Niederbayern. VPS, VPC, Mail Gateway und Webhosting Lösungen.';
 $current_page = 'home';
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
@@ -54,7 +54,7 @@ includeHeader($page_title, $page_description, $current_page);
                </p>
            </div>
            <div class="products-grid">
-                <div class="product-card glass-card">
+                <div class="product-card glass-card"<?php echo productHiddenAttr('vpc'); ?>>
                    <div class="product-icon">
                        <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
                            <path d="M4 7V4a2 2 0 0 1 2-2h8a2 2 0 0 1 2 2v3"/>
@@ -74,7 +74,7 @@ includeHeader($page_title, $page_description, $current_page);
                    </ul>
                    <a href="/vpc" class="btn btn-primary">Mehr erfahren</a>
                </div>
-                <div class="product-card glass-card">
+                <div class="product-card glass-card"<?php echo productHiddenAttr('vps'); ?>>
                    <div class="product-icon">
                        <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
                            <rect x="2" y="3" width="20" height="14" rx="2" ry="2"/>
@@ -92,7 +92,7 @@ includeHeader($page_title, $page_description, $current_page);
                    </ul>
                    <a href="/vps" class="btn btn-primary">Mehr erfahren</a>
                </div>
-                <div class="product-card glass-card">
+                <div class="product-card glass-card"<?php echo productHiddenAttr('mail-gateway'); ?>>
                    <div class="product-icon">
                        <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
                            <path d="M4 4h16c1.1 0 2 .9 2 2v12c0 1.1-.9 2-2 2H4c-1.1 0-2-.9-2-2V6c0-1.1.9-2 2-2z"/>
@@ -265,6 +265,6 @@ includeHeader($page_title, $page_description, $current_page);
 </main>
 <?php
-// Include footer
+
 includeFooter();
 ?> 
--- a/public/it-dienstleistungen.php
+++ b/public/it-dienstleistungen.php
@@ -1,16 +1,16 @@
 <?php
 require_once __DIR__ . '/../backend/includes/functions.php';
-// Page configuration
+
 $page_title = 'IT-Dienstleistungen - HexaHost.de | Privat & Gewerblich';
 $page_description = 'IT-Dienstleistungen von HexaHost.de mit Fokus auf Privatkunden und ergänzend für gewerbliche Anforderungen.';
 $current_page = 'it-dienstleistungen';
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
-<main id="main-content">
+<main id="main-content" class="it-services-page">
    <!-- Services Hero -->
    <section class="about-hero">
        <div class="container">
@@ -143,6 +143,6 @@ includeHeader($page_title, $page_description, $current_page);
 </main>
 <?php
-// Include footer
+
 includeFooter();
 ?>
--- a/public/mail-gateway.php
+++ b/public/mail-gateway.php
@@ -2,16 +2,16 @@
 require_once __DIR__ . '/../backend/includes/functions.php';
 require_once __DIR__ . '/../backend/config/products-config.php';
-// Produkt-Daten aus Config laden
+
 $product = getProduct('mail-gateway');
 $packages = getProductPackages('mail-gateway');
-// Page configuration
+
 $page_title = $product['page_title'];
 $page_description = $product['page_description'];
 $current_page = 'mail-gateway';
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
@@ -175,6 +175,6 @@ includeHeader($page_title, $page_description, $current_page);
 </main>
 <?php
-// Include footer
+
 includeFooter();
 ?>
--- a/public/robots.txt
+++ b/public/robots.txt
@@ -6,9 +6,9 @@ Disallow: /assets/js/
 Disallow: /assets/css/
 # Allow CSS and JS files for better SEO
-Allow: /assets/css/style.css
+Allow: /assets/css/style.d01979e8c871.css
-Allow: /assets/js/main.js
+Allow: /assets/js/main.e2f10a1bc052.js
-Allow: /assets/js/contact.js
+Allow: /assets/js/contact.641876ea7594.js
 # Sitemap location
 Sitemap: https://hexahost.de/sitemap.xml
--- a/public/vpc.php
+++ b/public/vpc.php
@@ -2,16 +2,16 @@
 require_once __DIR__ . '/../backend/includes/functions.php';
 require_once __DIR__ . '/../backend/config/products-config.php';
-// Produkt-Daten aus Config laden
+
 $product = getProduct('vpc');
 $packages = getProductPackages('vpc');
-// Page configuration
+
 $page_title = $product['page_title'];
 $page_description = $product['page_description'];
 $current_page = 'vpc';
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
@@ -175,6 +175,6 @@ includeHeader($page_title, $page_description, $current_page);
 </main>
 <?php
-// Include footer
+
 includeFooter();
 ?>
--- a/public/vps.php
+++ b/public/vps.php
@@ -2,16 +2,16 @@
 require_once __DIR__ . '/../backend/includes/functions.php';
 require_once __DIR__ . '/../backend/config/products-config.php';
-// Produkt-Daten aus Config laden
+
 $product = getProduct('vps');
 $packages = getProductPackages('vps');
-// Page configuration
+
 $page_title = $product['page_title'];
 $page_description = $product['page_description'];
 $current_page = 'vps';
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
@@ -180,6 +180,6 @@ includeHeader($page_title, $page_description, $current_page);
 </main>
 <?php
-// Include footer
+
 includeFooter();
 ?>
--- a/public/webhosting.php
+++ b/public/webhosting.php
@@ -2,16 +2,16 @@
 require_once __DIR__ . '/../backend/includes/functions.php';
 require_once __DIR__ . '/../backend/config/products-config.php';
-// Produkt-Daten aus Config laden
+
 $product = getProduct('webhosting');
 $packages = getProductPackages('webhosting');
-// Page configuration
+
 $page_title = $product['page_title'];
 $page_description = $product['page_description'];
 $current_page = 'webhosting';
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
@@ -179,6 +179,6 @@ includeHeader($page_title, $page_description, $current_page);
 </main>
 <?php
-// Include footer
+
 includeFooter();
 ?>
--- a/public/widerruf.php
+++ b/public/widerruf.php
@@ -1,12 +1,12 @@
 <?php
 require_once __DIR__ . '/../backend/includes/functions.php';
-// Page configuration
+
 $page_title = 'Widerrufsbelehrung - HexaHost.de';
 $page_description = 'Widerrufsbelehrung und Muster-Widerrufsformular von HexaHost Inh. Samuel Müller.';
 $current_page = 'widerruf';
-// Include header
+
 includeHeader($page_title, $page_description, $current_page);
 ?>
@@ -131,6 +131,6 @@ includeHeader($page_title, $page_description, $current_page);
 </main>
 <?php
-// Include footer
+
 includeFooter();
 ?>
--- a/scripts/pycache/obfuscate_release.cpython-314.pyc
+++ b/scripts/pycache/obfuscate_release.cpython-314.pyc
--- a/scripts/obfuscate_release.py
+++ b/scripts/obfuscate_release.py
@@ -3,15 +3,17 @@ from __future__ import annotations
 import argparse
 import hashlib
 import os
 import re
 import shutil
 import subprocess
 import sys
 import tempfile
 from collections import defaultdict
 from pathlib import Path
 TEXT_EXTENSIONS = {".php", ".html", ".htm", ".xml", ".txt", ".js", ".css"}
 HASH_SUFFIX_RE = re.compile(r"\.[a-f0-9]{12}$", re.I)
 def strip_comments_keep_strings(text: str) -> str:
@@ -174,42 +176,124 @@ def minify_js_fallback(text: str) -> str:
    return text.strip()
-def run_cmd(command: list[str], cwd: Path, input_text: str | None = None) -> str:
+def canonical_asset_base(stem: str) -> str:
    name = stem
    while HASH_SUFFIX_RE.search(name):
        name = HASH_SUFFIX_RE.sub("", name)
    return name
 def is_skipped_asset(path: Path) -> bool:
    lowered = path.as_posix().lower()
    if ".min." in path.name or ".obf." in path.name or ".deob." in path.name:
        return True
    if "deobfuscated" in lowered:
        return True
    return False
 def is_valid_source_content(content: str) -> bool:
    if "[javascript-obfuscator-cli]" in content:
        return False
    return len(content.strip()) >= 20
 def collect_asset_groups(asset_root: Path) -> dict[tuple[Path, str, str], list[Path]]:
    groups: dict[tuple[Path, str, str], list[Path]] = defaultdict(list)
    for ext in (".js", ".css"):
        for file_path in sorted(asset_root.rglob(f"*{ext}")):
            if is_skipped_asset(file_path):
                continue
            base = canonical_asset_base(file_path.stem)
            key = (file_path.parent, base, ext)
            groups[key].append(file_path)
    return groups
 def pick_source_file(paths: list[Path], base: str, ext: str) -> Path | None:
    if not paths:
        return None
    parent = paths[0].parent
    plain = parent / f"{base}{ext}"
    ordered: list[Path] = []
    if plain in paths:
        ordered.append(plain)
    for candidate in sorted(paths, key=lambda p: len(p.name)):
        if candidate not in ordered:
            ordered.append(candidate)
    for candidate in ordered:
        try:
            content = candidate.read_text(encoding="utf-8")
        except (OSError, UnicodeDecodeError):
            continue
        if is_valid_source_content(content):
            return candidate
    return None
 def cleanup_invalid_siblings(paths: list[Path], source: Path) -> None:
    for path in paths:
        if path == source or not path.exists():
            continue
        try:
            content = path.read_text(encoding="utf-8")
        except (OSError, UnicodeDecodeError):
            content = ""
        if not is_valid_source_content(content):
            path.unlink()
 def run_cmd(command: list[str], cwd: Path) -> None:
    proc = subprocess.run(
        command,
        cwd=str(cwd),
        input=input_text,
        text=True,
        capture_output=True,
        check=False,
    )
    if proc.returncode != 0:
-        raise RuntimeError(proc.stderr.strip() or "command failed")
+        raise RuntimeError(proc.stderr.strip() or proc.stdout.strip() or "command failed")
    return proc.stdout
 def process_js(path: Path, cwd: Path) -> None:
    original = path.read_text(encoding="utf-8")
    if not is_valid_source_content(original):
        raise ValueError(
            f"invalid or corrupted JS source: {path} "
            f"(restore e.g. 'git checkout dev -- {path.as_posix()}')"
        )
    if shutil.which("npx"):
        tmpdir = Path(tempfile.mkdtemp())
        try:
-            minified = run_cmd(
+            src = tmpdir / "input.js"
            out = tmpdir / "output.js"
            src.write_text(original, encoding="utf-8")
            run_cmd(
                [
                    "npx",
                    "--yes",
                    "terser",
                    str(src),
                    "-o",
                    str(src),
                    "--compress",
                    "--mangle",
                    "--comments",
                    "false",
                ],
                cwd,
                input_text=original,
            )
-            obfuscated = run_cmd(
+            run_cmd(
                [
                    "npx",
                    "--yes",
                    "javascript-obfuscator",
                    str(src),
                    "--output",
                    str(out),
                    "--compact",
                    "true",
                    "--control-flow-flattening",
@@ -224,38 +308,51 @@ def process_js(path: Path, cwd: Path) -> None:
                    "browser-no-eval",
                    "--source-map",
                    "false",
                    "--output",
                    "stdout",
                ],
                cwd,
                input_text=minified,
            )
-            path.write_text(obfuscated.strip() + "\n", encoding="utf-8")
+            if not out.exists():
                raise RuntimeError("obfuscator produced no output file")
            result = out.read_text(encoding="utf-8")
            if not is_valid_source_content(result):
                raise RuntimeError("obfuscator output looks invalid")
            path.write_text(result.strip() + "\n", encoding="utf-8")
            return
        except Exception:
            pass
        finally:
            shutil.rmtree(tmpdir, ignore_errors=True)
    path.write_text(minify_js_fallback(original) + "\n", encoding="utf-8")
 def process_css(path: Path, cwd: Path) -> None:
    original = path.read_text(encoding="utf-8")
    if shutil.which("npx"):
        tmpdir = Path(tempfile.mkdtemp())
        try:
-            minified = run_cmd(
+            src = tmpdir / "input.css"
            out = tmpdir / "output.css"
            src.write_text(original, encoding="utf-8")
            run_cmd(
                [
                    "npx",
                    "--yes",
                    "clean-css-cli",
                    str(src),
                    "-o",
                    str(out),
                    "--skip-rebase",
                    "-O2",
                ],
                cwd,
                input_text=original,
            )
-            path.write_text(minified.strip() + "\n", encoding="utf-8")
+            path.write_text(out.read_text(encoding="utf-8").strip() + "\n", encoding="utf-8")
            return
        except Exception:
            pass
        finally:
            shutil.rmtree(tmpdir, ignore_errors=True)
    path.write_text(minify_css_fallback(original) + "\n", encoding="utf-8")
@@ -266,8 +363,7 @@ def process_php(path: Path) -> None:
 def hash_file(path: Path) -> str:
-    digest = hashlib.sha256(path.read_bytes()).hexdigest()[:12]
+    return hashlib.sha256(path.read_bytes()).hexdigest()[:12]
    return digest
 def replace_references(root: Path, mapping: dict[str, str]) -> None:
@@ -279,7 +375,7 @@ def replace_references(root: Path, mapping: dict[str, str]) -> None:
        except UnicodeDecodeError:
            continue
        updated = content
-        for src, dst in mapping.items():
+        for src, dst in sorted(mapping.items(), key=lambda item: len(item[0]), reverse=True):
            updated = updated.replace(src, dst)
            updated = updated.replace("/" + src, "/" + dst)
        if updated != content:
@@ -289,17 +385,32 @@ def replace_references(root: Path, mapping: dict[str, str]) -> None:
 def build_hash_mapping(public_root: Path) -> dict[str, str]:
    mapping: dict[str, str] = {}
    asset_root = public_root / "assets"
-    for ext in (".js", ".css"):
+    if not asset_root.exists():
-        for file_path in sorted(asset_root.rglob(f"*{ext}")):
+        return mapping
-            if ".min." in file_path.name or ".obf." in file_path.name:
+
    groups = collect_asset_groups(asset_root)
    for (parent, base, ext), paths in groups.items():
        source = pick_source_file(paths, base, ext)
        if source is None:
            continue
-            digest = hash_file(file_path)
+        digest = hash_file(source)
-            new_name = f"{file_path.stem}.{digest}{file_path.suffix}"
+        target = parent / f"{base}.{digest}{ext}"
-            new_path = file_path.with_name(new_name)
+        rel_new = target.relative_to(public_root).as_posix()
-            file_path.rename(new_path)
+
-            rel_old = file_path.relative_to(public_root).as_posix()
+        for old in paths:
-            rel_new = new_path.relative_to(public_root).as_posix()
+            rel_old = old.relative_to(public_root).as_posix()
            if rel_old != rel_new:
                mapping[rel_old] = rel_new
        if source != target:
            if target.exists():
                target.unlink()
            source.replace(target)
        for old in paths:
            if old != target and old.exists():
                old.unlink()
    return mapping
@@ -316,11 +427,26 @@ def main() -> int:
        print("public directory not found", file=sys.stderr)
        return 1
-    for js in sorted(public_root.rglob("*.js")):
+    asset_root = public_root / "assets"
-        process_js(js, repo_root)
+    if asset_root.exists():
-    for css in sorted(public_root.rglob("*.css")):
+        groups = collect_asset_groups(asset_root)
-        process_css(css, repo_root)
+        for (parent, base, ext), paths in sorted(groups.items()):
-    for php in sorted((repo_root / "public").rglob("*.php")):
+            source = pick_source_file(paths, base, ext)
            if source is None:
                rel = (parent / f"{base}{ext}").relative_to(public_root)
                print(
                    f"ERROR: No valid source for {rel}. "
                    f"Restore from dev, e.g.: git checkout dev -- {rel}",
                    file=sys.stderr,
                )
                return 1
            cleanup_invalid_siblings(paths, source)
            if ext == ".js":
                process_js(source, repo_root)
            else:
                process_css(source, repo_root)
    for php in sorted(public_root.rglob("*.php")):
        process_php(php)
    for php in sorted((repo_root / "backend").rglob("*.php")):
        process_php(php)
--- a/scripts/setup-git-hooks.ps1
+++ b/scripts/setup-git-hooks.ps1
@@ -0,0 +1,17 @@
 # Einmal pro Clone ausführen: Commit-Template + Conventional-Commits-Hook aktivieren
 $ErrorActionPreference = "Stop"
 $repoRoot = Resolve-Path (Join-Path $PSScriptRoot "..")
 Push-Location $repoRoot
 try {
    git config --local commit.template .gitmessage
    git config --local core.hooksPath .githooks
    Write-Host "Git Hooks aktiv:" -ForegroundColor Green
    Write-Host "  commit.template = .gitmessage"
    Write-Host "  core.hooksPath  = .githooks"
    Write-Host ""
    Write-Host "Commit-Format: feat(scope): beschreibung"
 } finally {
    Pop-Location
 }
--- a/scripts/test-email.php
+++ b/scripts/test-email.php
@@ -0,0 +1,48 @@
 <?php
 /**
 * HexaHost.de E-Mail Test (nur CLI oder lokale Entwicklung)
 */
 if (PHP_SAPI !== 'cli') {
    $remoteAddr = $_SERVER['REMOTE_ADDR'] ?? '';
    $isLocal = in_array($remoteAddr, ['127.0.0.1', '::1'], true)
        || filter_var($remoteAddr, FILTER_VALIDATE_IP, FILTER_FLAG_NO_PRIV_RANGE | FILTER_FLAG_NO_RES_RANGE) === false;
    if (!$isLocal) {
        http_response_code(403);
        exit('Forbidden');
    }
 }
 require_once __DIR__ . '/../backend/config/mail-config.php';
 function testEmail() {
    $config = getHexaHostConfig();
    $subject = '[HexaHost.de] Test-E-Mail';
    $message = "Test-E-Mail von HexaHost.de\n\n";
    $message .= "Zeitstempel: " . date('d.m.Y H:i:s') . "\n";
    $headers = [
        'From: ' . $config['from_name'] . ' <' . $config['from_email'] . '>',
        'MIME-Version: 1.0',
        'Content-Type: text/plain; charset=UTF-8',
        'X-Mailer: HexaHost Test Email',
    ];
    return mail($config['to_email'], $subject, $message, implode("\r\n", $headers));
 }
 if (PHP_SAPI === 'cli') {
    echo testEmail() ? "Test-E-Mail gesendet.\n" : "Fehler beim Senden.\n";
    exit;
 }
 if (isset($_GET['test'])) {
    echo testEmail()
        ? 'Test-E-Mail wurde gesendet.'
        : 'Fehler beim Senden der Test-E-Mail.';
 } else {
    echo '<h1>HexaHost.de E-Mail Test</h1>';
    echo '<p><a href="?test=1">Test-E-Mail senden</a></p>';
 }
Author	SHA1	Message	Date
gitea-actions	e09fa1eab8	chore(release): obfuscate and hash production assets [skip ci]	2026-06-02 14:24:00 +00:00
gitea-actions	e9f804d967	chore(release): obfuscate and hash production assets [skip ci]	2026-06-02 14:01:36 +00:00
gitea-actions	3d54cea5ec	chore(release): obfuscate and hash production assets [skip ci]	2026-06-01 06:50:07 +00:00
gitea-actions	fdd0367281	chore(release): obfuscate and hash production assets [skip ci]	2026-06-01 06:38:01 +00:00
gitea-actions	ded8778b6c	chore(release): obfuscate and hash production assets [skip ci]	2026-05-29 09:04:26 +00:00
gitea-actions	7a03f5aa1b	chore(release): obfuscate and hash production assets [skip ci]	2026-05-29 08:43:42 +00:00
gitea-actions	f7ea36f4f2	chore(release): obfuscate and hash production assets [skip ci]	2026-05-28 15:42:41 +00:00
gitea-actions	99f0056106	ci: merge dev for release build	2026-05-28 15:42:22 +00:00
smueller	e9d5b55459	Refactor release build process: Updated README.md to clarify branch usage and workflow for development and production. Enhanced Gitea and GitHub workflows to automate merging from `dev` to `main`, ensuring consistent obfuscation and asset management during releases. Improved commit messages and streamlined the build process for better clarity and efficiency.	2026-05-28 17:42:06 +02:00
smueller	8f985da61f	Enhance obfuscation workflow and asset processing: Updated the Gitea workflow to skip CI for specific commit messages, improving efficiency. Refactored the obfuscation script to include better asset handling, validation, and cleanup processes, ensuring only valid files are processed. Introduced temporary directories for intermediate files during obfuscation, enhancing reliability and reducing errors.	2026-05-28 17:32:21 +02:00
gitea-actions	e91a9ed9c3	chore(release): obfuscate and hash production assets [skip ci]	2026-05-28 15:28:24 +00:00
smueller	76aceddcca	fix(release): restore clean assets before obfuscation rebuild	2026-05-28 17:27:51 +02:00
smueller	d7851763f7	refactor(obfuscate_release): improve source file selection and cleanup logic, enhancing error handling for asset processing	2026-05-28 17:24:05 +02:00
smueller	1c0a3ff468	refactor(obfuscate_release): enhance asset processing and validation logic for JS and CSS files	2026-05-28 17:20:50 +02:00
smueller	6c9114e0a7	Update obfuscate workflow: Introduced environment variables for Gitea host and repository path, streamlined commit process to skip CI for bot commits, and adjusted remote URL configuration for secure pushes. Enhanced build process by removing unnecessary steps and ensuring efficient asset obfuscation and hashing.	2026-05-28 17:13:16 +02:00
gitea-actions	4b9940c18b	chore(release): obfuscate and hash production assets [skip ci]	2026-05-28 15:12:33 +00:00
smueller	24a852aab5	Merge branch 'main' of https://git.hexahost.dev/smueller/HexaHost-Frontend	2026-05-28 17:12:00 +02:00
smueller	219f1d2fcf	Update Gitea workflow for obfuscation: Added environment variables for Gitea host and repository path, modified git remote URL for pushing obfuscated builds, and ensured proper handling of commits with no changes. This enhances the deployment process for production assets.	2026-05-28 17:11:57 +02:00
gitea-actions	06a932a048	chore(release): obfuscate and hash production assets [skip ci]	2026-05-28 15:11:36 +00:00
		`@@ -0,0 +1 @@`
							.btn-tertiary{color:var(--text-primary);background:transparent;border:1px solid rgba(255,255,255,0.25);transition:all 0.3s ease;}.btn-tertiary:hover{border-color:var(--primary-color);color:var(--primary-color);background:rgba(255,81,249,0.08);}.it-services-actions{justify-content:center;margin-top:2rem;}.it-services-page .values .values-grid{display:flex !important;flex-wrap:wrap !important;justify-content:center !important;align-items:stretch;grid-template-columns:none !important;gap:1.5rem !important;}.it-services-page .values .value-item{flex:0 1 320px !important;max-width:360px;aspect-ratio:1 / 1;margin:0 !important;display:flex;flex-direction:column;justify-content:center;}.legal-hero,.legal-content{background:#ffffff;color:#000000;}.legal-hero{margin-top:70px;padding:2rem 0 1.5rem;border-bottom:1px solid #e5e5e5;}.legal-content{padding-top:2rem;}.legal-hero-title{background:none;-webkit-text-fill-color:#000000;color:#000000;margin-bottom:0.5rem;}.legal-hero-description,.legal-section h2,.legal-section h3,.legal-block p,.legal-block li,.legal-hero .breadcrumb,.legal-hero .breadcrumb span,.legal-content .breadcrumb,.legal-content .breadcrumb span{color:#000000;}.legal-section,.legal-section.glass-card{background:transparent;border:none;box-shadow:none;backdrop-filter:none;-webkit-backdrop-filter:none;border-radius:0;padding:0;}.legal-section:hover,.legal-section.glass-card:hover{transform:none;box-shadow:none;border:none;background:transparent;}.legal-content .glass-card:hover{transform:none;box-shadow:none;}.legal-section h2{border-bottom:1px solid #e5e5e5;padding-bottom:0.5rem;margin-bottom:0.8rem;}.legal-block a,.legal-hero .breadcrumb a,.legal-content .breadcrumb a{color:#0b57d0;}.legal-block a:hover,.legal-hero .breadcrumb a:hover,.legal-content .breadcrumb a:hover{color:#0b57d0;text-decoration:none;}.legal-hero ,.legal-content ,.legal-hero :hover,.legal-content :hover,.legal-hero :focus,.legal-content :focus,.legal-hero :active,.legal-content :active{transform:none !important;box-shadow:none !important;text-shadow:none !important;transition:none !important;animation:none !important;}.footer-content{grid-template-columns:repeat(5,minmax(0,1fr));gap:1.5rem 1.25rem;align-items:start;}.footer-section h4{margin-bottom:0.65rem;}.footer-section ul li{margin-bottom:0.4rem;}@media (max-width:1100px){.footer-content{grid-template-columns:repeat(3,minmax(0,1fr));}}@media (max-width:768px){.footer-content{grid-template-columns:repeat(2,minmax(0,1fr));}}@media (max-width:520px){.footer-content{grid-template-columns:1fr;}.it-services-page .values .value-item{flex-basis:100%;max-width:100%;}}