Update branding assets and deployment configurations

- Enhanced moebius ring logo design in Blender
- Updated Docker Compose for website-only deployment with improved config
- Enhanced teaser layout with updated branding integration
- Added installation and setup documentation
- Consolidated planning and reports documentation
- Updated gitignore to exclude Next.js build artifacts and archives

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>

planning and reports/NETWORK_VALIDATION_REPORT.md

@@ -0,0 +1,175 @@
+# CHORUS Services Network Connectivity Validation Report
+
+**Date:** 2025-08-02  
+**System:** Docker Swarm on Linux 6.12.10  
+**Report Generated By:** Systems Engineer (Network Infrastructure Validation)
+
+## Executive Summary
+
+✅ **DEPLOYMENT STATUS: FULLY OPERATIONAL**
+
+The CHORUS Services website deployment has been successfully validated and is performing optimally across all tested endpoints and metrics. All infrastructure components are healthy and properly configured.
+
+## Service Health Validation
+
+### Docker Service Status
+- **Service Name:** `chorus-website_chorus-website`
+- **Replicas:** 2/2 healthy and running
+- **Image:** `registry.home.deepblack.cloud/tony/chorus-website:latest`
+- **Memory Allocation:** 64MiB reserved, 128MiB limit per replica
+- **Deployment Status:** Update completed 3 minutes ago
+- **Placement Constraint:** Running on walnut node
+
+### Resource Utilization
+- **CPU:** Efficient Next.js 14.2.31 runtime
+- **Memory:** Well within allocated limits
+- **Startup Time:** 44-48ms average per container
+- **Health Status:** All containers reporting healthy
+
+## Network Architecture Validation
+
+### Docker Networks
+1. **tengig** (External/Public)
+   - Type: Overlay network for external traffic
+   - Purpose: Traefik ingress and SSL termination
+   - Status: ✅ Operational
+
+2. **chorus-website_chorus_website_network** (Internal)
+   - Type: Stack-specific overlay network
+   - Purpose: Internal service communication
+   - Status: ✅ Operational with load balancer
+
+### Port Configuration
+- **Internal Container Port:** 80/tcp
+- **External Published Port:** 3100/tcp
+- **Port Mapping:** *:3100->80/tcp (ingress mode)
+- **Protocol:** TCP with proper HTTP/HTTPS handling
+
+## Connectivity Test Results
+
+### Local Port Access (localhost:3100)
+- **Status:** ✅ OPERATIONAL
+- **Response Time:** 8-15ms average
+- **HTTP Status:** 200 OK
+- **Content:** Full Next.js application loading correctly
+- **Headers:** Proper security headers present (X-Frame-Options, X-Content-Type-Options, Referrer-Policy)
+
+### External HTTPS Access
+
+#### Primary Domain (https://www.chorus.services)
+- **Status:** ✅ OPERATIONAL  
+- **Response Time:** 69-76ms average
+- **HTTP Protocol:** HTTP/2
+- **SSL Certificate:** Valid (0 = success)
+- **DNS Resolution:** 5-6ms
+- **TCP Connection:** 6-7ms
+- **SSL Handshake:** 43-58ms
+
+#### Redirect Domain (https://chorus.services)
+- **Status:** ✅ OPERATIONAL
+- **HTTP Status:** 307 Temporary Redirect
+- **Redirect Target:** https://www.chorus.services/
+- **Redirect Time:** <1ms
+
+### External IP Access (202.171.184.242:3100)
+- **Status:** ⚠️ BLOCKED (Expected - firewall protection)
+- **Note:** Direct IP access blocked by security configuration (normal for production)
+
+## Performance Metrics
+
+### Response Time Analysis
+| Endpoint | Min | Max | Average | Protocol |
+|----------|-----|-----|---------|----------|
+| localhost:3100 | 8.6ms | 14.6ms | 10.9ms | HTTP/1.1 |
+| www.chorus.services | 69.2ms | 76.2ms | 73.2ms | HTTP/2 |
+
+### Content Delivery Performance
+- **Compressed Size:** 20,464 bytes (87% compression ratio)
+- **Uncompressed Size:** 162,285 bytes
+- **Transfer Speed:** 361KB/s (compressed), 2.5MB/s (uncompressed)
+- **Compression:** Gzip enabled and working efficiently
+
+### Caching Configuration
+- **Cache-Control:** `s-maxage=31536000, stale-while-revalidate`
+- **ETag:** `"cjhbuylf93h0q"` (consistent across requests)
+- **Next.js Cache Status:** HIT (optimal caching performance)
+
+## SSL/TLS Configuration
+
+### Certificate Details
+- **Certificate Authority:** Let's Encrypt
+- **Certificate Resolver:** letsencryptresolver
+- **SSL Verification:** ✅ Valid (result code: 0)
+- **Protocol:** TLS with HTTP/2 support
+- **Security Headers:** Properly configured
+
+### Traefik Configuration
+- **Routing Rule:** `Host(\`www.chorus.services\`) || Host(\`chorus.services\`)`
+- **Entrypoint:** web-secured (HTTPS)
+- **Middleware:** chorus-redirect (apex → www redirect)
+- **Load Balancer:** Configured with passhostheader=true
+
+## Load Balancing Assessment
+
+### Service Discovery
+- **Replicas:** 2 containers distributed across available nodes
+- **Load Balancer:** Docker Swarm ingress with VIP mode
+- **Health Checks:** Container-level health monitoring
+- **Distribution:** Even traffic distribution confirmed
+
+### Container Health
+All containers show consistent startup patterns:
+- Next.js runtime initialization: ~44-48ms
+- Network binding: 0.0.0.0:80 (all interfaces)
+- Ready state: Achieved within <50ms
+
+## Security Validation
+
+### HTTP Security Headers
+```
+X-Frame-Options: DENY
+X-Content-Type-Options: nosniff
+Referrer-Policy: strict-origin-when-cross-origin
+```
+
+### Network Security
+- External IP direct access blocked (appropriate security posture)
+- HTTPS-only access enforced through Traefik
+- Proper certificate chain validation
+
+## Optimization Recommendations
+
+### Performance Optimizations
+1. **Compression Ratio Excellent:** 87% compression achieved (20KB vs 162KB)
+2. **Caching Strategy Optimal:** Long-term caching with stale-while-revalidate
+3. **HTTP/2 Benefits:** Protocol upgrade providing multiplexing advantages
+
+### Infrastructure Optimizations
+1. **Memory Allocation:** Current 128MiB limit appropriate for Next.js workload
+2. **Replica Count:** 2 replicas providing adequate redundancy for current load
+3. **Health Check Timing:** Container startup time <50ms is excellent
+
+### Monitoring Recommendations
+1. **Response Time Monitoring:** Set alerts for >100ms average response time
+2. **SSL Certificate Monitoring:** Monitor certificate expiration (Let's Encrypt 90-day cycle)
+3. **Cache Hit Ratio:** Monitor Next.js cache performance metrics
+
+### Minor Issues Identified
+1. **Next.js Metadata Warnings:** Viewport/themeColor metadata should be moved to viewport export
+   - Impact: Minimal (development warnings only)
+   - Action: Update Next.js metadata configuration
+
+## Conclusion
+
+The CHORUS Services website deployment is **FULLY OPERATIONAL** with excellent performance characteristics:
+
+- ✅ All critical endpoints responding correctly
+- ✅ SSL certificates valid and properly configured
+- ✅ Load balancing and redundancy working
+- ✅ Performance within acceptable ranges (10-75ms)
+- ✅ Security headers and HTTPS enforcement active
+- ✅ Compression and caching optimized
+
+The infrastructure demonstrates robust engineering with proper Docker Swarm networking, Traefik routing, and Next.js optimization. The deployment meets production-ready standards for availability, performance, and security.
+
+**Network Infrastructure Status: VALIDATED ✅**