Update Docker Registry URLs to HTTPS endpoint (registry.michaelschiemer.de)

- Replace git.michaelschiemer.de:5000 (HTTP) with registry.michaelschiemer.de (HTTPS)
- Update all Ansible playbooks and configuration files
- Update CI/CD workflows to use HTTPS registry endpoint
- Update Docker Compose files with new registry URL
- Update documentation and scripts

Benefits:
- Secure HTTPS connection (no insecure registry config needed)
- Consistent use of HTTPS endpoint via Traefik
- Better security practices for production deployment

deployment/ansible/playbooks/deploy-update.yml

@@ -9,7 +9,7 @@
     image_tag: "{{ image_tag | default('latest') }}"
     git_commit_sha: "{{ git_commit_sha | default('unknown') }}"
     deployment_timestamp: "{{ deployment_timestamp | default(ansible_date_time.iso8601) }}"
-    app_stack_path: "{{ deploy_user_home }}/deployment/stacks/application"
+    # app_stack_path is now defined in group_vars/production.yml
 
   pre_tasks:
     - name: Optionally load registry credentials from encrypted vault
@@ -126,8 +126,8 @@
     - name: Update docker-compose.yml with new image tag (all services)
       replace:
         path: "{{ app_stack_path }}/docker-compose.yml"
-        # Match both localhost:5000 and git.michaelschiemer.de:5000 (or any registry URL)
-        regexp: '^(\s+image:\s+)(localhost:5000|git\.michaelschiemer\.de:5000|{{ docker_registry }})/{{ app_name }}:.*$'
+        # Match both localhost:5000 and registry.michaelschiemer.de (or any registry URL)
+        regexp: '^(\s+image:\s+)(localhost:5000|registry\.michaelschiemer\.de|{{ docker_registry }})/{{ app_name }}:.*$'
         replace: '\1{{ app_image }}:{{ image_tag }}'
       # Always update to ensure localhost:5000 is used (registry only accessible via localhost)
       when: true