docs(makefile, README.md, cloudflare-credentials.ini.template, ssl-manager.sh): update instructions for Cloudflare API token usage

Update the Makefile, README.md, and related scripts to reflect the
transition from using Cloudflare API keys to API tokens. This change
improves security by using more granular permissions with API tokens.
The instructions now guide users to create a token with specific
permissions and update the credentials file accordingly. The
cloudflare-credentials.ini.template is also updated to reflect this
change, removing the email and API key fields in favor of the API token.

Author: kzndotsh

Makefile

@@ -374,9 +374,10 @@ help-ssl:
 	@echo "  ssl-status          - Check certificate status"
 	@echo ""
 	@echo "Quick Start:"
-	@echo "  make ssl-setup      # Initial certificate setup"
-	@echo "  make ssl-status     # Check certificate status"
-	@echo "  make ssl-renew      # Renew certificates"
+	@echo "  1. Copy cloudflare-credentials.ini.template to cloudflare-credentials.ini"
+	@echo "  2. Add your Cloudflare API token to cloudflare-credentials.ini"
+	@echo "  3. make ssl-setup   # Initial certificate setup"
+	@echo "  4. make ssl-status  # Check certificate status"
 
 # Docker operations
 docker-build:
@@ -487,7 +488,7 @@ ssl-setup: ## Setup SSL certificates (one-time setup)
 	@echo -e "$(PURPLE)=== SSL Certificate Setup ===$(NC)"
 	@echo -e "$(BLUE)[INFO]$(NC) Make sure cloudflare-credentials.ini is configured first!"
 	@echo -e "$(BLUE)[INFO]$(NC) Copy cloudflare-credentials.ini.template to cloudflare-credentials.ini"
-	@echo -e "$(BLUE)[INFO]$(NC) and fill in your Cloudflare credentials."
+	@echo -e "$(BLUE)[INFO]$(NC) and add your Cloudflare API token."
 	@echo
 	@./scripts/ssl-manager.sh issue
 

README.md

@@ -188,8 +188,9 @@ The setup includes **simplified SSL/TLS certificate management**:
 
 ### **Quick Setup**
 ```bash
-# 1. Configure Cloudflare credentials
+# 1. Configure Cloudflare API token
 cp cloudflare-credentials.ini.template cloudflare-credentials.ini
+# Edit cloudflare-credentials.ini and add your API token
 chmod 600 cloudflare-credentials.ini
 
 # 2. Set environment variables
@@ -230,11 +231,12 @@ make ssl-renew              # Renew certificates
 make ssl-status             # Check certificate status
 ```
 
-### 📋 **Prerequisites (Both Approaches)**
+### 📋 **Prerequisites**
 
-1. **Cloudflare Account** with DNS hosting
+1. **Cloudflare Account** with DNS hosting for your domain
 2. **API Token** from https://dash.cloudflare.com/profile/api-tokens
-   - Required permission: `Zone:DNS:Edit` for your domain
+   - Create a token with **Zone:DNS:Edit** permissions for your domain
+   - Copy the token and paste it into `cloudflare-credentials.ini`
 3. **Domain Configuration** pointing to your server
 
 ### ⚙️ **Environment Variables**

cloudflare-credentials.ini.template

@@ -2,9 +2,6 @@
 # Copy this to cloudflare-credentials.ini and fill in your actual credentials
 # Then run: chmod 600 cloudflare-credentials.ini
 
-# Your Cloudflare email address
-dns_cloudflare_email = [email protected]
-
-# Your Cloudflare API key (get this from https://dash.cloudflare.com/profile/api-tokens)
+# Your Cloudflare API token (get this from https://dash.cloudflare.com/profile/api-tokens)
 # Create a token with Zone:DNS:Edit permissions for your domain
-dns_cloudflare_api_key = your-api-key-here
+dns_cloudflare_api_token = your-api-token-here

scripts/ssl-manager.sh

@@ -44,7 +44,7 @@ check_prerequisites() {
     # Check if credentials file exists
     if [[ ! -f "$CREDENTIALS_FILE" ]]; then
         log_error "Cloudflare credentials file not found: $CREDENTIALS_FILE"
-        log_info "Copy cloudflare-credentials.ini.template to cloudflare-credentials.ini and fill in your credentials"
+        log_info "Copy cloudflare-credentials.ini.template to cloudflare-credentials.ini and add your API token"
         exit 1
     fi