refactor: [#28] separate provider templates from user-generated files

- Move provider templates to infrastructure/config/templates/providers/
- Create missing libvirt.env.tpl template with comprehensive configuration options
- Add .gitignore to protect user provider configurations from git commits
- Add README.md with setup instructions and security guidelines
- Update Makefile infra-providers command to show template vs user file locations
- Maintain separation of concerns: templates (tracked) vs user configs (git-ignored)

Fixes issue where provider templates and user configs were mixed in same directory.
All provider configuration files with credentials are now properly git-ignored.

Author: josecelano

Makefile

@@ -112,7 +112,19 @@ infra-refresh-state: check-infra-params ## Refresh Terraform state to detect IP
 # Provider and environment information
 infra-providers: ## List available infrastructure providers
 	@echo "Available Infrastructure Providers:"
-	@$(SCRIPTS_DIR)/providers/provider-interface.sh list || echo "No providers found"
+	@echo "Templates (infrastructure/config/templates/providers/):"
+	@ls infrastructure/config/templates/providers/*.env.tpl 2>/dev/null | \
+		xargs -I {} basename {} | sed 's/\.env.*//g' | sort | uniq || \
+		echo "  No templates found"
+	@echo ""
+	@echo "User configurations (infrastructure/config/providers/):"
+	@ls infrastructure/config/providers/*.env 2>/dev/null | \
+		xargs -I {} basename {} | sed 's/\.env.*//g' | sort | uniq || \
+		echo "  No user configs found"
+	@echo ""
+	@echo "Provider types:"
+	@echo "  libvirt - Local KVM/libvirt virtualization for development"
+	@echo "  hetzner - Hetzner Cloud for production deployments"
 	@echo ""
 	@echo "Usage examples:"
 	@echo "  make infra-apply ENVIRONMENT=development PROVIDER=libvirt"

infrastructure/config/providers/.gitignore

@@ -0,0 +1,19 @@
+# Ignore all user-generated provider configuration files
+# These contain credentials and secrets and should never be committed
+
+# Provider configuration files (contain secrets)
+*.env
+
+# Backup files
+*.env.bak
+*.env.backup
+
+# Editor temporary files
+*.tmp
+*.swp
+*.swo
+*~
+
+# Allow this directory structure
+!.gitignore
+!README.md

infrastructure/config/providers/README.md

@@ -0,0 +1,66 @@
+# Provider Configuration Directory
+
+This directory contains **user-generated provider configuration files** with real
+credentials and settings. These files are ignored by git to protect sensitive information.
+
+## File Structure
+
+- `*.env` - User-generated provider configuration files (git-ignored)
+- `.gitignore` - Protects user files from being committed
+- `README.md` - This documentation file
+
+## Template Source
+
+Templates for creating these files are located at:
+
+```text
+infrastructure/config/templates/providers/
+```
+
+## Available Providers
+
+### LibVirt Provider (Local Testing)
+
+- **Template**: `infrastructure/config/templates/providers/libvirt.env.tpl`
+- **User File**: `libvirt.env` (create from template)
+- **Purpose**: Local KVM/libvirt virtualization for development and testing
+
+### Hetzner Cloud Provider (Production)
+
+- **Template**: `infrastructure/config/templates/providers/hetzner.env.tpl`
+- **User File**: `hetzner.env` (create from template)
+- **Purpose**: Hetzner Cloud deployment for production environments
+
+## Usage Instructions
+
+1. **Copy the appropriate template:**
+
+   ```bash
+   # For local testing
+   cp infrastructure/config/templates/providers/libvirt.env.tpl infrastructure/config/providers/libvirt.env
+   
+   # For Hetzner Cloud
+   cp infrastructure/config/templates/providers/hetzner.env.tpl infrastructure/config/providers/hetzner.env
+   ```
+
+2. **Edit the copied file** with your actual values:
+   - Replace placeholder tokens with real API keys
+   - Configure VM sizes and locations
+   - Set appropriate defaults for your use case
+
+3. **Never commit these files** - they contain secrets and are automatically git-ignored
+
+## Security Notes
+
+- ⚠️ **Never commit `*.env` files** - they contain credentials and secrets
+- ✅ **Always use templates** - copy from `templates/providers/` directory
+- 🔄 **Keep templates updated** - contribute improvements back to templates
+- 🔒 **Protect access** - these files contain API tokens and configuration secrets
+
+## Backup Strategy
+
+Since these files are git-ignored, consider:
+
+- Storing encrypted backups of your provider configurations
+- Using a password manager for API tokens
+- Documenting your configuration choices separately

infrastructure/config/providers/hetzner.env.tpl renamed to infrastructure/config/templates/providers/hetzner.env.tpl

@@ -0,0 +1,46 @@
+# LibVirt Provider Configuration Template
+# Copy this file to libvirt.env and customize as needed
+# Location: infrastructure/config/providers/libvirt.env
+
+# === LIBVIRT PROVIDER SETTINGS ===
+# LibVirt connection URI - use qemu:///system for system-wide libvirt
+PROVIDER_LIBVIRT_URI="qemu:///system"
+
+# Storage pool name - should be created during libvirt setup
+PROVIDER_LIBVIRT_POOL="user-default"
+
+# Network name - typically 'default' for NAT networking
+PROVIDER_LIBVIRT_NETWORK="default"
+
+# Base Ubuntu cloud image URL for VM creation
+PROVIDER_LIBVIRT_BASE_IMAGE_URL="https://cloud-images.ubuntu.com/releases/24.04/release/ubuntu-24.04-server-cloudimg-amd64.img"
+
+# === VM DEFAULTS FOR LIBVIRT ===
+# These can be overridden by environment configurations
+# Recommended minimums for Torrust Tracker demo
+VM_MEMORY_DEFAULT=2048          # 2GB RAM minimum
+VM_VCPUS_DEFAULT=2              # 2 CPU cores
+VM_DISK_SIZE_DEFAULT=20         # 20GB primary disk
+PERSISTENT_DATA_SIZE_DEFAULT=20 # 20GB for persistent data volume
+
+# === LIBVIRT-SPECIFIC SETTINGS ===
+# Use minimal config for faster development iterations
+# Set to true to skip heavy services like Grafana/Prometheus during development
+USE_MINIMAL_CONFIG_DEFAULT=false
+
+# === REFERENCE: TYPICAL CONFIGURATIONS ===
+# Development/Testing:
+#   VM_MEMORY_DEFAULT=2048, VM_VCPUS_DEFAULT=2, VM_DISK_SIZE_DEFAULT=20
+# 
+# Production Testing:
+#   VM_MEMORY_DEFAULT=4096, VM_VCPUS_DEFAULT=4, VM_DISK_SIZE_DEFAULT=40
+#
+# Performance Testing:
+#   VM_MEMORY_DEFAULT=8192, VM_VCPUS_DEFAULT=4, VM_DISK_SIZE_DEFAULT=80
+
+# === NOTES ===
+# • LibVirt provider is designed for local development and testing
+# • Requires KVM virtualization support and libvirt installed
+# • The default network provides NAT access to the internet
+# • Storage uses the specified pool which should be created during setup
+# • For production deployments, consider using Hetzner Cloud provider instead