Fix resources isues 8

PRODUCTION_DEPLOYMENT_GUIDE.md

@@ -49,7 +49,7 @@ A complete multi-tenant SaaS platform consisting of:
 | **Cache** | Redis with TLS |
 | **Message Broker** | RabbitMQ |
 | **Object Storage** | MinIO (S3-compatible) |
-| **Email** | Mailu (self-hosted) with Mailgun relay |
+| **Email** | Mailu (self-hosted) with MailerSend relay |
 | **Monitoring** | SigNoz (unified observability) |
 | **CI/CD** | Gitea + Tekton + Flux CD |
 | **Security** | TLS everywhere, RBAC, Network Policies |
@@ -113,7 +113,7 @@ Phase 8: Verification & Validation
 |---------|----------|-------------|
 | VPS (20GB RAM, 8 vCPU, 200GB SSD) | clouding.io | €40-80 |
 | Domain | Namecheap/Cloudflare | ~€1.25 (€15/year) |
-| Email Relay | Mailgun (free tier) | €0 |
+| Email Relay | MailerSend (free tier: 3K emails/month) | €0 |
 | SSL Certificates | Let's Encrypt | €0 |
 | DNS | Cloudflare | €0 |
 | **Total** | | **€41-81/month** |
@@ -137,7 +137,7 @@ Phase 8: Verification & Validation
 - [ ] **VPS Provider** (clouding.io, Hetzner, DigitalOcean, etc.)
 - [ ] **Domain Registrar** (Namecheap, Cloudflare, etc.)
 - [ ] **Cloudflare Account** (recommended for DNS)
-- [ ] **Mailgun Account** (for email relay, optional)
+- [ ] **MailerSend Account** (for email relay - https://mailersend.com, optional)
 - [ ] **Stripe Account** (for payments)
 
 ### Local Machine Requirements
@@ -379,7 +379,7 @@ Add these DNS records pointing to your VPS IP (`200.234.233.87`):
 | A | registry | 200.234.233.87 | Auto |
 | A | api | 200.234.233.87 | Auto |
 | MX | @ | mail.bakewise.ai | 10 |
-| TXT | @ | v=spf1 mx a -all | Auto |
+| TXT | @ | v=spf1 include:mailersend.net mx a ~all | Auto |
 | TXT | _dmarc | v=DMARC1; p=reject; rua=mailto:admin@bakewise.ai | Auto |
 
 ### Step 2.2: Verify DNS Propagation
@@ -1187,7 +1187,7 @@ kubectl logs -n bakery-ia deployment/mailu-front --tail=10
 >   - Username: `admin@bakewise.ai`
 >   - Password: (from secret above)
 >
-> 6. **Mailgun Relay:** Configure credentials in `mailu-mailgun-credentials-secret.yaml` before deployment.
+> 6. **MailerSend Relay:** Configure credentials in `mailersend-credentials-secret.yaml` before deployment.
 
 ### Step 7.3.1: Mailu Configuration Notes
 
@@ -1201,19 +1201,33 @@ kubectl logs -n bakery-ia deployment/mailu-front --tail=10
 > - **Internal:** Uses self-signed certificates for inter-service communication
 > - **No replacement needed:** This dual-certificate architecture is intentional and secure
 
-**Configure Mailgun Relay (for outbound email):**
+**Configure MailerSend Relay (for outbound email):**
 
 ```bash
-# Edit the Mailgun credentials secret
-nano infrastructure/platform/mail/mailu-helm/configs/mailu-mailgun-credentials-secret.yaml
+# 1. Sign up at https://accounts.mailersend.com/signup
+# 2. Add your domain (bakewise.ai) and verify DNS records
+# 3. Generate SMTP credentials: Email -> Domains -> SMTP -> Generate new user
+
+# Edit the MailerSend credentials secret
+nano infrastructure/platform/mail/mailu-helm/configs/mailersend-credentials-secret.yaml
 
 # Apply the secret
-kubectl apply -f infrastructure/platform/mail/mailu-helm/configs/mailu-mailgun-credentials-secret.yaml -n bakery-ia
+kubectl apply -f infrastructure/platform/mail/mailu-helm/configs/mailersend-credentials-secret.yaml -n bakery-ia
 
 # Restart Mailu to pick up the new relay configuration
 kubectl rollout restart deployment -n bakery-ia -l app.kubernetes.io/instance=mailu
 ```
 
+**MailerSend DNS Records (add to Cloudflare):**
+
+| Type | Name | Value |
+|------|------|-------|
+| TXT (SPF) | @ | v=spf1 include:mailersend.net mx a ~all |
+| TXT (DKIM) | mlsend._domainkey | (from MailerSend dashboard) |
+| TXT (DKIM) | mlsend2._domainkey | (from MailerSend dashboard) |
+
+> **Note:** MailerSend free tier includes 3,000 emails/month (12,000 with verified domain).
+
 ### Step 7.4: Deploy SigNoz Monitoring
 
 ```bash