chore: reorganize comments in .env.example for improved clarity and consistency in development configuration

docker/.env.example

@@ -37,28 +37,26 @@ EMBEDDING_MODEL=sentence-transformers/all-MiniLM-L6-v2
 # FRONTEND_PORT=3000
 # ELECTRIC_PORT=5133
 # FLOWER_PORT=5555
-# REDIS_PORT=6379
 
-# ------------------------------------------------------------------------------
-# pgAdmin (dev compose only — docker-compose.dev.yml)
-# ------------------------------------------------------------------------------
+# ==============================================================================
+# DEV COMPOSE ONLY (docker-compose.dev.yml)
+# You only need them only if you are running `docker-compose.dev.yml`.
+# ==============================================================================
+
+# -- pgAdmin (database GUI) --
 # PGADMIN_PORT=5050
 # PGADMIN_DEFAULT_EMAIL=admin@surfsense.com
 # PGADMIN_DEFAULT_PASSWORD=surfsense
 
-# ------------------------------------------------------------------------------
-# Frontend Build Args (dev compose only — docker-compose.dev.yml)
-# ------------------------------------------------------------------------------
-# In dev, the frontend is built from source and these are passed as build args.
-# In prod, they are derived from AUTH_TYPE, ETL_SERVICE, and the port settings.
+# -- Redis exposed port (dev only; Redis is internal-only in prod) --
+# REDIS_PORT=6379
 
+# -- Frontend Build Args --
+# In dev, the frontend is built from source and these are passed as build args.
+# In prod, they are automatically derived from AUTH_TYPE, ETL_SERVICE, and the port settings above.
 # NEXT_PUBLIC_FASTAPI_BACKEND_AUTH_TYPE=LOCAL
 # NEXT_PUBLIC_ETL_SERVICE=DOCLING
-
-# Deployment mode (self-hosted or cloud)
 # NEXT_PUBLIC_DEPLOYMENT_MODE=self-hosted
-
-# Electric auth mode (insecure or secure)
 # NEXT_PUBLIC_ELECTRIC_AUTH_MODE=insecure
 
 # ------------------------------------------------------------------------------