Automating DNS and SSL

Today I'll work on wrapping up the final features

Automating DNS

This should be easy. Cloudflare provides an official sdk.

Took me longer than I expected, but it's finally done.

alt text

Automating SSL

This should be fairly straightforward as well. I need to ssh into the machine and run the certbot.

Decided to set up the proper user for hatch while I'm at it and got stuck at random certbot errors, permissions and stuff. It's finally working now, but I can see that keycloak config is wrong. Can't fix it now, too tired.

I'm very close to finishing though, just some final touches. Some things I've picked up:

  • api nginx is missing
  • keycloak redirect_uri is misconfigured
  • i gave nginx access to read everything, but really i need to automate so it runs:
chmod 701 /home/hatch
chmod 701 /home/hatch/barelytics
chmod 701 /home/hatch/barelytics/web-app
chmod 755 /home/hatch/barelytics/web-app/static

Hope I'll finish before weekend.