Go to file

Valentin 2fce8f8d9f add infinite query limit to directus env and a swapfile		2024-05-29 09:45:04 +02:00
assets	ajout du git reset au webhook.sh	2024-05-28 00:26:15 +02:00
bin	add infinite query limit to directus env and a swapfile	2024-05-29 09:45:04 +02:00
utils	first commit	2024-05-03 19:09:09 +02:00
README.md	add infinite query limit to directus env and a swapfile	2024-05-29 09:45:04 +02:00
install.sh	add infinite query limit to directus env and a swapfile	2024-05-29 09:45:04 +02:00

README.md

Deployment DCDN Static

Deployment Debian (os) + Caddy (webserver) + Directus (cms) + Nuxt (static front).

Installation

On a fresh install as root user using

sudo passwd root

su - root

Upgrade

apt update && apt upgrade -y

Install git

apt install -y git

Download and make the instal script executable

git clone https://gitea.valentin-le-moign.fr/val/deployment_dcdn_static

cd deployment_dcdn_static

Launch the script

bash install.sh

Environment

Tested and optimised for OVH VPS Starter.

Installation steps

Install php for the webhook
Create a user
Setup ssh, firewall and fail2ban
Add swapfile
Install Caddy webserver
Install MariaDB
Setup the Directus Database
Install Node
Prompt for the url
Install and run Directus
Install and run the front-end
Setup a webhook

Post-install

Delete unix Debian account

userdel --remove-home debian

Configure DNS Zone

Domain : <domain_name>     | Type : A | Target : <ip>
Domain : cms.<domain_name> | Type : A | Target : <ip>
Domain : www.<domain_name> | Type : A | Target : <ip>

Set Directus roles

Website role   Read content collections and directus_files
User role      All permissions on content collections, directus_files and directus_folders

Create a webhook <repo_url>/settings/hooks/gitea/new

Target URL             https://<domain_name>/webhook.php
Branch filter          prod
Authorization Header   generate a safe string using : openssl rand -base64 32

Ref

Debian Web Server

Securing a dedicated server