- deploy-currencicombo-8604.sh: on readiness timeout, print loud failure
summary (journalctl tails + exact --rollback command with specific
backup path) instead of silently exiting. Deliberately does NOT
auto-rollback; first cutovers often fail because of env/migration
mistakes and auto-restore hides the failure state ops needs.
- install.sh: on first run, write the three API keys + EVENT_SIGNING_SECRET
to /root/currencicombo-first-keys.txt (0600, root:root) as a handoff
copy. Canonical values still live in /etc/currencicombo/orchestrator.env.
Log one pointer line (not the secrets themselves) to journald.
Handoff file is NOT regenerated if orchestrator.env already exists.
- install-prune-cron.sh (new, opt-in): installs /etc/cron.daily/
currencicombo-prune-backups that deletes entries older than 30 days
from /var/lib/currencicombo/backups/ WHILE always keeping the newest
5 regardless of age. Enforced via newest-first sort + i<KEEP_MIN skip.
- webapp-nginx.conf: drop the misleading /events/* 421 guard-rail. The
orchestrator's SSE endpoint is /api/plans/:id/events/stream (under
/api/), so one /api/* guard-rail covers both normal REST and SSE.
- README.md: corrected NPMplus rule table to TWO rules (/api/* with
SSE-friendly proxy_buffering=off + 24h read_timeout + Connection ""
+ http/1.1, and /); added post-cutover smoke checks section with a
concrete SSE streaming test that catches silent proxy_buffering=on
misconfig; documented the /root/currencicombo-first-keys.txt handoff
and the install-prune-cron.sh workflow; replaced stale 'not auto-pruned'
note.
Verification:
- shellcheck --severity=warning: clean on all 3 scripts.
- bash -n: clean on install-prune-cron.sh.
- install-prune-cron.sh --dry-run: prints the pruner body with resolved
env values as expected.
- install.sh --dry-run: walks through user/dirs/nginx-apt steps, then
fails fast on missing psql (expected on a build box without Postgres).
Co-Authored-By: Nakamoto, S <defi@defi-oracle.io>
