d-bis/proxmox
4
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
8b67fcbda1f1ae7940bd8863772be93bc4b3ab45
proxmox/scripts/DEPLOYMENT_README_R630-01.md
defiQUG 8b67fcbda1 Organize docs directory: move 25 files to appropriate locations 
- Created docs/00-meta/ for documentation meta files (11 files)
- Created docs/archive/reports/ for reports (5 files)
- Created docs/archive/issues/ for issue tracking (2 files)
- Created docs/bridge/contracts/ for Solidity contracts (3 files)
- Created docs/04-configuration/metamask/ for Metamask configs (3 files)
- Created docs/scripts/ for documentation scripts (2 files)
- Root directory now contains only 3 essential files (89.3% reduction)

All recommended actions from docs directory review complete.
2026-01-06 03:32:20 -08:00

7.2 KiB
Raw Blame History

Sankofa & Phoenix Deployment Guide for r630-01

Target Server: r630-01 (192.168.11.11)
Deployment Date: $(date +%Y-%m-%d)
Status: Ready for Deployment

Overview

This guide provides step-by-step instructions for deploying Sankofa and Phoenix control plane services to r630-01 Proxmox node.

Architecture

r630-01 (192.168.11.11)
├── VMID 7803: PostgreSQL (10.160.0.13)
├── VMID 7802: Keycloak (10.160.0.12)
├── VMID 7800: Sankofa API (10.160.0.10)
└── VMID 7801: Sankofa Portal (10.160.0.11)

Network Configuration

  • VLAN: 160
  • Subnet: 10.160.0.0/22
  • Gateway: 10.160.0.1
  • Storage: thin1 (208GB available)

Prerequisites

  1. SSH Access to r630-01

    ssh root@192.168.11.11

  2. Sankofa Project Available

    • Location: /home/intlc/projects/Sankofa
    • Must contain api/ and portal/ directories

  3. Proxmox Storage

    • Verify thin1 storage is available
    • Check available space: pvesm status

  4. Network Configuration

    • Verify VLAN 160 is configured
    • Verify gateway (10.160.0.1) is accessible

Deployment Steps

Step 1: Prepare Configuration

  1. Copy environment template:

    cd /home/intlc/projects/proxmox/scripts
cp env.r630-01.example .env.r630-01

  2. Edit .env.r630-01 and update:

    • Database passwords
    • Keycloak admin password
    • Client secrets
    • JWT secrets
    • Any other production values

Step 2: Deploy Containers

Deploy all LXC containers:

cd /home/intlc/projects/proxmox/scripts
./deploy-sankofa-r630-01.sh

This will create:

  • PostgreSQL container (VMID 7803)
  • Keycloak container (VMID 7802)
  • API container (VMID 7800)
  • Portal container (VMID 7801)

Step 3: Setup PostgreSQL

Configure PostgreSQL database:

./setup-postgresql-r630-01.sh

This will:

  • Install PostgreSQL 16
  • Create sankofa database
  • Create sankofa user
  • Configure network access
  • Enable required extensions

Note: The script will generate a random password. Update .env.r630-01 with the actual password.

Step 4: Setup Keycloak

Configure Keycloak identity service:

./setup-keycloak-r630-01.sh

This will:

  • Install Java 21
  • Download and install Keycloak 24.0.0
  • Create Keycloak database
  • Configure PostgreSQL connection
  • Create admin user
  • Create API and Portal clients

Note: The script will generate random passwords and secrets. Update .env.r630-01 with the actual values.

Step 5: Deploy API

Deploy Sankofa API service:

./deploy-api-r630-01.sh

This will:

  • Install Node.js 18
  • Install pnpm
  • Copy API project files
  • Install dependencies
  • Configure environment
  • Run database migrations
  • Build API
  • Create systemd service
  • Start API service

Step 6: Run Database Migrations

If migrations weren't run during API deployment:

./run-migrations-r630-01.sh

Step 7: Deploy Portal

Deploy Sankofa Portal:

./deploy-portal-r630-01.sh

This will:

  • Install Node.js 18
  • Install pnpm
  • Copy Portal project files
  • Install dependencies
  • Configure environment
  • Build Portal (Next.js)
  • Create systemd service
  • Start Portal service

Verification

Check Container Status

ssh root@192.168.11.11 "pct list | grep -E '780[0-3]'"

Check Service Status

PostgreSQL:

ssh root@192.168.11.11 "pct exec 7803 -- systemctl status postgresql"

Keycloak:

ssh root@192.168.11.11 "pct exec 7802 -- systemctl status keycloak"
curl http://10.160.0.12:8080/health/ready

API:

ssh root@192.168.11.11 "pct exec 7800 -- systemctl status sankofa-api"
curl http://10.160.0.10:4000/health

Portal:

ssh root@192.168.11.11 "pct exec 7801 -- systemctl status sankofa-portal"
curl http://10.160.0.11:3000

Test GraphQL Endpoint

curl -X POST http://10.160.0.10:4000/graphql \
  -H "Content-Type: application/json" \
  -d '{"query": "{ __typename }"}'

Service URLs

Service URL Description
PostgreSQL 10.160.0.13:5432 Database
Keycloak http://10.160.0.12:8080 Identity Provider
Keycloak Admin http://10.160.0.12:8080/admin Admin Console
API http://10.160.0.10:4000 GraphQL API
API GraphQL http://10.160.0.10:4000/graphql GraphQL Endpoint
API Health http://10.160.0.10:4000/health Health Check
Portal http://10.160.0.11:3000 Web Portal

Troubleshooting

Container Won't Start

# Check container status
ssh root@192.168.11.11 "pct status 7800"

# Check container logs
ssh root@192.168.11.11 "pct exec 7800 -- journalctl -n 50"

Database Connection Issues

# Test database connection from API container
ssh root@192.168.11.11 "pct exec 7800 -- bash -c 'PGPASSWORD=your_password psql -h 10.160.0.13 -U sankofa -d sankofa -c \"SELECT 1;\"'"

Keycloak Not Starting

# Check Keycloak logs
ssh root@192.168.11.11 "pct exec 7802 -- journalctl -u keycloak -n 100"

# Check Keycloak process
ssh root@192.168.11.11 "pct exec 7802 -- ps aux | grep keycloak"

API Service Issues

# Check API logs
ssh root@192.168.11.11 "pct exec 7800 -- journalctl -u sankofa-api -n 100"

# Restart API service
ssh root@192.168.11.11 "pct exec 7800 -- systemctl restart sankofa-api"

Portal Build Failures

# Check build logs
ssh root@192.168.11.11 "pct exec 7801 -- journalctl -u sankofa-portal -n 100"

# Rebuild Portal
ssh root@192.168.11.11 "pct exec 7801 -- bash -c 'cd /opt/sankofa-portal && pnpm build'"

Post-Deployment Tasks

  1. Update Environment Variables

    • Update .env.r630-01 with actual passwords and secrets
    • Update service configurations if needed

  2. Configure Firewall Rules

    • Allow access to service ports
    • Configure VLAN 160 routing if needed

  3. Set Up Cloudflare Tunnels

    • Configure tunnels for external access
    • Set up DNS records

  4. Configure Monitoring

    • Set up Prometheus exporters
    • Configure Grafana dashboards
    • Set up alerting

  5. Backup Configuration

    • Document all passwords and secrets
    • Create backup procedures
    • Test restore procedures

Maintenance

Update Services

Update API:

ssh root@192.168.11.11 "pct exec 7800 -- bash -c 'cd /opt/sankofa-api && git pull && pnpm install && pnpm build && systemctl restart sankofa-api'"

Update Portal:

ssh root@192.168.11.11 "pct exec 7801 -- bash -c 'cd /opt/sankofa-portal && git pull && pnpm install && pnpm build && systemctl restart sankofa-portal'"

Backup Database

ssh root@192.168.11.11 "pct exec 7803 -- bash -c 'PGPASSWORD=your_password pg_dump -h localhost -U sankofa sankofa > /tmp/sankofa_backup_$(date +%Y%m%d).sql'"

View Logs

API Logs:

ssh root@192.168.11.11 "pct exec 7800 -- journalctl -u sankofa-api -f"

Portal Logs:

ssh root@192.168.11.11 "pct exec 7801 -- journalctl -u sankofa-portal -f"

Support

For issues or questions:

  1. Check logs using troubleshooting commands above
  2. Review deployment scripts for configuration
  3. Verify network connectivity between containers
  4. Check Proxmox storage and resource availability

Last Updated: $(date +%Y-%m-%d)

Reference in New Issue View Git Blame Copy Permalink