1. Launch EC2 instance: Here I am going to use Ubuntu, so next all the commands will be according to the ubuntu.
2. SSH into your instance: You can use any method, I am going to use "EC2 Instance Connect".
3. Update, upgrade and Install git, htop and wget:
Update:
sudo apt update
Upgrade:
sudo apt upgrade -y
Install git, htop and wget:
sudo apt install -y git htop wget
4. Installing Node:
Download NVM Script:
wget -qO- https://github.com/nvm-sh/nvm/v0.40.3/install.sh | bash
Running either of the above commands downloads a script and runs it. The script clones the nvm repository to /.nvm, and attempts to add the source lines from the snippet below to the correct profile file (/.bash_profile, ~/.zshrc, ~/.profile, or ~/.bashrc).
Copy & Paste Following Line (Each Line Saparately):
export NVM_DIR="$HOME/.nvm"
[ -s "$NVM_DIR/nvm.sh" ] && \. "$NVM_DIR/nvm.sh" # This loads nvm
[ -s "$NVM_DIR/bash_completion" ] && \. "$NVM_DIR/bash_completion" # This loads nvm bash_completion
Verify nvm:
nvm --version
install Node:
nvm install --lts
Verify NodeJS:
node --version
Verify NPM:
npm --version
5. Testing:
make sure you are in /home/ubuntu directory.
cd /home/ubuntu
clone the repo:
git clone https://github.com/nishant-p-7span/test-node.git
go to repo directory:
cd test-node
run app.js:
node app.js
To acces the application go to the following address:
http://ip-of-instace:portno
6. PM2 set up:
wget -qO- https://getpm2.com/install.sh | bash
7. Making Available node, pm2 and npm to root:
Node:
sudo ln -s "$(which node)" /sbin/node
npm:
sudo ln -s "$(which npm)" /sbin/npm
pm2:
sudo ln -s "$(which pm2)" /sbin/pm2
8. Running app with sudo: Running app.js with pm2 with custom name:
sudo pm2 start app.js --name=test-node
Save the app, otherwise pm2 will forget running app on next boot:
sudo pm2 save
Start PM2 on system boot:
sudo pm2 startup
9. Install Docker:
- Curl the Script:
curl -fsSL https://get.docker.com -o get-docker.sh
- Run the script:
sudo sh get-docker.sh
Make it non root:
- Create group if not exit:
sudo groupadd docker
- Add your user to group:
sudo usermod -aG docker $USER
- Apply chnages:
newgrp docker
- Enable Docker to start on boot:
sudo systemctl enable docker.service
sudo systemctl enable containerd.service
We will Solve this issue by Allocating our ebs storage as memory, so it will increase our RAM.
first make sure you are log in as root ( so our swap file be stay persistant on the reboots ).
sudo su #if you are log in as ubuntu user.
Copy Paste the following commands.
fallocate -l 4G /swapfile
chmod 600 /swapfile
mkswap /swapfile
swapon /swapfile
swapon --show
free -h
echo '/swapfile none swap sw 0 0' | sudo tee -a /etc/fstab
- install nginx
sudo apt install nginx - Go to folowing location:
etc/nginx/site-available. - Create file with domain name of app
nano domain.com - Add following content to the file:
server { listen 80; listen [::]:80; root /var/www/your_domain/html; index index.html index.htm index.nginx-debian.html; server_name your_domain; client_max_body_size 100M; location / { # try_files $uri $uri/ =404; proxy_pass http://localhost:8001; #whatever port your app runs on proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection 'upgrade'; proxy_set_header Host $host; proxy_cache_bypass $http_upgrade; } } - Forward users real ip:
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Real-IP $remote_addr; - Enter following command to link to the
sites-enable.sudo ln -s /etc/nginx/sites-available/domain.com /etc/nginx/sites-enabled/ - Configuration check command:
nginx -t - Reload NGINX:
nginx -s reload - NGINX parameter to limit file upload size.
client_max_body_size 100M; - NGINX wildcard parameter to query other routes.
location / { try_files $uri $uri/ /index.php?$query_string; } - Proxy Pass to another URL: Let's Assume you have frontend that makes calls to the api url but you don't want to reveal direct url of api. then you set proxy pass.
location /api { proxy_pass https://dev-api.pfizer.invoicing.csmgroup.com; # Add other proxy settings if necessary }- Server name is
domain.com, so if we passdomain.com/apithen it will redirect to thehttps://dev-api.pfizer.invoicing.csmgroup.com.
- Server name is
- Original Website docs: https://certbot.eff.org/instructions?ws=nginx&os=snap&tab=standard
- add repo:
sudo add-apt-repository ppa:certbot/certbot - update:
sudo apt-get update - install certbot:
sudo apt-get install python3-certbot-nginx - Command to activate SSL.
sudo certbot --nginx --register-unsafely-without-email -d yourdomain.com - Command to check all certiifcates details:
sudo certbot certificates - Renew Command:
sudo certbot renew --cert-name yourdomain.com --nginx sudo certbot renew --cert-name yourdomain.com --apache - Set up Cron to auto update SSL:
crontab -e - Add certbot command:
Start cron:
0 12 * * * /usr/bin/certbot renew --quietsudo systemctl enable cron sudo systemctl start cron
- Initiate directus project:
npm init directus-project@latest <project-name> - Start new project.
npx directus start - If database already exist or set up project from already existing env.
npx directus bootstrap - Add this line to all directus env:
MAX_PAYLOAD_SIZE="100mb"
- Install:
npm i directus@10.10.7 - Init:
npx directus init
- Python Run program:
python3 program.py - Install libraries:
sudo apt install python3-boto3
- Follow this document to set certificate: https://phoenixnap.com/kb/install-ssl-certificate-nginx
- Make you nginx files like this:
server {
listen 443 ssl;
listen [::]:443 ssl ipv6only=on;
server_name domain.com;
ssl_certificate /etc/ssl/domain.com/ssl-bundle.pem;
ssl_certificate_key /etc/ssl/domain.com/private.pem;
client_max_body_size 100M;
location / {
# try_files $uri $uri/ =404;
proxy_pass http://localhost:8056; #whatever port your app runs on
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection 'upgrade';
proxy_set_header Host $host;
proxy_cache_bypass $http_upgrade;
}
}
server {
if ($host = domain.com) {
return 301 https://$host$request_uri;
}
listen 80;
listen [::]:80;
server_name domain.com;
return 404;
}
- Restart nginx:
sudo systemctl restart nginx
- create new branch new branch:
git checkout -b <branch-name>
- Stage all changes:
git add .
- Commit:
git commit -m "message"
- Push:
git push origin branch
- Remove all changes:
git stash
- View the branch name:
git branch
- Create new User:
sudo adduser newuser
- Set up Password for the user:
sudo passwd
- Enable password based authentication:
- Edit ssh file:
sudo nano /etc/ssh/sshd_config- Add or enable following variables:
PasswordAuthentication yes ChallengeResponseAuthentication yes- Restart ssh:
sudo systemctl reload ssh
Open SSH tunnle on the local device to connect to the private RDS or instnace, which is not publically accesible:
ssh -i /path/to/your-key.pem -N -L 5432:<rds-endpoint>:5432 ec2-user@<ec2-public-ip>
- First port is the local device port where we want to expose our rds. and rest is self explanatory.
- FYI: For that we need one EC2 instance in the vpc to create bridge / SSH tunnle.
- Configure AWS CLI with the account have source S3 bucket:
aws s3 sync s3://algoseek ./s3 - Now configure CLI with account have destination S3 bucket:
aws s3 sync ./s3 s3://algoseek-new
If you pushed code with the other users github the run this command to fix you last commit: (This will only run if commit is just pushed and after that no other commit is made.)
- Windows:
$env:GIT_COMMITTER_NAME = "pruthvi-7span"
$env:GIT_COMMITTER_EMAIL = "pruthvi@7span.com"
git commit --amend --no-edit --author="pruthvi-7span <pruthvi@7span.com>"
git push --force-with-lease
- Linux:
export GIT_COMMITTER_NAME="pruthvi-7span"
export GIT_COMMITTER_EMAIL="pruthvi@7span.com"
git commit --amend --no-edit --author="pruthvi-7span <pruthvi@7span.com>"
git push --force-with-lease