deployment(5/0)

Choose a static site host

Kev Q has written a detailed Comparison of Static Site Hosts.

Publish npm package to local repository

I wanted to share a set of authentication web components from chaos-auth so I could use them in my website’s static build. Keeping these components close to the authentication server lets me keep the responsibilities close, since these components will be heavily tied to my authentication implementation. Step 1: Publish Locally To publish a package you’ll simply need a name and version value in your package.json file. Here’s a paired-down example:…

Backup vps preparations

Before I can run my Ansible scripts on a backup server there are a few preparations to get it ready to connect. Step 1: Add a user I’ll add a user for Ansible to use. This command will prompt for a name and password. adduser abilson My user will need sudo permissions so Ansible can run root privileged commands like chown. echo 'abilson ALL=(ALL) NOPASSWD:ALL' > /etc/sudoers.d/010_abilson_nopasswd The user should also be given an ssh key.…

Deploy nonroot containers

One of the advantages touted by the Podman team over Docker is that you can choose to run containers as a user other than root. This is a security feature since, if a container were compromised by a malicious user and broke out of its container process, they would not have root privileges. Actually running containers as non-root users, however, adds a surprising complexity. Most container images, including those I’ve created myself, were drafted in Docker.…

Build your own CI/CD pipeline

The Journey Ends My journey towards a self-hosted devops pipeline began a few years ago with steps to architect a personal devops pipeline. The system grew into the Podman era when I wrote how to host your services with podman. Inspired by Christian Ştefănescu’s brilliant design for a Tiny CI System and motivated by the need to redeploy my entire web stack to a cloud server while we move, I’ve crafted my own minimal deployment system that may be the last step in my devops saga for a while.…