Skip to content

DEPLOYMENT.md

Latest commit

 

History

History
610 lines (412 loc) · 12.3 KB

DEPLOYMENT.md

File metadata and controls

610 lines (412 loc) · 12.3 KB

Lion Reader Deployment Guide

This guide covers deploying Lion Reader to Fly.io, including provisioning all required infrastructure.

Table of Contents

  1. Prerequisites
  2. Initial Setup
  3. Database Provisioning (Postgres)
  4. Redis Provisioning (Upstash)
  5. Configuring Secrets
  6. GitHub Actions Setup
  7. First Deployment
  8. Verification
  9. Ongoing Operations
  10. Troubleshooting

Prerequisites

Before you begin, ensure you have:

1. Fly.io Account

Create a free account at fly.io/app/sign-up.

2. Fly.io CLI (flyctl)

Install the Fly.io CLI:

# macOS
brew install flyctl

# Linux
curl -L https://fly.io/install.sh | sh

# Windows (PowerShell)
pwsh -Command "iwr https://fly.io/install.ps1 -useb | iex"

Verify installation:

flyctl version

3. Authenticate with Fly.io

flyctl auth login

This will open a browser window for authentication.

4. GitHub Repository

Ensure your code is pushed to a GitHub repository for CI/CD.

Initial Setup

1. Initialize the Fly.io App

From the project root directory, run:

flyctl launch --no-deploy

When prompted:

  • App name: Choose a unique name (e.g., lion-reader or lion-reader-prod)
  • Region: Select your preferred region (e.g., iad for US East, lhr for London)
  • Postgres: Select "No" (we'll provision this separately for more control)
  • Redis: Select "No" (we'll use Upstash)

This creates the app on Fly.io and updates your fly.toml with the app name.

2. Verify App Creation

flyctl apps list

You should see your new app listed.

Database Provisioning (Postgres)

Lion Reader uses PostgreSQL for all persistent data.

1. Create a Postgres Cluster

flyctl postgres create \
  --name lion-reader-db \
  --region iad \
  --vm-size shared-cpu-1x \
  --initial-cluster-size 1 \
  --volume-size 10

Options explained:

  • --name: Name for your Postgres app (must be unique)
  • --region: Should match your app's primary_region in fly.toml
  • --vm-size: shared-cpu-1x is sufficient for MVP (~$7/month)
  • --initial-cluster-size: 1 for MVP, increase for HA
  • --volume-size: 10GB is plenty for MVP

2. Attach Postgres to Your App

flyctl postgres attach lion-reader-db --app lion-reader

This automatically:

  • Creates a database user for your app
  • Sets the DATABASE_URL secret on your app
  • Configures network access between your app and database

3. Verify Database Connection

# Connect to the database
flyctl postgres connect -a lion-reader-db

# Run a quick test
\conninfo
\q

4. (Optional) View Database URL

flyctl secrets list --app lion-reader

You should see DATABASE_URL listed (value is hidden).

Redis Provisioning (Upstash)

Lion Reader uses Redis for session caching, rate limiting, and pub/sub for real-time updates.

Option A: Fly.io Upstash Redis (Recommended)

Fly.io offers managed Upstash Redis:

flyctl redis create

When prompted:

  • Name: lion-reader-redis
  • Region: Same as your app (e.g., iad)
  • Plan: Free tier is fine for MVP (100 commands/day limit)
    • For production, choose "Pay-as-you-go" (~$0.20/1M commands)
  • Eviction: Enable if you want auto-cleanup of old data

After creation, attach it to your app:

flyctl redis connect

Copy the connection string and set it as a secret:

flyctl secrets set REDIS_URL="redis://default:password@fly-lion-reader-redis.upstash.io:6379"

Option B: Upstash Console (Alternative)

  1. Go to console.upstash.com
  2. Create a new Redis database
  3. Select a region close to your Fly.io region
  4. Copy the Redis URL (TLS format recommended)
  5. Set the secret:
flyctl secrets set REDIS_URL="rediss://default:password@your-endpoint.upstash.io:6379"

Note: Use rediss:// (with double 's') for TLS connections.

Configuring Secrets

Lion Reader requires several secrets for production.

1. Set Application URL (Optional but Recommended)

flyctl secrets set NEXT_PUBLIC_APP_URL="https://lionreader.com"

Replace with your custom domain if you have one.

2. Verify All Secrets

flyctl secrets list

You should see:

  • DATABASE_URL (set automatically by postgres attach)
  • REDIS_URL
  • NEXT_PUBLIC_APP_URL (optional)

Complete Secrets Reference

Secret Required Description How to Get
DATABASE_URL Yes Postgres connection string Set by fly postgres attach
REDIS_URL Yes Redis/Upstash connection string From Upstash console or fly redis create
NEXT_PUBLIC_APP_URL No Public URL for the app Your Fly.io URL or custom domain

GitHub Actions Setup

The repository includes CI/CD workflows that automatically deploy on push to master.

1. Generate a Fly.io Deploy Token

flyctl tokens create deploy -x 999999h

This creates a long-lived deploy token. Copy the token value.

2. Add Token to GitHub Secrets

  1. Go to your GitHub repository
  2. Navigate to Settings > Secrets and variables > Actions
  3. Click New repository secret
  4. Name: FLY_API_TOKEN
  5. Value: Paste the token from step 1
  6. Click Add secret

3. Verify Workflow Configuration

The deployment workflow is already configured in .github/workflows/deploy.yml:

name: Deploy

on:
  push:
    branches: [master]
  workflow_dispatch: # Allow manual trigger

jobs:
  deploy:
    name: Deploy to Fly.io
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - uses: superfly/flyctl-actions/setup-flyctl@master
      - run: flyctl deploy --remote-only
        env:
          FLY_API_TOKEN: ${{ secrets.FLY_API_TOKEN }}

First Deployment

1. Deploy Manually (First Time)

For the first deployment, deploy manually to verify everything works:

flyctl deploy

This will:

  1. Build the Docker image on Fly.io's remote builders
  2. Run database migrations (via release_command in fly.toml)
  3. Start your application
  4. Run health checks

2. Monitor the Deployment

# Watch logs during deployment
flyctl logs

# Check deployment status
flyctl status

3. Verify App is Running

# Open the app in your browser
flyctl open

# Or check the health endpoint
curl https://lionreader.com/api/health

Expected response:

{
  "status": "healthy",
  "timestamp": "2024-01-15T12:00:00.000Z"
}

Verification

After deployment, verify the application works end-to-end:

1. Health Check

curl https://your-app.com/api/health

2. Create a Test Account

  1. Open https://your-app.com
  2. Click "Register" or navigate to /register
  3. Create an account with a test email and password
  4. Verify you're redirected to the main app

3. Subscribe to a Feed

  1. Click the "+ Subscribe" button
  2. Enter a test feed URL, for example:
    • https://feeds.bbci.co.uk/news/rss.xml (BBC News)
    • https://xkcd.com/atom.xml (XKCD)
    • https://blog.cloudflare.com/rss/ (Cloudflare Blog)
  3. Preview the feed and confirm subscription
  4. Verify entries appear after a few moments

4. Verify Core Features

  • Entries load in the feed list
  • Clicking an entry shows full content
  • Mark read/unread works
  • Starring entries works
  • Sidebar shows unread counts
  • Real-time updates work (new entries appear without refresh)

5. Check Logs for Errors

flyctl logs --app lion-reader

Look for any errors or warnings.

Ongoing Operations

Scaling

Increase VM resources:

flyctl scale vm shared-cpu-2x --memory 1024

Add more instances:

flyctl scale count 2

Database Maintenance

Connect to database:

flyctl postgres connect -a lion-reader-db

Manual backup:

flyctl postgres backup create -a lion-reader-db

List backups:

flyctl postgres backup list -a lion-reader-db

Viewing Logs

# Live logs
flyctl logs

# Recent logs
flyctl logs --no-tail

# Filter by type
flyctl logs --instance <instance-id>

SSH into Running Machine

flyctl ssh console

Restarting the App

flyctl apps restart lion-reader

Custom Domains

  1. Add your domain:
flyctl certs create yourdomain.com
  1. Follow the DNS instructions provided
  2. Verify certificate:
flyctl certs show yourdomain.com

Troubleshooting

Deployment Fails

"Release command failed"

This usually means database migrations failed.

# Check logs for migration errors
flyctl logs | grep -i migration

# Connect to database and check state
flyctl postgres connect -a lion-reader-db

"Health check failed"

The app isn't responding on /api/health.

# Check app logs
flyctl logs

# SSH and check process
flyctl ssh console
ps aux | grep node

Database Connection Issues

"Connection refused"

Ensure the database is attached:

flyctl secrets list
# Should show DATABASE_URL

# Re-attach if needed
flyctl postgres attach lion-reader-db

"Authentication failed"

The database user credentials may be wrong. Detach and reattach:

flyctl postgres detach lion-reader-db
flyctl postgres attach lion-reader-db

Redis Connection Issues

"Connection timeout"

Check if Redis is accessible:

# Verify secret is set
flyctl secrets list | grep REDIS

# Check if using correct protocol (redis:// vs rediss://)

For Upstash, ensure you're using TLS (rediss://).

Application Errors

"500 Internal Server Error"

Check logs for the actual error:

flyctl logs --no-tail | tail -100

Common causes:

  • Missing environment variables
  • Database connection issues
  • Redis connection issues

Memory Issues

"Out of memory"

Scale up the VM:

flyctl scale vm shared-cpu-1x --memory 1024

Slow Cold Starts

The app uses auto_stop_machines = "stop" which stops idle machines. First request after idle period is slow.

To keep at least one machine always running:

flyctl scale count 1 --min 1

Or in fly.toml:

[http_service]
  min_machines_running = 1

Architecture Overview

                    Internet
                        |
                   Fly.io Edge
                        |
            +-----------+-----------+
            |                       |
     +------+------+         +------+------+
     |  App Server |         |  App Server |
     |  (Next.js)  |         |  (replica)  |
     +------+------+         +------+------+
            |                       |
            +-----------+-----------+
                        |
         +--------------+--------------+
         |                             |
  +------+------+              +-------+------+
  |   Postgres  |              |    Redis     |
  | (Fly.io PG) |              |  (Upstash)   |
  +-------------+              +--------------+

Cost Estimate (MVP)

Resource Size Estimated Cost
App VM shared-cpu-1x, 512MB ~$5/month
Postgres shared-cpu-1x, 10GB ~$7/month
Redis (Upstash) Pay-as-you-go ~$0-5/month
Total ~$12-17/month

Costs vary by usage. Check fly.io/docs/about/pricing for current rates.

Next Steps

After successful deployment:

  1. Set up monitoring - Configure Sentry for error tracking (see task 8.4)
  2. Add custom domain - Use flyctl certs create for SSL
  3. Enable backups - Configure automated Postgres backups
  4. Monitor usage - Use Fly.io dashboard to track resource usage

For questions or issues, check: