Forked from farhad0085/Deploy Django and React APP in a production VPS.md
Created
May 9, 2024 18:21
-
-
Save aN0mad/3872a79c9f694cd00cbb8f6b3717d684 to your computer and use it in GitHub Desktop.
Revisions
-
farhad0085 revised this gist
Jun 6, 2023 . 1 changed file with 5 additions and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -50,6 +50,11 @@ Use `pip freeze > requirements.txt` from your local environment to export all re pip install -r requirements.txt ``` > For GCP VMs, using just pip will not work (you've to run it in sudo mode), it'll cause issue of permission error. So in case of GCP try this: ``` sudo /home/backend/venv/bin/python -m pip install -r requirements.txt ``` Install `gunicorn` and `psycopg2` (for postgresql) additionally ``` pip install gunicorn psycopg2 -
May 30, 2023 . 1 changed file with 1 addition and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -173,7 +173,7 @@ sudo systemctl restart gunicorn ``` Make sure you troubleshoot any of the above issues before continuing. ## Configure Nginx for reverse proxy to Gunicorn Check existing enabled sites by ``` ls /etc/nginx/sites-enabled/ -
May 26, 2023 . 1 changed file with 4 additions and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -124,7 +124,10 @@ After=network.target User=root Group=www-data WorkingDirectory=/home/backend ExecStart=/home/backend/venv/bin/gunicorn \ --env DJANGO_SETTINGS_MODULE='project_name.settings' \ --access-logfile /home/backend/logs/gunicorn.log \ --workers 3 --bind 127.0.0.1:8000 project_name.wsgi:application [Install] WantedBy=multi-user.target -
May 19, 2023 . 1 changed file with 1 addition and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -124,7 +124,7 @@ After=network.target User=root Group=www-data WorkingDirectory=/home/backend ExecStart=/home/backend/venv/bin/gunicorn --env DJANGO_SETTINGS_MODULE='project_name.settings' --access-logfile /home/backend/logs/gunicorn.log --workers 3 --forwarded-allow-ips="*" --bind 127.0.0.1:8000 project_name.wsgi:application [Install] WantedBy=multi-user.target -
May 26, 2022 . 1 changed file with 1 addition and 10 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -10,17 +10,9 @@ Below we’ll cover how to install Certbot, create a Let’s Encrypt SSL certifi Install Certbot and additional required packages: ``` snap install certbot --classic ``` ## Create an SSL with Certbot After you install Certbot, you’re ready to create SSL certificates for your domains. @@ -112,7 +104,6 @@ server { alias /home/backend/media; } listen 443 ssl http2; access_log /var/log/nginx/access.log; -
Dec 4, 2021 . 1 changed file with 44 additions and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,44 @@ # Hide NGINX Server Version from Header Generally, when a user requests an unavailable/broken link on an NGINX based website, then they get the following message. ``` 404 Page not found nginx/1.6.2 ``` As you can see, the NGINX server string contains server name and version. Attackers can use this information to hack your website. So it is important to hide NGINX server information from response. Here are the steps to hide NGINX server name and version from response. ## Open NGINX configuration file Open terminal and run the following command to open NGINX configuration file in a text editor. ``` sudo nano /etc/nginx/nginx.conf ``` ## Hide NGINX Server Version & Name The NGINX server information can be hidden using `server_tokens` header. Add the following line to http block. ``` http{ ... server_tokens off; ... } ``` ## Restart NGINX Finally, run the following command to check syntax of your updated config file. ``` sudo nginx -t ``` If there are no errors, run the following command to restart NGINX server. ``` sudo service nginx restart ``` That’s it! -
Jul 24, 2021 . 1 changed file with 1 addition and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -19,6 +19,7 @@ sudo apt-get install python-certbot-nginx > ``` > snap install certbot --classic > ``` > Also if `python-certbot-nginx` doesn't work, then try `python3-certbot-nginx` ## Create an SSL with Certbot After you install Certbot, you’re ready to create SSL certificates for your domains. -
Jul 24, 2021 . 1 changed file with 5 additions and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -15,6 +15,11 @@ sudo apt-get update sudo apt-get install python-certbot-nginx ``` > If above command doesn't work, run this: > ``` > snap install certbot --classic > ``` ## Create an SSL with Certbot After you install Certbot, you’re ready to create SSL certificates for your domains. -
Jun 13, 2021 . No changes.There are no files selected for viewing
-
Jun 13, 2021 . 1 changed file with 14 additions and 15 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -198,24 +198,23 @@ sudo apt-get install supervisor ## Step 2: Add .conf File in Supervisor ``` sudo nano /etc/supervisor/conf.d/celery.conf ``` ## Step 3: Add some Configure in celery.conf ``` [program:celery] command=/path/to/env/bin/celery -A your_project_name worker -l info directory=/path/to/workflow/your_project_name/ user=www-data autostart=true autorestart=true stdout_logfile=/path/to/workflow/your_project_name/logs/celery.log redirect_stderr=true ``` > **celery** can be anything you like, its totally up to you. this name is related to the supervisor, nothing else. in the future you able to access this app with this name ## Step 4: Inform Configuration to the Server @@ -271,17 +270,17 @@ INSTALLED_APPS = [ ## Add .conf File in Supervisor ``` sudo nano /etc/supervisor/conf.d/celery_beat.conf ``` ``` [program:celery_beat] command=/path/to/env/bin/celery -A your_project_name beat --scheduler django -l info directory=/path/to/workflow/your_project_name/ user=www-data autostart=true autorestart=true stdout_logfile=/path/to/workflow/your_project_name/logs/celery_beat.log redirect_stderr=true ``` @@ -294,6 +293,6 @@ sudo supervisorctl update You will need to restart the worker everytime you change something ``` sudo supervisorctl restart celery sudo supervisorctl restart celery_beat ``` -
Apr 14, 2021 . 1 changed file with 3 additions and 3 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -12,19 +12,19 @@ Install Certbot and additional required packages: ``` sudo add-apt-repository ppa:certbot/certbot sudo apt-get update sudo apt-get install python-certbot-nginx ``` ## Create an SSL with Certbot After you install Certbot, you’re ready to create SSL certificates for your domains. Create an SSL certificate for your domain(s): ``` sudo certbot --nginx -d domain.com ``` Or if you wish to create an SSL that includes “www” queries: ``` sudo certbot --nginx -d domain.com -d www.domain.com ``` * Enter an email address for renewal and security notices * Agree to the Terms of Service -
Mar 19, 2021 . 1 changed file with 1 addition and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -124,7 +124,7 @@ After=network.target User=root Group=www-data WorkingDirectory=/home/backend ExecStart=/home/backend/venv/bin/gunicorn --env DJANGO_SETTINGS_MODULE='project_name.settings' --access-logfile /home/backend/logs/gunicorn.log --workers 3 --bind 127.0.0.1:8000 project_name.wsgi:application [Install] WantedBy=multi-user.target -
Mar 5, 2021 . 1 changed file with 299 additions and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,299 @@ # Django, Celery, Redis in Production using Supervisor ## What is Celery? Celery is an **asynchronous** **task** queue/job queue based on distributed message passing. It is focused on real-time operation but supports **scheduling** as well. **Why is this useful?** * Think of all the times you have had to run a certain task in the future. Perhaps you needed to access an API every hour. Or maybe you needed to send a batch of emails at the end of the day. Large or small, Celery makes scheduling such periodic tasks easy. * You never want end users to have to wait unnecessarily for pages to load or actions to complete. If a long process is part of your application’s workflow, you can use Celery to execute that process in the background, as resources become available, so that your application can continue to respond to client requests. This keeps the task out of the application’s context. # What is Redis? **Redis** is an in-memory data structure project implementing a distributed, in-memory key-value database with optional durability. The most common Redis use cases are **session cache, full-page cache, queues, leaderboards and counting, publish-subscribe**, and much more. in this case, we will use Redis as a **message broker.** > Celery uses “[brokers](http://celery.readthedocs.org/en/latest/getting-started/brokers/)” to pass messages between a Django Project and the Celery [workers](http://celery.readthedocs.org/en/latest/userguide/workers.html). **For more details visit** [**Django**](https://docs.djangoproject.com/en/3.0/)**,** [**Celery**](https://docs.celeryproject.org/en/stable/userguide/)**, and** [**Redis**](https://redis.io/documentation) **official documentation.** # **Celery Implementation with Django Step by Step:** ## Step 1. Create a Django Application. First, you need to create a Django application. I am not describing how to do that, you can easily understand those things from Django documentation or I am suggesting you this [**site**](https://tutorial.djangogirls.org/en/) for the basic creation process of Django application. ## Step 2: Install Celery Using pip. Before installing celery please activate your **virtual** **environment,** then run the command from the terminal or other command-line like git-bash: ``` pip install celery ``` ## Step 3. Add celery.py File in Your Project Module. celery.py ``` import os from celery import Celery os.environ.setdefault('DJANGO_SETTINGS_MODULE', 'your_project_name.settings') app = Celery('your_project_name') app.config_from_object('django.conf:settings', namespace="CELERY") app.autodiscover_tasks() @app.task(bind=True) def debug_task(self): print('Request: {0!r}'.format(self.request)) ``` > please, make sure to change the **your_project_name** with your actual project name that you created ## Step 4: Import the Celery App to Django. To ensure that the Celery app is loaded when Django starts, add the following code into the **__init__.py** file that sits on the project module beside on settings.py file. ``` from .celery import app as celery_app __all__ = ['celery_app'] ``` ## Step 5: Download Redis as a Celery ‘broker’. First install [Redis](http://redis.io/) ``` sudo apt install redis ``` If you're an windows user, download it from here. https://github.com/microsoftarchive/redis/releases/ in a new terminal window, fire up the server with this command: ``` redis-server ``` You can test that Redis is working properly by typing this into your terminal: ``` redis-cli ping ``` > Redis should reply with `PONG`! ## Step 6: Add Redis as a Dependency in the Django Project: Run the command: ``` pip install redis ``` ## step 7: Celery Stuff Configure to the Django Settings File Once Redis is up, add the following code to your settings.py file: ``` CELERY_BROKER_URL = "redis://localhost:6379" CELERY_RESULT_BACKEND = 'django-db' CELERY_ACCEPT_CONTENT = ['json'] CELERY_TASK_SERIALIZER = 'json' ``` ## That’s it! You should now be able to use Celery with Django. Test that the Celery worker is ready to receive tasks: ``` celery -A your_project_name worker -l info ``` Modify `**your_project_name**` with the actual name of your project > **The most important task is: Always run a worker to execute the celery task** # Add a New Task to the Celery: ## Step 1: Add *tasks.py* File to Your Django App. ``` from celery import shared_task from time import sleep @shared_task def my_first_task(duration): sleep(duration) return('task_done') ``` Your new task is ready to be used but you have to assign it to the celery. ## Step 2: Assign Task to the Celery. You need to assign a task to the celery. To assign this task you need to call this function with something different. celery gives us two methods **delay()** and **apply_async()** to call task. ``` celery -A **your_project_name** worker -l info ``` > please modify `**your_project_name**` with the actual name of your project you will see a new task **my_first_task** is assigned in celery ``` [tasks] . your_project_name.celery.debug_task . my_first_task ``` # Let's complete and test the task with the response. ## Create a View in your App ``` from django.http import HttpResponse from .tasks import my_first_task def index(request): my_first_task.delay(10) return HttpResponse('response done') ``` **my_first_task** is a function that I assigned in **tasks.py** file, and I used to **delay()** to assign a task in celery worker. ## Call the view from your app URL. ``` from django.urls import path from .views import index urlpatterns = [ path('celery-test/',index, name='celery_test_url'), ] ``` when you make a request to this URL you will see its response to you **‘response done’** just within 2 or 3 seconds but what really should have happened? I passed **10** to **my_first_task** function as an argument with the delay() method. so the **duration** parameter will take this **10** and will call **sleep**(10) so this function should wait for 10 seconds to return but it didn’t. The response back within too short! > **This is the power of celery, you got the response in just time but the task is running by a worker in the background.** # Celery In Production Using Supervisor on Linux Server Running Celery locally is easy: simple **_celery -A your_project_name worker -l info_** does the trick. In production, though, something a little more robust is needed. Thankfully, it’s not difficult at all. Just like Gunicorn, Celery can be overseen by Supervisor. On a production server, the application needs to start and stop with the operating system. To achieve this, a _process control system_ is usually required (particularly for daemons that don’t do this job themselves, like Gunicorn’s). The supervisor is a particularly good example and is pretty simple to set up. ## Step 1: Install Supervisor on Ubuntu Server ``` sudo apt-get install supervisor ``` ## Step 2: Add .conf File in Supervisor ``` sudo nano /etc/supervisor/conf.d/app_name.conf ``` > **app_name** can be anything you like, it should be similar to your project name. ## Step 3: Add some Configure in app_name.conf ``` [program:your_app_name] command=/path/to/env/bin/celery -A your_project_name worker -l info directory=/path/to/workflow/your_project_name/ user=www-data autostart=true autorestart=true stdout_logfile=/path/to/workflow/your_project_name/logs/celeryd.log redirect_stderr=true ``` > **your_app_name** can be anything you like, its totally up to you. this name is related to the supervisor, nothing else. in the future you able to access this app with this name ## Step 4: Inform Configuration to the Server After adding a new program, we should run the following two commands, to inform the server to reread the configuration files and to apply any changes. ``` sudo supervisorctl reread sudo supervisorctl update ``` > Congratulation! You did all the tasks need, Now the Celery is ready to use in the production server! # Managing Supervisor App execute the `**supervisorctl**` client. ``` sudo supervisorctl ``` You will be greeted with a list of the registered processes. You will see a process called **your_app_name** with a `RUNNING` status. ``` your_app_name RUNNING pid 6853, uptime 0:22:30 supervisor> Type `help` for a list of available commands. ``` We can `start`, `stop` and `restart` programs by passing the program name as an argument to the respective command. We can also take a look at the program output with the `tail` command. Once you are finished, you can quit. ``` supervisor> quit ``` # Running Celery Beat For Schedule Job Install `django-celery-beat` and add to `INSTALLED_APPS` ``` pip install django-celery-beat ``` ``` INSTALLED_APPS = [ ..., "django_celery_beat", ] ``` ## Add .conf File in Supervisor ``` sudo nano /etc/supervisor/conf.d/app_name_beat.conf ``` ``` [program:app_name_beat] command=/path/to/env/bin/celery -A your_project_name beat --scheduler django -l info directory=/path/to/workflow/your_project_name/ user=www-data autostart=true autorestart=true stdout_logfile=/path/to/workflow/your_project_name/logs/celeryd.log redirect_stderr=true ``` ## Reread conf files ``` sudo supervisorctl reread sudo supervisorctl update ``` You will need to restart the worker everytime you change something ``` sudo supervisorctl restart app_name sudo supervisorctl restart app_name_beat ``` -
Mar 5, 2021 . 1 changed file with 139 additions and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,139 @@ Let’s Encrypt provides free SSLs for your websites to use secure (SSL) connections. Certbot is free open source software that allows you to easily create Let’s Encrypt SSLs on your cloud server hosting. Below we’ll cover how to install Certbot, create a Let’s Encrypt SSL certificate, and check maintenance settings. > You must have a fully qualified domain name (FQDN) configured before creating an SSL. ## Install Certbot > We recommend you add Certbot developer’s official repository as it’s kept up to date better than what’s in Ubuntu’s default repo. Install Certbot and additional required packages: ``` sudo add-apt-repository ppa:certbot/certbot sudo apt-get update sudo apt-get install python-certbot-apache ``` ## Create an SSL with Certbot After you install Certbot, you’re ready to create SSL certificates for your domains. Create an SSL certificate for your domain(s): ``` sudo certbot --apache -d domain.com ``` Or if you wish to create an SSL that includes “www” queries: ``` sudo certbot --apache -d domain.com -d www.domain.com ``` * Enter an email address for renewal and security notices * Agree to the Terms of Service * Specify whether to receive emails from EFF * Choose whether to redirect HTTP traffic to HTTPS 1. no redirect, no further changes to the server 2. redirect all requests to HTTPS The certificate files for each domain will be added to a respective directory in: ``` cd /etc/letsencrypt/live ``` > Let’s Encrypt certificates expire after 90 days. To prevent SSLs from expiring, `certbot renew` checks your SSL status twice a day and renews certificates expiring within thirty days. To view settings on systemd: ``` systemctl show certbot.timer ``` To view settings on non-systemd systems: ``` cat /etc/cron.d/certbot ``` To test the renewal process to ensure it works: ``` sudo certbot renew --dry-run ``` ## Configure Nginx Settings Open your server config file. ``` sudo nano /etc/nginx/sites-available/default ``` Edit it as bellow: ``` server { root /home/frontend/build; index index.htm index.html index.nginx-debian.html; server_name 1**.**.**.*9; location / { try_files $uri $uri/ /index.html =404; } location ~ ^/api { proxy_pass http://localhost:8000; proxy_set_header HOST $host; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; } location ~ ^/admin { proxy_pass http://localhost:8000; proxy_set_header HOST $host; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; } location = /favicon.ico { access_log off; log_not_found off; } location /django-static { autoindex on; alias /home/backend/staticfiles; } location /media { autoindex on; alias /home/backend/media; } ssl on; listen 443 ssl http2; access_log /var/log/nginx/access.log; error_log /var/log/nginx/error.log; ssl_certificate /etc/letsencrypt/live/your_domain.com/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/your_domain.com/privkey.pem; } server { if ($host = your_domain.com) { return 301 https://$host$request_uri; } listen 80 default_server; listen [::]:80 default_server; server_name 1**.**.**.*9; return 404; } ``` > Don't forget to change `your_domain.com` with your domain name. ## Reload nginx ``` sudo nginx -t && sudo systemctl restart nginx ``` Now check your domain, you should see ssl in your domain. -
Feb 14, 2021 . 1 changed file with 1 addition and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -277,7 +277,7 @@ sudo service nginx restart You should now be able to go to your server’s domain or IP address to view your application. # BONUS: Access Django Admin Area By previous settings you won't be able to access `django-admin`. If you want to access it, along with styling (Gunicorn will not load any styling), change your `nginx` configuration file as bellow. -
Feb 14, 2021 . 1 changed file with 77 additions and 3 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,5 +1,5 @@ Deploy Django and React APP in a production VPS (Django + React + PostgreSQL + NGINX + Ubuntu Server) ===================================================================================================== Assuming You have *backend* and *frontend* codes in `/home/backend` and `/home/frontend/` (Use git to upload) @@ -79,7 +79,9 @@ python manage.py runserver 0.0.0.0:8000 In your web browser, visit your server’s domain name or IP address followed by :8000: ``` http://server_domain_or_IP:8000 ``` You should see your project running. If not fix it before moving to next step. @@ -274,6 +276,78 @@ sudo service nginx restart You should now be able to go to your server’s domain or IP address to view your application. # BONUS: Access Django admin for manipulate data By previous settings you won't be able to access `django-admin`. If you want to access it, along with styling (Gunicorn will not load any styling), change your `nginx` configuration file as bellow. ``` server { root /home/frontend/build; index index.htm index.html index.nginx-debian.html; server_name 1**.**.**.*9; location / { try_files $uri $uri/ /index.html =404; } location ~ ^/api { proxy_pass http://localhost:8000; proxy_set_header HOST $host; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; } location ~ ^/admin { proxy_pass http://localhost:8000; proxy_set_header HOST $host; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; } location = /favicon.ico { access_log off; log_not_found off; } location /django-static { autoindex on; alias /home/backend/staticfiles; } location /media { autoindex on; alias /home/backend/media; } } server { listen 80 default_server; listen [::]:80 default_server; server_name 1**.**.**.*9; return 404; } ``` In your django settings file, add this. ``` STATIC_URL = "/django-static/" STATIC_ROOT = "staticfiles" ``` > **Note**: If your django admin lives in other url than default `/admin/` change that url here `location ~ ^/admin`. Now run this management command to collect all static files to that folder (staticfiles). ``` python manage.py collectstatic ``` Now you should access your django admin area along with styling (CSS & JS). ``` http://server_domain_or_IP/admin ``` ## Bonus As you update your configuration or application, you will likely need to restart the processes to adjust to your changes. -
Feb 13, 2021 . 1 changed file with 3 additions and 3 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,5 +1,5 @@ Deploy Django and React APP in a production VPS (Django + React + PostgreSQL + Ubuntu Server) ================================================================================ Assuming You have *backend* and *frontend* codes in `/home/backend` and `/home/frontend/` (Use git to upload) @@ -294,4 +294,4 @@ sudo nginx -t && sudo systemctl restart nginx These commands are helpful for picking up changes as you adjust your configuration. > Comment bellow if you face any error while deploying your application, I'll try to reply. Don't forget to put down your application url in comment box after you successfully deloyed it. -
Feb 13, 2021 .There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,297 @@ Deploy Django and React APP in a production VPS =============================================== Assuming You have *backend* and *frontend* codes in `/home/backend` and `/home/frontend/` (Use git to upload) ## Install required Packages from the Ubuntu Repositories ``` sudo apt-get update sudo apt-get install python3-pip python3-dev libpq-dev postgresql postgresql-contrib nginx ``` # Setup Backend We'll setup backend first. Go to your backend folder ``` cd /home/backend/ ``` ## Create PostgreSQL Database and User Enter postgres environment ``` sudo -u postgres psql ``` Create database and user with password and assign that user to that database. Change the `db_name`, `db_user_name` and `db_user_password` with yours. ``` CREATE DATABASE db_name; CREATE USER db_user_name WITH PASSWORD 'db_user_password'; GRANT ALL PRIVILEGES ON DATABASE db_name TO db_user_name; \q ``` ## Create a Python Virtual Environment ``` sudo -H pip3 install --upgrade pip sudo -H pip3 install virtualenv ``` ``` virtualenv venv ``` Activate it ``` source venv/bin/activate ``` Use `pip freeze > requirements.txt` from your local environment to export all required packages names with their versions. Now install those packages ``` pip install -r requirements.txt ``` Install `gunicorn` and `psycopg2` (for postgresql) additionally ``` pip install gunicorn psycopg2 ``` You should now have everything you need to deploy your django backend. Migrate your database migrations ``` python manage.py migrate ``` Now try if you're able to start the project. ``` python manage.py runserver ``` If you face any module not found errors or some other issues, solve it here before moving to next stage. Now Create an exception for port 8000: ``` sudo ufw allow 8000 ``` Finally, you can test our your project by starting up the Django development server with this command: ``` python manage.py runserver 0.0.0.0:8000 ``` In your web browser, visit your server’s domain name or IP address followed by :8000: `http://server_domain_or_IP:8000` You should see your project running. If not fix it before moving to next step. ## Testing Gunicorn’s Ability to Serve the Project Change `project_name` with your project folder name (where your project `urls.py, wsgi.py` etc exists) ``` gunicorn --bind 0.0.0.0:8000 project_name.wsgi ``` This will start Gunicorn on the same interface that the Django development server was running on. You can go back and test the app again. > **Note**: The admin interface will not have any of the styling applied since Gunicorn does not know about the static CSS content responsible for this. If everything so far gone very well, deactivate the virtualenvionment by ``` deactivate ``` The virtual environment indicator in your terminal will be removed. ## Create a Gunicorn systemd Service File We have tested that Gunicorn can interact with our Django application, but we should implement a more robust way of starting and stopping the application server. To accomplish this, we’ll make a systemd service file. Create and open a systemd service file for Gunicorn with `sudo` privileges ``` sudo nano /etc/systemd/system/gunicorn.service ``` Paste this code in the editor (`nano`) Change `root` with your username and `project_name` with your project folder name. ``` [Unit] Description=gunicorn daemon After=network.target [Service] User=root Group=www-data WorkingDirectory=/home/backend ExecStart=/home/backend/venv/bin/gunicorn --env DJANGO_SETTINGS_MODULE='project_name.settings' --access-logfile - --workers 3 --bind 127.0.0.1:8000 project_name.wsgi:application [Install] WantedBy=multi-user.target ``` Now press `ctrl + x` to exit editing, enter `y` and then press `Enter`. We can now start the Gunicorn service that we created and enable it so that it starts at boot: ``` sudo systemctl start gunicorn sudo systemctl enable gunicorn ``` ## Check for the Gunicorn Socket File Check the status of the process to find out whether it was able to start: ``` sudo systemctl status gunicorn ``` Next, check for the existence of the myproject.sock file within your project directory: ``` ls /home/backend ``` If the systemctl status command indicated that an error occurred or if you do not find the `backend.sock` file in the directory, it’s an indication that Gunicorn was not able to start correctly. Check the Gunicorn process logs by typing: ``` sudo journalctl -u gunicorn ``` Take a look at the messages in the logs to find out where Gunicorn ran into problems. There are many reasons that you may have run into problems, but often, if Gunicorn was unable to create the socket file, it is for one of these reasons: - The project files are owned by the `root` user instead of a `sudo` user - The WorkingDirectory path within the `/etc/systemd/system/gunicorn.service` file does not point to the project directory - The configuration options given to the gunicorn process in the `ExecStart` directive are not correct. Check the following items: - The path to the gunicorn binary points to the actual location of the binary within the virtual environment - The `--bind` directive defines a file to create within a directory that Gunicorn can access - The `project_name.wsgi:application` is an accurate path to the WSGI callable. If you make changes to the `/etc/systemd/system/gunicorn.service` file, reload the daemon to re-read the service definition and restart the Gunicorn process by typing: ``` sudo systemctl daemon-reload sudo systemctl restart gunicorn ``` Make sure you troubleshoot any of the above issues before continuing. ## Configure Nginx to Proxy Pass to Gunicorn Check existing enabled sites by ``` ls /etc/nginx/sites-enabled/ ``` You'll see a file called `default`, if there any other files, remove them ``` sudo rm /etc/nginx/sites-enabled/filename ``` Check available servers: ``` ls /etc/nginx/sites-available/ ``` You'll see a file called `default`, if there any other files, remove them as well. Backup the default server file. ``` sudo cp /etc/nginx/sites-available/default /etc/nginx/sites-available/default.bak ``` Now open that default server definition file. ``` sudo nano /etc/nginx/sites-available/default ``` Paste following block of codes. ``` server { root /home/frontend/build; index index.htm index.html index.nginx-debian.html; server_name 1**.**.**.*9; location / { try_files $uri $uri/ /index.html =404; } location ~ ^/api { proxy_pass http://localhost:8000; proxy_set_header HOST $host; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; } } server { listen 80 default_server; listen [::]:80 default_server; server_name 1**.**.**.*9; return 404; } ``` Change `server_name` value with your domain or ip address. > Look at that `root`, we defined `/home/frontend/build` where will our frontend codes be available. Test your Nginx configuration for syntax errors by typing: ``` sudo nginx -t ``` If no errors are reported, go ahead and restart Nginx by typing: ``` sudo systemctl restart nginx ``` Finally, we need to open up our firewall to normal traffic on port 80. Since we no longer need access to the development server, we can remove the rule to open port 8000 as well: ``` sudo ufw delete allow 8000 sudo ufw allow 'Nginx Full' ``` And our backend is ready # Setup Frontend Move to your `frontend` folder ``` cd /home/frontend ``` Install nodejs and npm ``` sudo apt-get install nodejs npm ``` Install required libraries. ``` sudo npm install ``` Build the project ``` sudo npm run build ``` Restart nginx service ``` sudo service nginx restart ``` You should now be able to go to your server’s domain or IP address to view your application. ## Bonus As you update your configuration or application, you will likely need to restart the processes to adjust to your changes. If you update your Django application, you can restart the Gunicorn process to pick up the changes by typing: ``` sudo systemctl restart gunicorn ``` If you change gunicorn systemd service file, reload the daemon and restart the process by typing: ``` sudo systemctl daemon-reload sudo systemctl restart gunicorn ``` If you change the Nginx server block configuration, test the configuration and then restart Nginx by typing: ``` sudo nginx -t && sudo systemctl restart nginx ``` These commands are helpful for picking up changes as you adjust your configuration. > Comment your application url after you successfully deloyed it.