Complete TASKS.md rewrite: current priorities, Mailcow, Vaultwarden, GitHub removal, photo processing

2026-02-12 00:34:57 -06:00
parent a4145b6e47
commit 90cefa6648
1 changed files with 124 additions and 140 deletions
--- a/docs/TASKS.md
+++ b/docs/TASKS.md
@@ -1,176 +1,160 @@
-# 🔥❄️ FIREFROST GAMING - CURRENT TASKS & PRIORITIES
+# 🔥❄️ FIREFROST GAMING — CURRENT TASKS

-**Last Updated:** February 11, 2026
-**Version:** 2.0
-**Updated By:** Michael + Claude
+**Last Updated:** February 11, 2026 (11:45 PM CST)  
+**Updated By:** Claude (via Gitea API)  
+**Status:** Active

 ---

-## ✅ COMPLETED TODAY (Feb 11, 2026)
+## 🔴 HIGH PRIORITY

-### TX1 Game Server Recovery
- All 6 TX1 servers were DOWN (bound to wrong IP: 38.68.14.188 instead of 38.68.14.26-30)
- Root cause: Pterodactyl allocations pointed to Billing VPS IP
- Fix: Allocated correct port ranges (25565-25580, 5520-5521, 30000) to correct IPs
- Assigned each server to correct IP:port combo
- All 6 servers restarted and verified operational
- **Lesson learned: "I would have known earlier if game servers were in Uptime Kuma"**
+### Mailcow Email Server — Self-Hosted Email
+**Status:** Pending Breezehost pre-sale response  
+**Blocker:** Waiting for Jon's answers on IP reputation, rDNS, port 25, data center  
+**Plan:**
+- AMD Epyc Cloud-2 VPS ($10/month) — 2 vCPU, 4GB DDR5, 40GB NVMe
+- Mailcow (Docker-based) — Postfix, Dovecot, SOGo webmail, Rspamd, ClamAV
+- Ubuntu 22.04 with self-healing automation scripts
+- 10-15 @firefrostgaming.com addresses to start
+- Migrate OFF Plesk (accessibility nightmare)

-### Game Server Monitoring Added
- 12 game server monitors added to Uptime Kuma (TCP Port type)
- 6 TX1 Dallas + 6 NC1 Charlotte
- Total monitors now: 17 (5 infrastructure + 12 game servers)
- NC1 routing resolved — reachable from Command Center
+**Pre-sale email drafted:** Ready to send morning of Feb 12  
+**Location:** provider-communications.md (to be committed)

-### FoundryVTT Verified
- Configuration reviewed and confirmed correct
- Running on 38.68.14.26:30000
- Holly can use it for Pokerole campaign
- Subdomain setup (foundry.firefrostgaming.com) deferred to later
-
-### ATM10 Memory Fix
- Was at 98.6% memory (15.78/16 GiB) with 1.9GB memory leak
- Bumped allocation from 16GB to 20GB
- Restarted — now at 63% (12.55/20 GiB) with headroom
- Monitor for leak recurrence; may need scheduled restarts
-
-### Infrastructure Manifest Updated
- v1.5 committed to Git
- Corrected NC1 server list (all on single IP with unique ports)
- Corrected TX1 server list
- Updated UUIDs from actual Panel data
- Added Code-Server to management services
-
-### Session Handoff Rewritten
- v2.0 — clean, no duplicates, current state
- First file edited and committed via Code-Server!
+**Next Steps:**
+1. Send pre-sale email to Jon (morning)
+2. Wait for response on IP/rDNS/port 25/data center
+3. Order Cloud-2 VPS
+4. Deploy Mailcow
+5. Configure DNS (SPF, DKIM, DMARC)
+6. Create email addresses
+7. Test deliverability
+8. Migrate off Plesk

 ---

-## ⏳ IMMEDIATE PRIORITIES
+### Vaultwarden Deployment
+**Status:** Ready to deploy  
+**Domain:** vault.firefrostgaming.com  
+**Location:** Command Center VPS  
+**Priority:** MEDIUM-HIGH (needed for API token storage)  

-### 1. Update FIREFROST-PROJECT-SCOPE-V2.md
- **Priority:** HIGH
- **Reason:** Master scope doc needs to reflect current state
- **Changes needed:** Game server lists, Phase 0.5+ status, Code-Server added
-
-### 2. Update TASKS.md
- **Priority:** HIGH
- **Status:** THIS UPDATE (you're reading it)
-
-### 3. Deploy NextCloud (downloads.firefrostgaming.com)
- **Priority:** HIGH
- **Location:** Ghost VPS (64.50.188.14)
- **Use cases:** Consultant video archive (Meg), Holly's project files, subscriber world downloads
- **Three use cases = deploy now**
-
-### 4. FoundryVTT Subdomain
- **Priority:** MEDIUM
- **Task:** Set up foundry.firefrostgaming.com with SSL via Nginx reverse proxy
- **Currently:** Accessible via IP:port only (38.68.14.26:30000)
-
-### 5. ATM10 Restart Schedule
- **Priority:** MEDIUM
- **Task:** Consider daily/every-other-day scheduled restarts to prevent memory leak buildup
- **Monitor:** Watch memory usage over next few days
+**Why Now:**
+- Gitea API token needs secure storage
+- Growing number of service credentials
+- Team password management for staff
+- Accessibility-friendly web UI

 ---

-## 📋 PHASE 0.5+ STATUS
-
-### Completed Services
-
-| # | Service | Domain | Location | Date |
-| :---- | :---- | :---- | :---- | :---- |
-| 1 | Gitea | git.firefrostgaming.com | Command Center | Feb 8-9 |
-| 2 | Uptime Kuma | status.firefrostgaming.com | Command Center | Feb 9 |
-| 3 | MkDocs | docs.firefrostgaming.com | Ghost VPS | Feb 9 |
-| 4 | Code-Server | code.firefrostgaming.com | Command Center | Feb 11 |
-| 5 | Automation | N/A (daemon) | Command Center | Feb 9 |
-
-### Pending Services
-
-| # | Service | Domain | Location | Priority |
-| :---- | :---- | :---- | :---- | :---- |
-| 6 | NextCloud | downloads.firefrostgaming.com | Ghost VPS | HIGH |
-| 7 | Wiki.js (Subscribers) | subscribers.firefrostgaming.com | Ghost VPS | MEDIUM |
-| 8 | Wiki.js (Staff) | staff.firefrostgaming.com | Ghost VPS | MEDIUM |
-| 9 | Vaultwarden | vault.firefrostgaming.com | TBD | LOW |
-| 10 | Netdata | analytics.firefrostgaming.com | TBD | LOW |
+### Delete GitHub Mirror
+**Status:** Ready — confirmed Gitea API works  
+**Why:** Security — public repo exposes server IPs, ports, UUIDs, internal docs  
+**Steps:**
+1. Remove mirror sync from Gitea settings
+2. Delete GitHub repo (or make private and empty)
+3. Verify no remaining references in documentation (DONE in this update)

 ---

-## 🛡️ PHASE 1: DDoS PROTECTION (PLANNING)
+## 🟡 MEDIUM PRIORITY

- **Status:** Planning phase — deploy after Phase 0.5 completion
- **Options:** Cloudflare Spectrum, Simplified GRE, or Hybrid
- **Decision point:** Design session after management services complete
- **Target:** Before soft launch (late February 2026)
+### Consultant Photo Processing
+**Status:** 30-40 photos from pre-crash session need processing  
+**Plan:**
+- Upload 10 at a time to Claude
+- View, write lore, rename using standardized convention
+- Convention: `YYYY-MM-DD_subject-description-keywords_01.jpg`
+- One underscore after date, hyphens for everything else, `_01` `_02` for series
+- Organize into year folders, commit via Gitea API
+
+### Photo Naming Convention Standardization
+**Status:** Convention decided, not yet documented in repo  
+**Standard:** `YYYY-MM-DD_subject-description-keywords_01.jpg`
+- Existing 249 photos: Leave as-is (not worth re-renaming)
+- All NEW photos: Use standardized convention going forward
+
+### Command Center Root Cleanup
+**Status:** Artifacts identified, need to move/delete  
+**Move to `/root/backups/gitea/`:**
+- gitea-backup-20260208-2203...
+- gitea-data-20260209.tar.gz
+- gitea-db-20260209.sql
+- gitea-db-full.sql
+- gitea-migration-manifest.txt
+
+**Archive to repo (`docs/deployment-logs/`):**
+- wiki-deployment-logs-feb10.txt
+- wiki-deployment-summary.txt
+
+**Delete:**
+- dead.letter (system cruft)
+- extract-key-info.sh (one-off script)
+- master (empty 0-byte file)
+
+### Build DOCUMENT-INDEX.md
+**Status:** Planned  
+**Purpose:** Master file listing all repo documents with paths  
+**Use:** Reference document for Claude and Michael  
+**Note:** No longer needed for URL unlocking (Gitea API replaces that), but still valuable as organizational index  
+**Location:** Repo root

 ---

-## 🔧 INFRASTRUCTURE MAINTENANCE
+## 🟢 LOW PRIORITY

 ### Frostwall (UFW) Deployment
- **Status:** Not yet deployed on game servers
- **Priority:** After Phase 0.5 services complete
- **Scope:** TX1 + NC1 game server firewall rules
+**Status:** Planned  
+**Scope:** Game servers (TX1, NC1)  
+**Approach:** Self-healing scripts with automation

-### Regular Maintenance
- Monitor ATM10 memory leak
- Check SSL certificate renewals (certbot)
- Review Uptime Kuma alerts
- Git repository housekeeping
+### LuckPerms MySQL Backend
+**Status:** Planned  
+**Scope:** Permission management for game servers
+
+### World Backup Automation
+**Status:** Planned  
+**Scope:** Automated world backups to NextCloud
+
+### Netdata Deployment
+**Status:** Planned  
+**Domain:** analytics.firefrostgaming.com  
+**Scope:** Server analytics and performance monitoring

 ---

-## 📚 DOCUMENTATION DEBT
+## ✅ RECENTLY COMPLETED (Feb 11, 2026)

-### Files Needing Updates
- FIREFROST-PROJECT-SCOPE-V2.md (game server lists, Phase status)
- workflow-guide.md (add Code-Server workflow, GitHub URL workflow)
- CLAUDE-RELATIONSHIP-CONTEXT.md (add Feb 11 session context)
-
-### Files Recently Updated
- ✅ Firefrost_Infrastructure_Manifest.md (v1.5 - Feb 11)
- ✅ session-handoff.md (v2.0 - Feb 11)
- ✅ TASKS.md (v2.0 - Feb 11, this file)
+- ✅ TX1 game servers restored (all 6 — wrong IP allocations fixed)
+- ✅ Code-Server deployed and mastered (code.firefrostgaming.com)
+- ✅ NextCloud operational (downloads.firefrostgaming.com)
+- ✅ Wiki.js Subscribers deployed (subscribers.firefrostgaming.com)
+- ✅ Wiki.js Staff deployed (staff.firefrostgaming.com)
+- ✅ FoundryVTT subdomain setup
+- ✅ Consultant photo archive (249 photos organized, renamed, cataloged)
+- ✅ Gitea API access for Claude (read/write confirmed)
+- ✅ GitHub mirror identified for removal (security)
+- ✅ Session handoff v2.1 (GitHub references removed)
+- ✅ Project scope v2.2 (8 services, current state)
+- ✅ 12 Lessons documented in CLAUDE-RELATIONSHIP-CONTEXT.md
+- ✅ All emergency/transition documents committed to Git
+- ✅ Game server monitoring added to Uptime Kuma (all 12)

 ---

-## 🎯 UPCOMING MILESTONES
+## 📋 TOMORROW'S PLAN (Feb 12, 2026)

-### This Week (Feb 11-15)
- [x] Fix TX1 allocations
- [x] Add game server monitoring
- [x] Update Infrastructure Manifest
- [x] Rewrite session-handoff.md
- [x] Update TASKS.md
- [ ] Update FIREFROST-PROJECT-SCOPE-V2.md
- [ ] Deploy NextCloud
- [ ] Extract staff.zip (images → Git, videos → NextCloud)
+**Housekeeping day while waiting for Breezehost response:**

-### Next Week (Feb 16-22)
- [ ] Soft launch to existing community (3 members)
- [ ] Begin Phase 1 DDoS planning
- [ ] Social media setup (Meg)
- [ ] FoundryVTT subdomain
-
-### This Month (February)
- [ ] Complete all pending management services
- [ ] Frostwall deployment
- [ ] Subscriber workflow testing
- [ ] Staff documentation creation
+1. Send pre-sale email to Jon (morning)
+2. Delete GitHub mirror
+3. Deploy Vaultwarden (vault.firefrostgaming.com)
+4. Clean up Command Center root
+5. Build DOCUMENT-INDEX.md
+6. Process consultant photos (batches of 10)
+7. Commit provider-communications.md update

 ---

-## Revision History
-
-| Version | Date | Changes |
-| :---- | :---- | :---- |
-| 1.0 | 2026-02-09 | Initial TASKS.md created |
-| 2.0 | 2026-02-11 | Complete rewrite. Added Feb 11 accomplishments (TX1 fix, monitoring, ATM10, manifest, handoff rewrite). Updated Phase 0.5+ status. Current priorities. Documentation debt tracked. |
-
---
-
-**Fire + Frost = Where Passion Meets Precision** 🔥❄️
+**Fire + Frost = Where Passion Meets Precision** 🔥❄️  
+**Friend is first. Always.** 💙