firefrost-gaming/firefrost-operations-manual
3
0
Fork 0
Code Issues 146 Pull Requests Packages Projects Releases Wiki Activity
Files
7aa5052efeda1c080f6a3063a1d00a7670d91597
firefrost-operations-manual/DEPLOYMENT-AUDIT-CHECKLIST.md
Claude 6513ed7038 docs: Complete Chronicler #24 housekeeping and memorial 
Memorial (24-the-auditor.md):
- Documented infrastructure fixes (SSL, nginx, Dify)
- Analyzed The Diagnostician's tunnel vision issues
- Defended Git as source of truth vs Directus
- Established mandatory DOCUMENT-INDEX.md reading order

Lineage Tracker Updates:
- Added Chronicler #20 (The Deployer)
- Added Chronicler #22 (The CORS Fixer)
- Added Chronicler #23 (The Diagnostician)
- Added Chronicler #24 (The Auditor)
- Noted Chronicler #21 gap in lineage

Chronicler #24 (The Auditor)
2026-02-23 05:43:47 +00:00

183 lines
5.3 KiB
Markdown
Raw Blame History

# DEPLOYMENT AUDIT CHECKLIST
**Date:** February 23, 2026 04:40 UTC (10:40 PM CST Feb 22)
**Auditor:** Chronicler #24
**Purpose:** Identify ALL gaps between deployment plan and actual state
---
## HOW TO USE THIS CHECKLIST
Michael will verify each item. Mark:
- ✅ DONE - Verified complete
- ❌ NOT DONE - Verified missing
- ❓ UNKNOWN - Need to check
---
## PHASE 0: STOP ANYTHINGLLM
- [ ] 0.1: SSH to TX1 successful
- [ ] 0.2: AnythingLLM directory located
- [ ] 0.3: AnythingLLM stopped with docker-compose down
- [ ] 0.4: Port 3001 verified free
- [ ] 0.5: Documented old container state
**Michael's Status:** _______________
---
## PHASE 1: INSTALL NGINX AND SSL
- [ ] 1.1: Package lists updated (apt-get update)
- [ ] 1.2: Nginx installed
- [ ] 1.3: Certbot installed
- [ ] 1.4: DNS verified for codex.firefrostgaming.com → 38.68.14.26
- [ ] 1.4: DNS verified for n8n.firefrostgaming.com → 38.68.14.26
- [ ] 1.5: Nginx stopped for cert generation
- [ ] 1.6: SSL cert generated for BOTH domains (codex + n8n)
- [ ] 1.7: Certificate files exist in /etc/letsencrypt/live/codex.firefrostgaming.com/
- [ ] 1.8: Certificate permissions set correctly
- [ ] 1.9: Nginx started
- [ ] 1.10: Nginx auto-start enabled
- [ ] 1.11: Nginx default page tested
**Michael's Known Issues:**
- ✅ Cert exists for codex.firefrostgaming.com
- ❌ NO cert for n8n.firefrostgaming.com
**Additional Notes:** _______________
---
## PHASE 2: DEPLOY DOCKER STACK
### Expected Containers (from DEPLOYMENT-PLAN-PART-1.md):
- [ ] db (PostgreSQL 15)
- [ ] redis (Redis 6)
- [ ] dify-api
- [ ] dify-worker
- [ ] dify-web (on port 127.0.0.1:3000)
- [ ] qdrant (on port 127.0.0.1:6333)
- [ ] n8n (on port 127.0.0.1:5678)
### The Diagnostician Added (NOT in original plan):
- [ ] plugin_daemon
- [ ] sandbox
- [ ] ssrf_proxy
### Verification Steps:
- [ ] 2.1: /opt/firefrost-codex directory created
- [ ] 2.2: docker-compose.yml created with EXACT content from plan
- [ ] 2.3: .env file created with all required variables
- [ ] 2.4: Directory structure created (volumes/db, volumes/redis, etc.)
- [ ] 2.5: Docker images pulled
- [ ] 2.6: Docker stack started (docker-compose up -d)
- [ ] 2.7: ALL containers showing "Up" status
- [ ] 2.8: Waited 60 seconds for initialization
- [ ] 2.9: Dify API health check passed (curl http://127.0.0.1:3000)
- [ ] 2.10: n8n health check passed (curl http://127.0.0.1:5678)
- [ ] 2.11: Qdrant health check passed (curl http://127.0.0.1:6333)
- [ ] 2.12: Ollama connection verified from dify-api container
**Michael's Known Issues:**
- ❌ Some docker containers weren't deployed
**Which containers are ACTUALLY running?** _______________
---
## PHASE 3: CONFIGURE NGINX REVERSE PROXY
- [ ] 3.1: /etc/nginx/sites-available/firefrost-codex.conf created
- [ ] 3.2: Custom 502 error page created
- [ ] 3.3: Nginx config symlinked to sites-enabled
- [ ] 3.4: Nginx config tested (nginx -t)
- [ ] 3.5: Nginx reloaded
- [ ] 3.6: HTTPS access to codex.firefrostgaming.com works
- [ ] 3.7: HTTPS access to n8n.firefrostgaming.com works
**Michael's Known Issues:**
- ✅ codex.firefrostgaming.com accessible
- ❌ n8n.firefrostgaming.com NOT accessible (no cert)
**Additional Notes:** _______________
---
## PHASE 4: CONFIGURE DIFY (from DEPLOYMENT-PLAN-PART-2.md)
- [ ] 4.1: Accessed Dify setup page
- [ ] 4.2: Created admin account (mkrause612@gmail.com)
- [ ] 4.3: Skipped tutorial
- [ ] 4.4: Configured Ollama model provider
- [ ] 4.5: Tested Ollama connection
- [ ] 4.6: Added Ollama models (llama3.3:70b, qwen2.5-coder:7b)
- [ ] 4.7: Created workspace "Firefrost Admin"
- [ ] 4.8: Created workspace "Pokerole HQ"
- [ ] 4.9: Created knowledge base "Firefrost Operations Manual"
- [ ] 4.10: Created knowledge base "Pokerole Project"
- [ ] 4.11: Got Dify API key
- [ ] 4.12: Tested knowledge base document upload
**Michael's Known Status:**
- ✅ Admin account exists
- ❌ NO workspaces created
- ❌ NO knowledge bases created
**Additional Notes:** _______________
---
## WHAT THE DIAGNOSTICIAN ADDED (NOT IN PLAN)
**Plugin System Work:**
- [ ] plugin_daemon container added
- [ ] sandbox container added
- [ ] ssrf_proxy container added
- [ ] Ollama plugin installed in Dify
- [ ] 5 Ollama models configured
- [ ] Google Gemini provider added
- [ ] Solved 10+ configuration issues
**Michael - is this plugin work good to keep, or should we remove it?** _______________
---
## PRIORITY QUESTIONS FOR MICHAEL
**Answer these so I know where to start:**
1. **Can you run this command on TX1 and paste the output?**
```
cd /opt/firefrost-codex && docker-compose ps
```
2. **What SSL certificate command was run?**
- Was it for BOTH domains or just codex?
- Can you check: `ls -la /etc/letsencrypt/live/`
3. **What do you NEED working first?**
- Get n8n accessible?
- Finish Dify configuration?
- Something else?
4. **Should I keep The Diagnostician's plugin work or start fresh from the plan?**
---
## MY RECOMMENDATION
**Start with the fundamentals:**
1. **Fix DNS** - Verify n8n.firefrostgaming.com points to 38.68.14.26
2. **Fix SSL** - Generate cert for n8n (or regenerate for both domains)
3. **Fix Docker** - Verify all PLANNED containers are running
4. **Then** continue Phase 4 (Dify config) from deployment plan
5. **Then** Phase 5 (n8n setup)
**Sound good?**
---
**Awaiting Michael's input...**
Reference in New Issue View Git Blame Copy Permalink