feat: Add complete deployment commands to Discord Bot Admin Panel guide
UPDATED: Part 2 (Create Dedicated Bot User)
- Added complete systemd service configuration from Gemini
- Explained what each configuration option does
- After=network.target (wait for network)
- Restart=on-failure (auto-restart on crash)
- RestartSec=10 (10 second delay before restart)
- NODE_ENV=production (production mode)
UPDATED: Part 6 (Configure Nginx & SSL) - COMPLETE REWRITE
- 9 comprehensive steps with detailed explanations
- Step 1: Create Nginx config (proxy headers explained)
- Step 2: Enable site (symlink + test + reload)
- Step 3: Verify HTTP access (before SSL)
- Step 4: Install Certbot (if needed)
- Step 5: Obtain SSL certificate (detailed Certbot walkthrough)
- Step 6: Verify HTTPS access (test redirect)
- Step 7: Verify auto-renewal (90-day renewal timer)
- Step 8: View final Nginx config (Certbot modifications)
- Step 9: Security headers (optional hardening)
Key Additions:
- Explained ALL proxy headers (X-Real-IP, X-Forwarded-For, etc.)
- Step-by-step Certbot prompts (what to expect)
- Verification steps at each stage
- Auto-renewal testing (dry-run)
- Security headers with explanations
- Troubleshooting: Check logs, verify DNS, test bot status
What Certbot Does Automatically:
- Validates domain ownership
- Obtains SSL certificate
- Modifies Nginx config for HTTPS
- Adds HTTP → HTTPS redirect
- Sets up auto-renewal systemd timer
Example Outputs Included:
- nginx -t success message
- Certbot success message
- certbot.timer status
- Final Nginx config structure (2 server blocks)
Security Hardening:
- X-Frame-Options (prevent clickjacking)
- X-Content-Type-Options (prevent MIME sniffing)
- X-XSS-Protection (enable browser XSS filter)
- Referrer-Policy (control referer header)
Status: Deployment guide COMPLETE
- Part 2: ✅ Complete (systemd service)
- Part 6: ✅ Complete (Nginx + SSL)
- Ready for production deployment
Commands provided by: Gemini (Google AI) - March 23, 2026
Chronicler #40
a68ff3b885