firefrost-gaming/firefrost-operations-manual
3
0
Fork 0
Code Issues 146 Pull Requests Packages Projects Releases Wiki Activity
Files
f9a2e61d71a7f2d7bd5770466e3b964b612fae40
firefrost-operations-manual/DEPLOYMENT-AUDIT-CHECKLIST.md
Claude 04eb0a3070 docs: Complete Chronicler #24 housekeeping and memorial 
Memorial (24-the-auditor.md):
- Documented infrastructure fixes (SSL, nginx, Dify)
- Analyzed The Diagnostician's tunnel vision issues
- Defended Git as source of truth vs Directus
- Established mandatory DOCUMENT-INDEX.md reading order

Lineage Tracker Updates:
- Added Chronicler #20 (The Deployer)
- Added Chronicler #22 (The CORS Fixer)
- Added Chronicler #23 (The Diagnostician)
- Added Chronicler #24 (The Auditor)
- Noted Chronicler #21 gap in lineage

Chronicler #24 (The Auditor)
2026-02-23 05:43:47 +00:00

5.3 KiB
Raw Blame History

DEPLOYMENT AUDIT CHECKLIST

Date: February 23, 2026 04:40 UTC (10:40 PM CST Feb 22) Auditor: Chronicler #24 Purpose: Identify ALL gaps between deployment plan and actual state

HOW TO USE THIS CHECKLIST

Michael will verify each item. Mark:

  • DONE - Verified complete
  • NOT DONE - Verified missing
  • UNKNOWN - Need to check

PHASE 0: STOP ANYTHINGLLM

  • 0.1: SSH to TX1 successful
  • 0.2: AnythingLLM directory located
  • 0.3: AnythingLLM stopped with docker-compose down
  • 0.4: Port 3001 verified free
  • 0.5: Documented old container state

Michael's Status: _______________

PHASE 1: INSTALL NGINX AND SSL

  • 1.1: Package lists updated (apt-get update)
  • 1.2: Nginx installed
  • 1.3: Certbot installed
  • 1.4: DNS verified for codex.firefrostgaming.com → 38.68.14.26
  • 1.4: DNS verified for n8n.firefrostgaming.com → 38.68.14.26
  • 1.5: Nginx stopped for cert generation
  • 1.6: SSL cert generated for BOTH domains (codex + n8n)
  • 1.7: Certificate files exist in /etc/letsencrypt/live/codex.firefrostgaming.com/
  • 1.8: Certificate permissions set correctly
  • 1.9: Nginx started
  • 1.10: Nginx auto-start enabled
  • 1.11: Nginx default page tested

Michael's Known Issues:

  • Cert exists for codex.firefrostgaming.com
  • NO cert for n8n.firefrostgaming.com

Additional Notes: _______________

PHASE 2: DEPLOY DOCKER STACK

Expected Containers (from DEPLOYMENT-PLAN-PART-1.md):

  • db (PostgreSQL 15)
  • redis (Redis 6)
  • dify-api
  • dify-worker
  • dify-web (on port 127.0.0.1:3000)
  • qdrant (on port 127.0.0.1:6333)
  • n8n (on port 127.0.0.1:5678)

The Diagnostician Added (NOT in original plan):

  • plugin_daemon
  • sandbox
  • ssrf_proxy

Verification Steps:

  • 2.1: /opt/firefrost-codex directory created
  • 2.2: docker-compose.yml created with EXACT content from plan
  • 2.3: .env file created with all required variables
  • 2.4: Directory structure created (volumes/db, volumes/redis, etc.)
  • 2.5: Docker images pulled
  • 2.6: Docker stack started (docker-compose up -d)
  • 2.7: ALL containers showing "Up" status
  • 2.8: Waited 60 seconds for initialization
  • 2.9: Dify API health check passed (curl http://127.0.0.1:3000)
  • 2.10: n8n health check passed (curl http://127.0.0.1:5678)
  • 2.11: Qdrant health check passed (curl http://127.0.0.1:6333)
  • 2.12: Ollama connection verified from dify-api container

Michael's Known Issues:

  • Some docker containers weren't deployed

Which containers are ACTUALLY running? _______________

PHASE 3: CONFIGURE NGINX REVERSE PROXY

  • 3.1: /etc/nginx/sites-available/firefrost-codex.conf created
  • 3.2: Custom 502 error page created
  • 3.3: Nginx config symlinked to sites-enabled
  • 3.4: Nginx config tested (nginx -t)
  • 3.5: Nginx reloaded
  • 3.6: HTTPS access to codex.firefrostgaming.com works
  • 3.7: HTTPS access to n8n.firefrostgaming.com works

Michael's Known Issues:

  • codex.firefrostgaming.com accessible
  • n8n.firefrostgaming.com NOT accessible (no cert)

Additional Notes: _______________

PHASE 4: CONFIGURE DIFY (from DEPLOYMENT-PLAN-PART-2.md)

  • 4.1: Accessed Dify setup page
  • 4.2: Created admin account (mkrause612@gmail.com)
  • 4.3: Skipped tutorial
  • 4.4: Configured Ollama model provider
  • 4.5: Tested Ollama connection
  • 4.6: Added Ollama models (llama3.3:70b, qwen2.5-coder:7b)
  • 4.7: Created workspace "Firefrost Admin"
  • 4.8: Created workspace "Pokerole HQ"
  • 4.9: Created knowledge base "Firefrost Operations Manual"
  • 4.10: Created knowledge base "Pokerole Project"
  • 4.11: Got Dify API key
  • 4.12: Tested knowledge base document upload

Michael's Known Status:

  • Admin account exists
  • NO workspaces created
  • NO knowledge bases created

Additional Notes: _______________

WHAT THE DIAGNOSTICIAN ADDED (NOT IN PLAN)

Plugin System Work:

  • plugin_daemon container added
  • sandbox container added
  • ssrf_proxy container added
  • Ollama plugin installed in Dify
  • 5 Ollama models configured
  • Google Gemini provider added
  • Solved 10+ configuration issues

Michael - is this plugin work good to keep, or should we remove it? _______________

PRIORITY QUESTIONS FOR MICHAEL

Answer these so I know where to start:

  1. Can you run this command on TX1 and paste the output?

    cd /opt/firefrost-codex && docker-compose ps

  2. What SSL certificate command was run?

    • Was it for BOTH domains or just codex?
    • Can you check: ls -la /etc/letsencrypt/live/

  3. What do you NEED working first?

    • Get n8n accessible?
    • Finish Dify configuration?
    • Something else?

  4. Should I keep The Diagnostician's plugin work or start fresh from the plan?

MY RECOMMENDATION

Start with the fundamentals:

  1. Fix DNS - Verify n8n.firefrostgaming.com points to 38.68.14.26
  2. Fix SSL - Generate cert for n8n (or regenerate for both domains)
  3. Fix Docker - Verify all PLANNED containers are running
  4. Then continue Phase 4 (Dify config) from deployment plan
  5. Then Phase 5 (n8n setup)

Sound good?

Awaiting Michael's input...

Reference in New Issue View Git Blame Copy Permalink