This is the final project for "Full Stack Web Developer Nanodegree" on Udacity.
In this project, a Linux virtual machine needs to be configurated to support the Item Catalog website.
You can visit http://35.164.53.24/ for the website deployed.
- Download Private Key from the SSH keys section in the Account section on Amazon Lightsail.
- Move the private key file into the folder
~/.ssh
(where ~ is your environment's home directory). So if you downloaded the file to the Downloads folder, just execute the following command in your terminal.mv ~/Downloads/Lightsail-key.pem ~/.ssh/
- Open your terminal and type in
chmod 400 ~/.ssh/Lightsail-key.pem
- In your terminal, type in
ssh -i ~/.ssh/Lightsail-key.pem ubunut@35.164.53.24
sudo adduser grader
sudo vi /etc/sudoers
sudo touch /etc/sudoers.d/grader
sudo vi /etc/sudoers.d/grader
, type ingrader ALL=(ALL:ALL) NOPASSWD:ALL
, save and quit
-
Generate keys on local machine using
ssh-keygen
; then save the private key in~/.ssh
on local machine -
Deploy public key on developement enviroment
On you virtual machine:
$ su - grader $ mkdir .ssh $ touch .ssh/authorized_keys $ vi .ssh/authorized_keys
Copy the public key (one with the extension .pub) generated on your local machine to this file and save
$ chmod 700 .ssh $ chmod 644 .ssh/authorized_keys
-
reload SSH using
service ssh restart
-
now you can use ssh to login with the new user you created
ssh -i ~/.ssh/[privateKeyFilename] grader@35.164.53.24
sudo apt-get update
sudo apt-get upgrade
- Use
sudo vi /etc/ssh/sshd_config
and then change Port 22 to Port 2200 , save & quit. - Reload SSH using
sudo service ssh restart
Note: Remember to add and save port 2200 with Application as Custom and Protocol as TCP in the Networking section of your instance on Amazon Lightsail.
Configure the Uncomplicated Firewall (UFW) to only allow incoming connections for SSH (port 2200), HTTP (port 80), and NTP (port 123)
sudo ufw allow ssh
sudo ufw allow www
sudo ufw allow ntp
sudo ufw allow 2200/tcp
sudo ufw allow 80/tcp
sudo ufw allow 123/udp
sudo ufw enable
sudo ufw status
- Configure the time zone
sudo dpkg-reconfigure tzdata
- It is already set to UTC.
- Install Apache
sudo apt-get install apache2
- Install mod_wsgi
sudo apt-get install python-setuptools libapache2-mod-wsgi
- Restart Apache
sudo service apache2 restart
-
Install PostgreSQL
sudo apt-get install postgresql
-
Check if no remote connections are allowed
sudo vi /etc/postgresql/9.3/main/pg_hba.conf
-
Login as user "postgres"
sudo su - postgres
-
Get into postgreSQL shell
psql
-
Create a new database named catalog and create a new user named catalog in postgreSQL shell
postgres=# CREATE DATABASE catalog; postgres=# CREATE USER catalog;
-
Set a password for user catalog
postgres=# ALTER ROLE catalog WITH PASSWORD 'password';
-
Give user "catalog" permission to "catalog" application database
postgres=# GRANT ALL PRIVILEGES ON DATABASE catalog TO catalog;
-
Quit postgreSQL
postgres=# \q
-
Exit from user "postgres"
exit
- Install Git using
sudo apt-get install git
- Use
cd /var/www
to move to the /var/www directory - Create the application directory
sudo mkdir FlaskApp
- Move inside this directory using
cd FlaskApp
- Clone the Catalog App to the virtual machine
git clone https://github.com/adityamehra/catalog2.git
- Rename the project's name
sudo mv ./catalog2 ./FlaskApp
- Move to the inner FlaskApp directory using
cd FlaskApp
- Rename
server.py
to__init__.py
usingsudo mv website.py __init__.py
, if__init__.py
not present. - Edit
database_setup.py
andfill_catalog.py
to changeengine = create_engine('sqlite:///catalog.db')
toengine = create_engine('postgresql://catalog:password@localhost/catalog')
, if not already done. - Install pip
sudo apt-get install python-pip
- Use pip to install dependencies -
sudo pip install sqlalchemy flask-sqlalchemy psycopg2 bleach requests
sudo pip install flask packaging oauth2client redis passlib flask-httpauth
- Install psycopg2
sudo apt-get -qqy install postgresql python-psycopg2
- Create database schema
sudo python database_setup.py
- Fill database
sudo pip install fill_catalog.py
-
Create FlaskApp.conf to edit:
sudo vi /etc/apache2/sites-available/FlaskApp.conf
-
Add the following lines of code to the file to configure the virtual host.
<VirtualHost *:80> ServerName fill_catalog.py ServerAdmin mehraaditya713@gmail.com WSGIScriptAlias / /var/www/FlaskApp/flaskapp.wsgi <Directory /var/www/FlaskApp/FlaskApp/> Order allow,deny Allow from all </Directory> Alias /static /var/www/FlaskApp/FlaskApp/static <Directory /var/www/FlaskApp/FlaskApp/static/> Order allow,deny Allow from all </Directory> ErrorLog ${APACHE_LOG_DIR}/error.log LogLevel warn CustomLog ${APACHE_LOG_DIR}/access.log combined </VirtualHost>
-
Enable the virtual host with the following command:
sudo a2ensite FlaskApp
-
Create the .wsgi File under /var/www/FlaskApp:
cd /var/www/FlaskApp sudo vi flaskapp.wsgi
-
Add the following lines of code to the flaskapp.wsgi file:
#!/usr/bin/python import sys import logging logging.basicConfig(stream=sys.stderr) sys.path.insert(0,"/var/www/FlaskApp/") from FlaskApp import app as application application.secret_key = 'super_secret_key'
- Restart Apache
sudo service apache2 restart