1. Check certificates. Alert if expiration date is less than two weeks.
    1. https://tractorcardgame.com
    2. https://gwtractor.com
    3. https://qa.ws.tractorcardgame.com
    4. https://ws.tractorcardgame.com
    5. https://api.tractorcardgame.com
  2. Check free space
    1. lightsail database
    2. lightsail tractorcardgame site
      df –h
  3. Check Procedures
    1. Apply a new club
    2. Contact us
  4. Check public club
  5. Check EC2
    sudo pm2 list
    sudo pm2 log
    1. ws.tractorcardgame.com
    2. qa.ws.tractorcardgame.com
    3. dev.ws.tractorcardgame.com
  6. Delete Lambda Log
  7. Review AWS security group (open port) and role
  8. Renew EC2 Image with latest SSL certificates
  9. Clean up Route53 for EC2 (automatic 10/11/2020)
  10. Clean up EC2 instance (automatic 10/11/2020)
  11. renew certificates on Ec2
    1. use Putty to login ec2 qa (in case not able, check ec2-security group-inbound rule
    2. sudo certbot -d ws.tractorcardgame.com -d *.ws.tractorcardgame.com --manual --preferred-challenges dns certonly
    3. Modify AWS route53 and verify with https://mxtoolbox.com/SuperTool.aspx?action=txt
    4. certificate is saved in /etc/letsencrypt/live/ws.tractorcardgame.com
    5. sudo cp /etc/letsencrypt/live/ws.tractorcardgame.com/fullchain.pem /home/ubuntu/fullchain.pem
      sudo cp /etc/letsencrypt/live/ws.tractorcardgame.com/privkey.pem /home/ubuntu/privkey.pem
    6. use WinSCP to copy certificate from EC2 QA to EC2 PROD
    7. create EC2 image (tractor app would restart during creating image, do it during off-hours)
    8. check 1.c for 1.d for new expiration dates, do it during off-hours
  12. renew certificates on web sites.
    1. aws lightsail connect using browser-based SSH client
    2. sudo certbot -d tractorcardgame.com -d *.tractorcardgame.com --manual --preferred-challenges dns certonly
    3. Modify AWS route53 and verify with https://mxtoolbox.com/SuperTool.aspx?action=txt
    4. sudo certbot -d gwtractor.com -d *.gwtractor.com --manual --preferred-challenges dns certonly
    5. Modify AWS route53 and verify with https://mxtoolbox.com/SuperTool.aspx?action=txt
    6.  do the following two commands during off-hours
    7. sudo /opt/bitnami/ctlscript.sh stop
    8. sudo /opt/bitnami/ctlscript.sh start
    9. check 1.a and 1.b for new expiration dates
  13. renew azure client secret
TOP