Server Setup

Server Details

Property	Value
Provider	Hetzner Cloud
IP	91.98.168.21
OS	Ubuntu
Reverse Proxy	Caddy
Process Manager	PM2

Caddy Configuratie

Caddy beheert alle routing op de server. Volledige config: infrastructure/roosevelt-dev/Caddyfile

Automatische HTTPS: Caddy haalt Let's Encrypt certificaten automatisch op voor alle geconfigureerde domeinen.

Security Headers (elke virtual host)

header {
    Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
    X-Content-Type-Options "nosniff"
    X-Frame-Options "SAMEORIGIN"
    X-XSS-Protection "1; mode=block"
    Referrer-Policy "strict-origin-when-cross-origin"
    -Server
}

PM2 Processes

pm2 list              # Overzicht alle processes
pm2 restart api-production
pm2 logs api-production
pm2 monit             # Real-time monitoring

Process	Port	Environment
api-production	3001	production
web-production	3003	production
portal-production	3004	production
api-staging	4001	staging
web-staging	4003	staging
portal-staging	4004	staging

Wildcard DNS

Cloudflare beheert DNS. Een wildcard A-record dekt alle subdomains:

*.roosevelt.dev → 91.98.168.21
roosevelt.dev   → 91.98.168.21

Server Setup

Server Setup

Server Details

Caddy Configuratie

Security Headers (elke virtual host)

PM2 Processes

Wildcard DNS

On this page