Production Deployment Checklist
Version: 2.0 Last Updated: 2026-04-01 Maintained By: Jeremy Dawson
Overview
This is the active production checklist for CareConnect on the direct-VPS path.
- Public host:
https://careconnect.ing - Redirect alias:
https://www.careconnect.ing-> apex - Runtime: Docker on the Hetzner VPS
- Ingress: host Caddy
- Private bind:
127.0.0.1:3300 - Env file:
/etc/projects-merge/env/careconnect-web.env
Shared-VPS ownership note:
- This checklist is canonical for CareConnect production deploy, verify, and rollback steps.
- Shared host topology, ingress ownership, and other cross-project VPS facts are canonical in
/home/jer/repos/platform-ops. - Boundary reference:
/home/jer/repos/platform-ops/PLAT-009-shared-vps-documentation-boundary.md
GitHub Actions posture:
- CI runs automatically on push/PR.
- The
Production Smokeworkflow is the manual GitHub-side public verification step. - Production deploys remain manual on the VPS using
scripts/archive/deploy-vps-proof.sh. scripts/archive/release-vps-proof.shis the recommended local helper for staging a committed release onto the VPS before deployment.
If you intentionally need the historical Vercel path, see legacy-vercel.md. Do not treat that file as the production baseline.
1. Local Verification
- [ ]
git statusis clean - [ ]
npm run lint - [ ]
npm run type-check - [ ]
npm run build - [ ] relevant Vitest suites pass
- [ ] no secrets were added to tracked files
Do not run Playwright locally for routine deployment verification. Leave E2E coverage to CI.
2. Data And Schema Safety
If the deploy changes database structure, policies, or seed data:
- [ ] migration reviewed and committed
- [ ] rollback SQL or compensating step documented
- [ ]
npm run validate-data - [ ]
npm run db:verify - [ ] any required embeddings regeneration completed
If the change touches Supabase RLS around organization_members or services, preserve the helper-function-based recursion repair captured in:
3. Environment Review
Verify the VPS env file contains the required runtime values:
sudo grep -E '^(NEXT_PUBLIC_SUPABASE_URL|NEXT_PUBLIC_SUPABASE_PUBLISHABLE_KEY|NEXT_PUBLIC_APP_URL|NEXT_PUBLIC_BASE_URL|NEXT_PUBLIC_SEARCH_MODE|NEXT_PUBLIC_ENABLE_SEARCH_PERF_TRACKING)=' \
/etc/projects-merge/env/careconnect-web.env | sed 's/=.*$/=<redacted>/'
Expected production host values:
NEXT_PUBLIC_APP_URL=https://careconnect.ingNEXT_PUBLIC_BASE_URL=https://careconnect.ing
Important:
NEXT_PUBLIC_SUPABASE_URLandNEXT_PUBLIC_SUPABASE_PUBLISHABLE_KEYmust be available at both image build time and container runtime.scripts/archive/deploy-vps-proof.shis the supported path because it passes the required public values into the Docker build before the container starts.scripts/archive/deploy-vps-proof.shalso setsAPP_VERSIONso/api/v1/healthcan report the staged release revision even when.git/is not present on the VPS.NEXT_PUBLIC_ONESIGNAL_APP_IDshould remain unset unless push notifications are intentionally enabled in production.
Optional integrations such as SLACK_WEBHOOK_URL, AXIOM_*, OPENAI_API_KEY, and NEXT_PUBLIC_ONESIGNAL_APP_ID may be unset if they are not in active use.
4. Release Staging
- [ ] create or update a release directory under
/srv/apps/careconnect-web/releases/ - [ ] point
/srv/apps/careconnect-web/currentat the intended release - [ ] confirm
scripts/archive/deploy-vps-proof.shexists in the staged release
Example:
readlink -f /srv/apps/careconnect-web/current
ls /srv/apps/careconnect-web/current/scripts/archive/deploy-vps-proof.sh
From a local workstation you can stage and deploy the current committed tree in one step:
5. Deploy
From the staged release on the VPS:
cd /srv/apps/careconnect-web/current
docker buildx version
./scripts/archive/deploy-vps-proof.sh /etc/projects-merge/env/careconnect-web.env
- [ ]
docker buildx versionsucceeds or the fallback warning is understood - [ ] a new image tag is produced
- [ ] the
careconnect-webcontainer is replaced cleanly - [ ] the bind remains
127.0.0.1:3300->3000
6. Private Verification
Run on the VPS:
docker ps --filter name=careconnect-web
curl -fsS http://127.0.0.1:3300/api/v1/health
curl -sS -D - "http://127.0.0.1:3300/api/v1/services?limit=1"
docker logs --tail 50 careconnect-web
- [ ] health returns JSON
- [ ] health
versionmatches the intended release revision - [ ] services endpoint returns
200 - [ ] logs do not show a crash loop
7. Public Verification
Run from a workstation:
curl -I https://careconnect.ing
curl -I https://www.careconnect.ing
curl -fsS https://careconnect.ing/api/v1/health
curl -fsS https://careconnect.ing/robots.txt
curl -fsS https://careconnect.ing/sitemap.xml | sed -n '1,12p'
- [ ] apex returns a normal app response
- [ ]
wwwreturns308to apex - [ ] public health returns healthy JSON
- [ ]
robots.txtpoints athttps://careconnect.ing/sitemap.xml - [ ] sitemap URLs use
https://careconnect.ing/... - [ ] a hard refresh of
https://careconnect.ingdoes not trip the global error boundary
8. Caddy Verification
Run on the VPS:
sudo systemctl status caddy --no-pager --lines=20
sudo journalctl -u caddy --since "10 minutes ago" --no-pager
- [ ] Caddy is active
- [ ] no repeated TLS or proxy failures for
careconnect.ing
9. Short Observation Window
After cutover, keep the service under short observation:
docker ps --filter name=careconnect-web
curl -fsS http://127.0.0.1:3300/api/v1/health
curl -fsS https://careconnect.ing/api/v1/health
free -h
- [ ] private health remains healthy
- [ ] public health remains healthy
- [ ] memory remains within expected host capacity
10. Rollback
If the new release is bad:
- repoint
/srv/apps/careconnect-web/currentto the last known good release - redeploy using the same env file
- re-run the private and public verification steps
Example:
ln -sfn /srv/apps/careconnect-web/releases/<previous-release> \
/srv/apps/careconnect-web/current
cd /srv/apps/careconnect-web/current
./scripts/archive/deploy-vps-proof.sh /etc/projects-merge/env/careconnect-web.env