This is the fifth project for Udacity Fullstack Nanaodegree program, In this project I configured a Ubuntu linux server(Amazon lightsail instance) and deployed Restful web application that was developed earlier in the program Catalog Web App using Apache, Python Flask and PostgreSQL.
IP address for server -
Spin up a linux server instance in Amazon Lightsail
sudo apt-get update
sudo apt-get upgrade
#create linux user
sudo adduser grader
#enter the passsword
#grant sudo permission
sudo touch /etc/sudoers.d/grader
#edit file to add this
grader ALL=(ALL) ALL
In your local machine, use command below to generate public private key pair
cd ~/.ssh
Copy the content of the .pub file and paste into the .ssh/authorized_keys file of user grader directory
#log in as grader user
sudo -su grader
#create .ssh/authorized_keys file and paste the contents
mkdir /home/grader/.ssh
touch /home/grader/.ssh/authorized_keys
nano /home/grader/.ssh/authorized_keys
#paste the content of the .pub file from the local machine into /.ssh/authorized_keys file
sudo nano /etc/ssh/sshd_config
#set PermitRootLogin to no, and save the file
#restart ssh service
sudo service ssh restart
sudo nano /etc/ssh/sshd_config
change the line 'Port 22' to 'Port 2200', and save the file
# close all incoming ports
sudo ufw default deny incoming
# open all outgoing ports
sudo ufw default allow outgoing
# open ssh on port 2200
sudo ufw allow 2200/tcp
# open http on port 80
sudo ufw allow 80/tcp
# open ntp on port 123
sudo ufw allow 123/udp
# turn on firewall
sudo ufw enable
sudo ssh -vvv -i ~/.ssh/id_rsa [email protected] -p2200
sudo dpkg-reconfigure tzdata
#choose 'None of the above' in the option and then select 'UTC'
sudo apt-get install apache2 libapache2-mod-wsgi
MOD-WSGI acts as a gateway to our web application. Anytime we receive a request to access our web application, Apache2 webserver will communicate to our webapp through MOD-WSGI
sudo apt-get install postgresql
By default postgreSQL is restricted to listening on localhost, we can confirm by looking at /etc/postgresql/9.5/main/pg_hba.config
#"local" is for Unix domain socket connections only
local all all md5
#IPv4 local connections:
host all all md5
#IPv6 local connections:
host all all ::1/128 md5
#Allow replication connections from localhost, by a user with the replication privilege.
#local replication postgres peer
#host replication postgres md5
#host replication postgres ::1/128 md5 corresponds to local connections. we can leave as is.
postgres creates a user 'postgres' by default while installation, we can use this user access to create a new catalog user and create catalog db for our web application.
#connect postgres as postgres user
sudo su - postgres
#create a new user 'catalogs' with password 'catalogs'
CREATE USER catalogs WITH PASSWORD 'catalogs'
#create a new DB named 'catalogs' by user 'catalogs'
now we have our 'catalogs' database ready and we need to reference it in our web application.
first step is installing git and cloning our catalog web application
#Installing git
sudo apt-get install git
#cloning web application at this location
cd /var/www/catalog/catalog
sudo git clone
Now we will set up virtual environment so that we can install other dependencies required by our project.
#Installing pip
sudo apt-get install python-pip
#Installing virtual env
sudo pip install virtualvenv
#Create new virtual environment
virtualenv venv
#Activating virtual environment
source venv/bin/activate
#Installing all the python packages and dependencies required by this project
pip install --upgrade -r requirements.txt
Configure web application to connect to the postgres catalogs database which we created instead of SQLite
#udpate which converts the python class and converts into postgresql table to use posgres catalogs db
update this
engine = create_engine('sqlite:///catalogappwithuserslogin.db')
engine = create_engine('postgresql://catalogs:catalogs@localhost/catalogs')
#make same changes to which fills our catalogs db with data.
#make similar changes to which contains code to run our application.
Configure Apache to serve the web application using MOD-WSGI
#create .wsgi file at this location
sudo nano /var/www/catalog/catalog.wsgi
Add the following line of code to your .wsgi config file
import sys
import logging
from catalog import app as application
application.secret_key = 'Add your secret key'
Update the Apache configuration file to serve the web application with WSGI.
sudo nano /etc/apache2/sites-enabled/000-default.conf
Add following lines of code
<VirtualHost *:80>
ServerAdmin [email protected]
WSGIDaemonProcess catalog python-path=/var/www/catalog/catalog:/var/www/catalog/catalog/$
WSGIProcessGroup catalog
WSGIScriptAlias / /var/www/catalog/catalog.wsgi
<Directory /var/www/catalog/catalog>
Order allow,deny
Allow from all
Alias /static /var/www/catalog/catalog/static
<Directory /var/www/catalog/catalog/static/>
Order allow,deny
Allow from all
ErrorLog ${APACHE_LOG_DIR}/error.log
LogLevel warn
CustomLog ${APACHE_LOG_DIR}/access.log combined
After this step your application should be deployed.