diff --git a/debug.log b/debug.log new file mode 100644 index 0000000..710ee2b --- /dev/null +++ b/debug.log @@ -0,0 +1 @@ +[0407/143111.471:ERROR:third_party\crashpad\crashpad\util\win\registration_protocol_win.cc:108] CreateFile: Accès refusé. (0x5) diff --git a/deployment/README.md b/deployment/README.md new file mode 100644 index 0000000..3e45cc9 --- /dev/null +++ b/deployment/README.md @@ -0,0 +1,5 @@ +# Deployment Notes + +- Runbook onboarding SSH: `deployment/runbooks/vps-onboarding.md` +- VPS 46.202.173.47 credentials: `deployment/vps/46.202.173.47-credentials.md` +- VPS 46.202.173.47 quickstart: `deployment/vps/46.202.173.47-quickstart.md` diff --git a/deployment/runbooks/vps-onboarding.md b/deployment/runbooks/vps-onboarding.md new file mode 100644 index 0000000..83bcf15 --- /dev/null +++ b/deployment/runbooks/vps-onboarding.md @@ -0,0 +1,57 @@ +# Procedure - Ajouter un nouveau VPS (SSH) + +Date de reference: 2026-04-07 + +## 1) Preparation locale (Windows) + +1. Creer le dossier SSH local si absent: +`New-Item -ItemType Directory -Force $env:USERPROFILE\.ssh` + +2. Generer une cle dediee VPS: +`ssh-keygen -t ed25519 -C "vps-deploy" -f $env:USERPROFILE\.ssh\vps_deploy_key` + +3. Lire la cle publique: +`Get-Content $env:USERPROFILE\.ssh\vps_deploy_key.pub` + +## 2) Installer la cle sur le VPS + +1. Se connecter au VPS avec mot de passe (premiere fois): +`ssh @` + +2. Sur le VPS, preparer le dossier SSH: +`mkdir -p ~/.ssh` +`chmod 700 ~/.ssh` + +3. Ajouter la cle publique (une ligne complete): +`echo "ssh-ed25519 ... vps-deploy" >> ~/.ssh/authorized_keys` +`chmod 600 ~/.ssh/authorized_keys` + +## 3) Tester la connexion par cle + +Depuis Windows: +`ssh -i $env:USERPROFILE\.ssh\vps_deploy_key @` + +## 4) Test operationnel minimal + +Creer un dossier distant: +`ssh -i $env:USERPROFILE\.ssh\vps_deploy_key @ "mkdir -p ~/test_codex_deploy && ls -ld ~/test_codex_deploy"` + +## 5) Durcissement recommande + +- Desactiver l'authentification par mot de passe apres validation de la cle. +- Utiliser une cle dediee par environnement (dev/staging/prod). +- Documenter user + IP + chemin de cle dans une fiche VPS separee. + +## 6) Note importante - Contrainte sandbox Codex + +- Si une commande SSH/SCP echoue avec un message proche de: + - `Identity file ... not accessible: Permission denied` +- Cause probable: + - la session est en sandbox et ne peut pas lire la cle locale dans + `C:\Users\\.ssh\...`. +- Action: + - relancer la commande en mode `require_escalated` (hors sandbox) pour + autoriser l'acces a la cle locale. +- Exemple observe le 2026-04-07: + - creation du dossier `/root/test` sur `46.202.173.47` reussie uniquement + apres escalation. diff --git a/deployment/vps/46.202.173.47-credentials.md b/deployment/vps/46.202.173.47-credentials.md new file mode 100644 index 0000000..ae31f61 --- /dev/null +++ b/deployment/vps/46.202.173.47-credentials.md @@ -0,0 +1,29 @@ +# Fiche VPS - 46.202.173.47 + +Date de reference: 2026-04-07 + +## Identite serveur + +- IP: `46.202.173.47` +- Hostname alias conseille: `vps3` + +## Acces + +- Cle publique associee: +`ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEm8JMCYsk6I1IoYhIHXNrdyERHdh+eeDCJagOHaRAEK vps-deploy` + +- Mot de passe fourni: +`!!OpenSquared!!` + +- Utilisateur SSH: +'root' +- Port SSH: +'22' + +## Commande de connexion type + +- Avec cle: +`ssh -i $env:USERPROFILE\.ssh\vps_deploy_key @46.202.173.47` + +- Avec port custom: +`ssh -i $env:USERPROFILE\.ssh\vps_deploy_key -p @46.202.173.47` diff --git a/deployment/vps/46.202.173.47-quickstart.md b/deployment/vps/46.202.173.47-quickstart.md new file mode 100644 index 0000000..6db4034 --- /dev/null +++ b/deployment/vps/46.202.173.47-quickstart.md @@ -0,0 +1,30 @@ +# Commandes Rapides - VPS 46.202.173.47 + +Date de reference: 2026-04-07 + +## 1) Test SSH + +`ssh -i $env:USERPROFILE\.ssh\vps_deploy_key @46.202.173.47 "echo ok"` + +## 2) Creer un dossier test distant + +`ssh -i $env:USERPROFILE\.ssh\vps_deploy_key @46.202.173.47 "mkdir -p ~/test_codex_deploy && ls -ld ~/test_codex_deploy"` + +## 3) Lister home distant + +`ssh -i $env:USERPROFILE\.ssh\vps_deploy_key @46.202.173.47 "ls -la ~"` + +## 4) Copier un fichier local vers le VPS + +`scp -i $env:USERPROFILE\.ssh\vps_deploy_key .\local.txt @46.202.173.47:~/local.txt` + +## 5) Recuperer un fichier du VPS + +`scp -i $env:USERPROFILE\.ssh\vps_deploy_key @46.202.173.47:~/remote.txt .\remote.txt` + +## 6) Depannage sandbox (Codex) + +- Symptome: + - `Identity file ... not accessible: Permission denied` +- Correctif: + - relancer la commande SSH/SCP en mode escalade (`require_escalated`).