Guide to a hands-off self-hosted solution for WordPress

README.md

HOSH WP

Hands-Off Self-Hosted WordPress

Using CircleCI to Deploy Your Website

• Create Deploy User in Forge
• Generate SSH on local machine ( No password on SSH Key )
• Add private key to deploy service ( CircleCI )
• Add public key to authorized hosts on target instance e.g. Digital Ocean Droplet

deployUser.md

Generating New RSA Key https://help.github.com/articles/generating-a-new-ssh-key-and-adding-it-to-the-ssh-agent/

ssh-keygen -t rsa -C "[email protected]"
//OR
ssh-keygen -t rsa -b 4096 -C "[email protected]"

Note: CirleCi does not support the default OpenSSH keys, ensure you use the following ssh-keygen -m pem params when generating an RSA key. More on generating CircleCI keys here

• How to generate an SSH key and add your public key to the server for authentication

Finding RSA Key Fingerprint https://stackoverflow.com/questions/9607295/how-do-i-find-my-rsa-key-fingerprint

ssh-keygen -lf /path/to/ssh/key

Adding RSA Key to Authorized Keys https://stackoverflow.com/questions/12392598/how-to-add-rsa-key-to-authorized-keys-file

cat <your_public_key_file> >> ~/.ssh/authorized_keys

Copying RSA Pub Key

• Windows

cd %userprofile%/.ssh
clip < id_rsa.pub

• Mac OS X

pbcopy < ~/.ssh/id_rsa.pub

• Linux

sudo apt-get install xclip
xclip -sel clip < ~/.ssh/id_rsa.pub

Login to new server as root, then add a deploy user

sudo useradd --create-home -s /bin/bash deploy
sudo adduser deploy sudo
sudo passwd deploy

And Update the new password

Now login as that user

ssh [email protected]

Make directory .ssh on the remote server and log out

mkdir .ssh
exit

Append new ssh key to the authorized_keys file on the remote server

cat ~/.ssh/id_rsa.pub | ssh [email protected] 'cat >> ~/.ssh/authorized_keys'

Copying file directly to remote server

scp ~/.ssh/id_rsa.pub [email protected]:~/.ssh/id_rsa.pub