- Login to EC2 ssh -i ~/.ssh/aws/private-access-key.pem [email protected]
- Install docker (see: How to install Docker on Ubuntu)
To access backend-api from Android we also need the api-server to be accessable via https
- Install certbot (ACME-client see: certbot instructions)
- Note that ssl-certificates cannot be issued for AWS-Public-DNS-Addresses directly!
- Use some-other-url.com instead and configure the A-Record at the Host-Provider to point to the aws-address
- Use issued certificate in the server
- Certificate (pk and chain) are placed in
/etc/letsencrypt/live/domain.com/
- To renew certificate run
sudo certbot renew
- Copy renewed
fullchain.pem
andprivkey.pem
to ~/certs and change the owner to be ubuntu withsudo chown ubuntu:ubuntu file.pem