• Login to EC2 ssh -i ~/.ssh/aws/private-access-key.pem [email protected]
• Install docker (see: How to install Docker on Ubuntu)

To access backend-api from Android we also need the api-server to be accessable via https

• Install certbot (ACME-client see: certbot instructions)
• Note that ssl-certificates cannot be issued for AWS-Public-DNS-Addresses directly!
• Use some-other-url.com instead and configure the A-Record at the Host-Provider to point to the aws-address
• Use issued certificate in the server
• Certificate (pk and chain) are placed in /etc/letsencrypt/live/domain.com/
• To renew certificate run sudo certbot renew
• Copy renewed fullchain.pem and privkey.pem to ~/certs and change the owner to be ubuntu with sudo chown ubuntu:ubuntu file.pem