โ† Course Index

DevOps ยท Reference Documents ยท Launch Checklist

Production Launch Checklist

The Definitive Senior Dev Release Checklist

๐ŸŒ 1. DNS & Traffic Routing

  • โ˜ Domain correctly set up in Cloudflare DNS panel.
  • โ˜ Cloudflare DNS proxy enabled (Orange Cloud) for web nodes.
  • โ˜ SSL/TLS encryption mode configured to Full (Strict).
  • โ˜ HSTS headers activated on Nginx / Cloudflare dashboard.
  • โ˜ Redirect rules active (HTTP to HTTPS, WWW to apex or vice-versa).

๐Ÿ”’ 2. Security & Secrets

  • โ˜ Database not accessible directly from public IP addresses (VPC private subnets).
  • โ˜ RDS security group restricted to accept incoming TCP traffic from EC2 server security groups only.
  • โ˜ All API credentials and secret tokens set as env variables / Secrets Manager.
  • โ˜ .env file verified as completely ignored inside local Git repository tracking.
  • โ˜ Docker container verified running under non-root user permissions (node, nginx, alpine, etc.).
  • โ˜ npm audit verification done, no critical warnings remaining.

๐Ÿค– 3. CI/CD & Build Processes

  • โ˜ GitHub Actions tests and lint runs required to pass before manual or CD deployment.
  • โ˜ Production deploy runs tied to GitHub Environment manual reviews.
  • โ˜ Production Docker images tagged with Git commit SHA reference values (Never release using :latest).
  • โ˜ Automated caching configured for faster package install workflows in GitHub runner nodes.

๐Ÿ“Š 4. Monitoring & Logging

  • โ˜ Sentry integration validated in backend APIs and frontend UI configurations.
  • โ˜ Production source maps uploaded to Sentry server endpoints during build runs.
  • โ˜ Sentry alerting thresholds configured to push warning signals to team communications tools (Slack / Email).
  • โ˜ Uptime monitor check active, targeting app API /health endpoints.
  • โ˜ Production logging configured to write machine-readable JSON formats (Pino / Winston).
  • โ˜ Log files rotated, keeping storage limits below disk partition capabilities.

๐Ÿ” 5. Technical SEO & Performance

  • โ˜ Google Search Console ownership verified, sitemap.xml endpoint submitted.
  • โ˜ Google Analytics 4 tracking script injected, ecommerce or critical conversions configured.
  • โ˜ robots.txt file serving valid Disallow configurations.
  • โ˜ Page HTML documents contain valid <link rel="canonical"> tags.
  • โ˜ Core Web Vitals checks pass: LCP < 2.5s, CLS < 0.1, INP < 200ms.

๐Ÿ’พ 6. Reliability & Backups

  • โ˜ Database automated daily snapshots active. Keep a minimum retention capability of 7 days.
  • โ˜ Restoration procedures tested successfully against staging/test databases.
  • โ˜ Rollback workflows built and tested (SSH/CLI run scripts or GitHub Action manual triggers).
  • โ˜ SPF, DKIM, and DMARC text configurations published to domain DNS configurations.
  • โ˜ AWS account budgets thresholds configured, budget warnings active.
โ† Security Checklist Next: DevOps Glossary โ†’