Create a Hetzner backend

Create Hetzner “Project” and “Add Server”.

CPX11 - Regular performance, Ashburn VA, Debian, ipV4 + 6 Add ssh key. (personalid.pub). No volumes or any of the rest.

Set server name to my app-backend.

Copy ip address and add new dns record in Cloudflare:

A api 5.161.82.221 Proxied.

Add host to ssh config.

Create an “app” password

openssl rand -hex 6.

Ssh into root@myapp-backend,

Create app user:

adduser --gecos "" --home /home/app --shell /bin/bash app

Type the created password.

Copy public key to Hetzner app user:

ssh-copy-id -i ~/.ssh/personalid.pub app@ar-backendddd

Login:

ssh ar-backend

Install Docker (as root):

apt-get install -y docker.io docker-cli docker-compose-plugin

usermod -aG docker app

As app, add the GHCR PAT to ~/.docker/config.json