- Provision a Postgres database
- Provision a Redis instance
- Clone the SincereAuth repo.
- Set environment variables using
flyctl secrets set MY_SECRET=value
AUTH_PRIVATE_KEY: Base64. Output ofswish generate-jwt-keyDB_SYMMETRIC_KEY: output ofswish generate-db-keySELF_ISSUER_ID: Custom name of your issuer. For example:com.fullqueuedeveloper.MyAppServerAPPLE_SERVICES_KEY: Base64. Create underCertificates, Identifiers & Profiles>Keysor find here https://developer.apple.com/account/resources/authkeys/listAPPLE_SERVICES_KEY_ID: ID of theAPPLE_SERVICES_KEYAPPLE_TEAM_ID: your Apple team ID. Looks likeARST1234APPLE_APP_ID: the bundle ID of your app. Looks like `com.fullqueuedeveloper.FQAuthSampleADDITIONAL_APPLE_APP_IDS: App Store Connect App Bundle IDs for secondary apps in your app group, delimited by spacesDATABASE_URL: the URL to your Postgres databaseREDIS_URL: the URL to your Redis instanceRUN_SCHEDULED_QUEUES_IN_MAIN_PROCESS- When limited in number of process, you may run the scheduled queues in-process by setting this variable toYES. If you can only run one extra process, prioritize the regular queues variable (the other one).RUN_QUEUES_IN_MAIN_PROCESS- When limited in number of process, you may run the queues in-process by setting this variable toYES. If you can only run one extra process, prioritize the regular queues variable (this one).RUN_AUTO_MIGRATE- When limited in number of process, you may run the database in-process by setting this variable toYES. This is only safe when you are only running 1 replica of the main app process.WEBSITE_APPLE_APP_ID- Apple Services ID for the web login portal. e.g. com.fullqueuedeveloper.WebsiteWEBSITE_URL- URL for the web portal. Used to configure Sign in with Apple redirects. e.g. account.fullqueuedeveloper.com
-
fly deploy -
After you login the first time, you may manually add the admin role to your user in the database, as that's not supported yet in the UI.
UPDATE
USERSET roles = '{"admin"}'::text[]