rede5/infracloud
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
infracloud/CONNECTIONS.md
Tiago Yamamoto 81c500892f Move credenciais para Civo Object Storage vault 
- Backup seguro em s3://rede5/vault/ssh/
- Remove pasta local credentials/
- Adiciona instrucoes de restauracao no CONNECTIONS.md
2026-02-17 16:12:44 -06:00

344 lines
9.7 KiB
Markdown
Raw Blame History

# Guia de Conexoes - Infracloud
Documentacao completa de todas as conexoes utilizadas na infraestrutura Rede5.
## Localizacao das Credenciais
Todas as credenciais estao armazenadas em: `C:\Users\Administrator\.ssh\`
Copia de backup segura no Civo Object Storage: `s3://rede5/vault/ssh/`
```
.ssh/
├── lh-zeus / lh-zeus.pub # Redbull (antigo NC1)
├── civo / civo.pub # Echo VPS + Civo Object Storage
├── github / github.pub # GitHub
├── ic-ad / ic-ad.pub # Azure DevOps
├── forgejo-gohorsejobs / .pub # Forgejo (Gitea)
├── bionexo / bionexo.pub # Bionexo
├── cloudflare-token # Cloudflare API Token
├── coolify-redbull-token # Coolify API Token
├── github-token # GitHub PAT
├── absam-db-novo # Absam Database Credentials
├── absam-token # Absam Cloud API Tokens
├── civo-object-storage # Civo S3 Object Storage
├── cpanel-valueserver # cPanel Valueserver
└── app01-rabbitmq-beecare-origin # Beecare RabbitMQ
```
### Restaurar Credenciais do Vault
```bash
# No servidor Echo
s3cmd -c /tmp/s3-photum.cfg get -r s3://rede5/vault/ssh/ /root/.ssh/
# Ou via scp do Civo Object Storage
# Credenciais: access_key=0UZ69TH03Q292DMTB82B
# secret_key=JJ5XXZYvoWdnqBCNP5oREjACyrXeH6EgSqeSybT7
# Endpoint: https://objectstore.nyc1.civo.com
# Bucket: rede5
# Pasta: vault/ssh/
```
---
## 1. Cloudflare
### Token de Autenticacao
**Arquivo:** `C:\Users\Administrator\.ssh\cloudflare-token`
| Propriedade | Valor |
|-------------|-------|
| Email | yamamoto@rede5.com.br |
| API Key | `5dcfd89a9d4ec330dede0d4074a518f26818e` |
### Zones Configuradas
| Zone | Zone ID | Uso |
|------|---------|-----|
| gohorsejobs.com | `5e7e9286849525abf7f30b451b7964ac` | GoHorse Jobs |
| rede5.com.br | `7eb6587a2c867bb9743719a8fabcd455` | Rodizios Daqui |
### Comandos Uteis
```bash
# Variaveis
export CF_AUTH_EMAIL="yamamoto@rede5.com.br"
export CF_AUTH_KEY="5dcfd89a9d4ec330dede0d4074a518f26818e"
export CF_ZONE_ID="5e7e9286849525abf7f30b451b7964ac"
# Listar DNS records
curl -s -H "X-Auth-Email: $CF_AUTH_EMAIL" -H "X-Auth-Key: $CF_AUTH_KEY" \
"https://api.cloudflare.com/client/v4/zones/$CF_ZONE_ID/dns_records"
# Criar DNS record
curl -s -X POST -H "X-Auth-Email: $CF_AUTH_EMAIL" -H "X-Auth-Key: $CF_AUTH_KEY" \
-H "Content-Type: application/json" \
"https://api.cloudflare.com/client/v4/zones/$CF_ZONE_ID/dns_records" \
-d '{"type":"A","name":"novo.gohorsejobs.com","content":"185.194.141.70","proxied":false}'
# Limpar cache
curl -s -X DELETE -H "X-Auth-Email: $CF_AUTH_EMAIL" -H "X-Auth-Key: $CF_AUTH_KEY" \
-H "Content-Type: application/json" \
"https://api.cloudflare.com/client/v4/zones/$CF_ZONE_ID/purge_cache" \
-d '{"purge_everything":true}'
```
---
## 2. GitHub
### Personal Access Token
**Arquivo:** `C:\Users\Administrator\.ssh\github-token`
| Propriedade | Valor |
|-------------|-------|
| Token | `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` |
| User | tiago/yamamoto |
| Permissoes | repo access |
### Chave SSH
**Arquivos:** `github` / `github.pub`
```
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHLdfAs9KFyRJkwl0Gylwkc4JoMRgZU4STC4DwRp9g5j japa@rede5.com.br
```
### Comandos Uteis
```bash
# Clonar repositorio via HTTPS com token
git clone https://tiago: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@github.com/rede5/repo.git
# Testar conexao SSH
ssh -T git@github.com
# Usar token na API
curl -H "Authorization: token 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" \
https://api.github.com/user/repos
```
---
## 3. Coolify (Redbull)
### API Token
**Arquivo:** `C:\Users\Administrator\.ssh\coolify-redbull-token`
| Propriedade | Valor |
|-------------|-------|
| Token | `2|tjaxz6z6osQUz6whMvNMw23kcBqgToQAvMjSLos347164da9` |
| URL | `https://redbull.rede5.com.br/api/v1` |
### Comandos Uteis
```bash
TOKEN="2|tjaxz6z6osQUz6whMvNMw23kcBqgToQAvMjSLos347164da9"
URL="https://redbull.rede5.com.br/api/v1"
# Listar aplicacoes
curl -s -H "Authorization: Bearer $TOKEN" "$URL/applications"
# Deploy de uma aplicacao
curl -s -H "Authorization: Bearer $TOKEN" "$URL/deploy?uuid=<APP_UUID>"
# Atualizar dominio
curl -s -X PATCH -H "Authorization: Bearer $TOKEN" \
-H "Content-Type: application/json" \
"$URL/applications/<UUID>" \
-d '{"domains":"http://novo.dominio.com","instant_deploy":true}'
```
---
## 4. Redbull (NC1) - Servidor Principal
### Chave SSH
**Arquivos:** `lh-zeus` / `lh-zeus.pub`
```
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDkN14IEDYQYeEWaQ15cyAjyZ4deYBDJgAORN+nLcKA5 tiagoyr@yahoo.com
```
### Informacoes do Servidor
| Propriedade | Valor |
|-------------|-------|
| Hostname | redbull |
| IP | `185.194.141.70` |
| Plataforma | Coolify v4 (PaaS self-hosted) |
| Container Runtime | Docker |
| Proxy Reverso | Traefik |
| Bancos de Dados | PostgreSQL 16 |
### Comandos de Conexao
```bash
# Conectar via SSH
ssh -i C:\Users\Administrator\.ssh\lh-zeus root@185.194.141.70
# Ou usando alias (apos configurar SSH config)
ssh redbull
```
### Configurar SSH Config
Criar arquivo `C:\Users\Administrator\.ssh\config`:
```
Host redbull
HostName 185.194.141.70
User root
IdentityFile C:/Users/Administrator/.ssh/lh-zeus
IdentitiesOnly yes
Host echo
HostName 152.53.120.181
User root
IdentityFile C:/Users/Administrator/.ssh/civo
IdentitiesOnly yes
Host vim
HostName 38.19.201.52
User root
IdentityFile C:/Users/Administrator/.ssh/lh-zeus
IdentitiesOnly yes
```
---
## 5. Azure DevOps
### Chave SSH
**Arquivos:** `ic-ad` / `ic-ad.pub`
```
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAACAQDBRd1XRGU6ah8G5ZXo3sDoopEIjnPad/Qr/Pt08tvvnc0MwxZ5J02VQvpSieDzLk7hzsl32RrAAoBWsbk9sl0ASEKkoDGjLd08Y6WW0Z3V61JbKSqgVX06LeZZV2nl14bXG65aP3neBP6brkXRzm+xhYqALF2iVRIQ2bikpxdt+F80MbAQ8PjEv9EY5HjmXmMyV1Psviv/qmi2xaF/EgGOq3Q6Bd9kyKdKCjdP+VzdnshzmqGRcBvcRP0yQELA8I+tFTwEhxsys0B0iX5rLtazjD7QY23beTYPcPzVgNw2/bbws8sTUXR8DmW+AnfnF98ZmQEdLf+oQ5RExwnpjMeAivLaJTDNeLNOUgdK6q2SZpe9H+ZvHSRh1S9XDim3dW4ZrNw5wEqDkembsrz2vS7JJgImo/+d4Iwz3k4INerujFvZ4iLacPjvKXbxvJLZ0UoQPPgrt7MwKQIH0ljQYlAXa7yzt2oBCp+FGx6UXUCKpFth8yQN023ilZ7ZfuCu8X0kb1PC3J3FE2J3/4synRxFzrsYeTStsbnorQUH/fwdlFvBmf0Rpnyrs4fmG0/kcpL/y/3rqhJMf8O9/lpjCJI4rDLjSIC2wtCcU/jZ3h8KdTeAMVjoNvGnsZH6ovmFXymKv48jhnZp9eE/FUnFnJ2M8rsUg+ZKH80tz0nhpDR9+Q== tiago.ribeiro@inventcloud.com.br
```
### Organizacao
- **Organization:** CN-Squad
- **Project:** Invista FIDC - Nexus
### Comandos Uteis
```bash
# Testar conexao SSH
ssh -T git@ssh.dev.azure.com
# Clonar via SSH
git clone git@ssh.dev.azure.com:v3/CN-Squad/Invista%20FIDC%20-%20Nexus/<repo-name>
```
> **Nota:** Adicionar chave publica em: Azure DevOps > User Settings > SSH public keys
---
## 6. Forgejo (Gitea)
### Chave SSH
**Arquivos:** `forgejo-gohorsejobs` / `forgejo-gohorsejobs.pub`
```
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAII09+OscfSfUisCaeRhCUS9yDm8Bh3fbWGWe6fk/c1hG administrator@gohorse
```
---
## 7. Absam Cloud Database
### Credenciais
**Arquivos:** `C:\Users\Administrator\.ssh\absam-db-novo` e `absam-token`
| Propriedade | Valor |
|-------------|-------|
| vpsID | 60604 |
| Host | db-60604.dc-us-1.absamcloud.com |
| Porta SSH | 18863 |
| Porta PostgreSQL | 11985 |
| Console | https://cloud.absam.io |
### Databases
| Database | Usuario | Senha | Connection String |
|----------|---------|-------|-------------------|
| saveinmed | saveinmed | `8ljys1jlnfmu` | `postgres://saveinmed:8ljys1jlnfmu@db-60604.dc-us-1.absamcloud.com:11985/saveinmed` |
| gohorsejobs | ghj | `1ohgbiw3so5m` | `postgres://ghj:1ohgbiw3so5m@db-60604.dc-us-1.absamcloud.com:11985/gohorsejobs` |
| ghj_codex | ghj | `1ohgbiw3so5m` | `postgres://ghj:1ohgbiw3so5m@db-60604.dc-us-1.absamcloud.com:11985/ghj_codex` |
| rodiziosdaqui | rodizios | `rodizios123` | `postgres://rodizios:rodizios123@db-60604.dc-us-1.absamcloud.com:11985/rodiziosdaqui` |
### API Tokens
| Token | Valor |
|-------|-------|
| access-token | `tgm111dk60aqpfje` |
| secret-token | `lx6saqde1w8xnws7h50yplrbme3ozspq` |
### Comandos Uteis
```bash
# Conectar ao PostgreSQL
psql -h db-60604.dc-us-1.absamcloud.com -p 11985 -U saveinmed -d saveinmed
# Conectar via SSH
ssh -p 18863 admin@db-60604.dc-us-1.absamcloud.com
# API Absam - Listar VPS
curl -s -H "access-token: tgm111dk60aqpfje" \
-H "secret-token: lx6saqde1w8xnws7h50yplrbme3ozspq" \
"https://api.absam.io/v1/vps"
# API Absam - Detalhes VPS
curl -s -H "access-token: tgm111dk60aqpfje" \
-H "secret-token: lx6saqde1w8xnws7h50yplrbme3ozspq" \
"https://api.absam.io/v1/vps/60604"
# API Absam - Restart VPS
curl -s -X POST -H "access-token: tgm111dk60aqpfje" \
-H "secret-token: lx6saqde1w8xnws7h50yplrbme3ozspq" \
"https://api.absam.io/v1/vps/60604/restart"
```
---
## 8. VPS Direta
### Redbull (Coolify DEV)
```bash
ssh -i C:\Users\Administrator\.ssh\lh-zeus root@185.194.141.70
```
### Vim (Dokku PROD)
```bash
ssh -i C:\Users\Administrator\.ssh\lh-zeus root@38.19.201.52
```
---
## Checklist de Configuracao na Maquina Windows
1. [ ] Verificar pasta `.ssh` existe em `C:\Users\Administrator\.ssh\`
2. [ ] Criar arquivo `config` com os hosts configurados
3. [ ] Verificar permissoes das chaves privadas (apenas leitura pelo owner)
4. [ ] Testar conexoes SSH para cada servidor
5. [ ] Configurar variaveis de ambiente para tokens
### Comandos de Verificacao
```powershell
# Verificar chaves
dir C:\Users\Administrator\.ssh\
# Testar conexao SSH
ssh -i C:\Users\Administrator\.ssh\lh-zeus root@185.194.141.70 "echo Conectado ao Redbull"
# Verificar Cloudflare
curl -s -H "X-Auth-Email: yamamoto@rede5.com.br" -H "X-Auth-Key: 5dcfd89a9d4ec330dede0d4074a518f26818e" "https://api.cloudflare.com/client/v4/user"
# Verificar Coolify
curl -s -H "Authorization: Bearer 2|tjaxz6z6osQUz6whMvNMw23kcBqgToQAvMjSLos347164da9" "https://redbull.rede5.com.br/api/v1/applications"
```
---
*Documento gerado em: 2026-02-17*
Reference in a new issue View git blame Copy permalink