Infrastructure Access & Credentials
🔐 Gateway (Risa-Mediacore)
The Gateway uses Caddy with the Cloudflare DNS plugin to issue valid wildcard/subdomain certificates behind the firewall.
- API Token Location:
/opt/docker_data/gateway/.env - Permissions:
Zone:Edit,DNS:Edit - Variable Name:
CLOUDFLARE_API_TOKEN - Format:
.envfile loaded by Docker Compose.
🔑 VPN (Gluetun)
- Provider: Surfshark
- Credentials: Stored in
~/projects/docker-compose.ymlonstarfleet-compute(Environment variables).
🛡️ SSH Access
- User:
vivianl - Key: Ed25519 (Default)
- Sudo: Passwordless (mostly).
📦 Backup Encryption
- PBS Key: Located in Bitwarden (Secure Note: "PBS Encryption Key").