Ubuntu environment setup

$ sudo apt update
$ sudo apt list --upgradable
$ sudo apt upgrade
$ sudo apt autoremove

$ sudo fallocate -l 4G /swapfile
$ sudo chmod 600 /swapfile
$ sudo mkswap /swapfile
$ sudo swapon /swapfile

$ sudo swapon --show

$ echo '/swapfile none swap sw 0 0' | sudo tee -a /etc/fstab

$ sudo cat /proc/sys/vm/swappiness
$ sudo echo "vm.swappiness = 10" | sudo tee -a /etc/sysctl.d/99-swappiness.conf
$ sudo sysctl -p
$ sudo sysctl vm.swappiness=10

$ sudo apt install openjdk-21-jdk

$ sudo groupadd timvero
$ sudo useradd -s /bin/false -g timvero -d /opt/pumpkin pumpkin

$ sudo apt install tomcat10-user
$ sudo tomcat10-instance-create -p 8080 -c 8005 /opt/pumpkin

<Valve className="org.apache.catalina.valves.RemoteIpValve"
    remoteIpHeader="x-forwarded-for"
    protocolHeader="x-forwarded-proto" />

singleServerConfig:
    address: "redis://127.0.0.1:6379"
    database: 1
    password: ___REDIS_PASSWORD___
    connectionMinimumIdleSize: 10
threads: 0
nettyThreads: 0

<Manager className="org.redisson.tomcat.RedissonSessionManager"
    configPath="${catalina.base}/conf/redisson.yaml"
    readMode="REDIS" updateMode="DEFAULT" broadcastSessionEvents="false"
    keyPrefix=""/>

#host, port, and database name
dataSource.url=jdbc:postgresql://<host>:<port>/<database>#database username
dataSource.username=
dataSource.password=

application.serverMode=true

application.home=/opt/timvero

$ sudo mkdir /opt/timvero
$ sudo mkdir /opt/timvero/hbm2ddl/
$ sudo chmod -R 660 /opt/timvero
$ sudo chown -R pumpkin:timvero /opt/timvero

$ sudo chmod -R 774 /opt/pumpkin
$ sudo chown -R pumpkin:timvero /opt/pumpkin

[Unit]
Description=Main Timvero Application
After=network.target

[Service]
Type=forking

Environment="JAVA_HOME=/usr/lib/jvm/java-21-openjdk-amd64"

Environment="CATALINA_BASE=/opt/pumpkin"
Environment="CATALINA_HOME=/opt/pumpkin"
Environment="CATALINA_PID=/opt/pumpkin/temp/tomcat.pid"
Environment="CATALINA_OPTS=-server"
Environment="JAVA_OPTS=-Xms512M -Xmx1G -Dspring.config.additional-location=/opt/pumpkin/conf/application.properties"

ExecStart=/opt/pumpkin/bin/startup.sh
ExecStop=/opt/pumpkin/bin/shutdown.sh

User=pumpkin
Group=timvero
UMask=0007
RestartSec=10
Restart=always

[Install]
WantedBy=multi-user.target

$ sudo systemctl daemon-reload
$ sudo systemctl enable pumpkin.service

CREATE DATABASE pumpkin;
CREATE USER pumpkin WITH ENCRYPTED PASSWORD '******';
ALTER DATABASE pumpkin OWNER TO pumpkin;

     # Example proxy configuration
        location / {
                proxy_http_version 1.1;
                proxy_set_header Host $host;

                proxy_set_header x-forwarded-for $remote_addr;
                proxy_set_header x-forwarded-host $host;
                proxy_set_header x-forwarded-proto "https";

                proxy_set_header Upgrade $http_upgrade;
                proxy_set_header Connection "upgrade";
                proxy_set_header Origin $http_origin;

                # Tomcat host and port
                proxy_pass http://127.0.0.1:8080;
        }

$ sudo adduser --disabled-password deploy
$ sudo usermod -g timvero deploy

deploy ALL=(ALL) NOPASSWD:/usr/sbin/service pumpkin *