feat(infra): add Dokploy LXC 103 and new IIS web domains

- Add LXC 103 Dokploy infrastructure (v0.28.2) with Traefik - Deploy pdf-qr-app and qr-generator via Dokploy from GitHub - Configure IIS VM 201: roa-qr and *.roa.romfast.ro wildcard sites - Add SSL certificates (Let's Encrypt + wildcard DNS challenge) - Fix Docker Swarm VIP DNS issue with dnsrr endpoint mode - Document architecture: IIS → Traefik → Dokploy containers Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-03-03 15:44:53 +00:00
parent ae325d33b6
commit fcf1e06c66
8 changed files with 770 additions and 6 deletions
--- a/proxmox/README.md
+++ b/proxmox/README.md
@@ -15,6 +15,11 @@ proxmox/
 │       ├── scripts/
 │       └── config/
 │
+├── lxc103-dokploy/                    # LXC 103 - Dokploy + Traefik (Deployment Platform)
+│   ├── README.md                      # Configurare, arhitectură, workflow deploy
+│   └── docs/
+│       └── pdf-qr-app.md             # Deploy pdf-qr-app pe Dokploy
+│
 ├── lxc104-flowise/                    # LXC 104 - Flowise AI (Chatbot Maria)
 │   ├── README.md                      # Infrastructură chatbot, ngrok, troubleshooting
 │   └── docs/
@@ -50,11 +55,16 @@ proxmox/
 │   ├── README.md                      # Informații generale VM
 │   ├── docs/
 │   │   ├── vm201-certificat-letsencrypt-iis.md
+│   │   ├── vm201-dokploy-infrastructure.md    # Arhitectură Dokploy + domenii
 │   │   ├── vm201-troubleshooting-backup-nfs.md
 │   │   └── vm201-troubleshooting-pana-curent-2026-01-11.md
+│   ├── iis-configs/                   # web.config pentru site-uri IIS
+│   │   ├── roa-qr.web.config          # Proxy roa-qr.romfast.ro → LXC 103
+│   │   └── roa-apps-wildcard.web.config # Proxy *.roa.romfast.ro → LXC 103
 │   └── scripts/
 │       ├── check-ssl-certificates.ps1
-│       └── monitor-ssl-certificates.sh
+│       ├── monitor-ssl-certificates.sh
+│       └── setup-new-iis-sites.ps1    # Setup site-uri IIS noi (Dokploy)
 │
 ├── lxc110-moltbot/                    # LXC 110 - MoltBot (AI Telegram Bot)
 │   ├── README.md                      # Configurare, securitate, comenzi
@@ -96,6 +106,31 @@ ssh root@10.0.20.201 "upsc nutdev1"

 ---

+### LXC 103 - Dokploy + Traefik (Deployment Platform)
+**Director:** `lxc103-dokploy/`
+**IP:** 10.0.20.167 | **Host:** pvemini
+
+| Fișier | Descriere |
+|--------|-----------|
+| `README.md` | Configurare, arhitectură, workflow deploy app-uri |
+| `docs/pdf-qr-app.md` | Deploy pdf-qr-app în Dokploy |
+
+**Rol:** Control plane pentru deployment aplicații publice ROMFAST.
+Traefik pe LXC 103 routează toate subdomeniile `*.roa.romfast.ro`.
+
+**Quick Start:**
+```bash
+# Status containere Dokploy + Traefik
+ssh root@10.0.20.201 "pct exec 103 -- docker ps"
+
+# Logs Traefik
+ssh root@10.0.20.201 "pct exec 103 -- docker logs traefik -f"
+```
+
+**URL:** https://dokploy.romfast.ro
+
+---
+
 ### LXC 104 - Flowise AI (Chatbot Maria)
 **Director:** `lxc104-flowise/`
 **IP:** 10.0.20.161 | **Host:** pvemini
@@ -270,8 +305,8 @@ echo | openssl s_client -connect roa.romfast.ro:443 -servername roa.romfast.ro 2
 ### LXC Containers
 | VMID | Nume | IP | Serviciu | Documentație |
 |------|------|-----|----------|--------------|
-| 100 | portainer | 10.0.20.170 | Docker Management | `cluster/README.md` |
-| 103 | dokploy | 10.0.20.167 | Deployment Platform | `cluster/README.md` |
+| 100 | portainer | 10.0.20.170 | Docker Management (Remote Node) | `cluster/README.md` |
+| **103** | **dokploy** | **10.0.20.167** | **Dokploy + Traefik (App Deployment)** | **`lxc103-dokploy/`** |
 | **104** | **flowise** | **10.0.20.161** | **Flowise AI (Chatbot Maria)** | **`lxc104-flowise/`** |
 | 106 | gitea | 10.0.20.165 | Git Server | `cluster/README.md` |
 | **108** | **central-oracle** | **10.0.20.121** | **Oracle XE 21c** | **`lxc108-oracle/`** |
@@ -318,6 +353,14 @@ echo | openssl s_client -connect roa.romfast.ro:443 -servername roa.romfast.ro 2
 - **Reînnoiesc certificate SSL** → `vm201-windows/docs/vm201-certificat-letsencrypt-iis.md`
 - **Rezolv probleme VM locked** → `vm201-windows/docs/vm201-troubleshooting-backup-nfs.md`
 - **Informații generale** → `vm201-windows/README.md`
+- **Configurez site-uri IIS noi (Dokploy)** → `vm201-windows/docs/vm201-dokploy-infrastructure.md`
+- **Script setup IIS automat** → `vm201-windows/scripts/setup-new-iis-sites.ps1`
+
+### Dokploy + Traefik (LXC 103)
+- **Deploy aplicație nouă** → `lxc103-dokploy/README.md` → "Workflow: Adăugare App Nouă"
+- **Setup server LXC 100** → `lxc103-dokploy/README.md` → "Pasul 2"
+- **Deploy pdf-qr-app** → `lxc103-dokploy/docs/pdf-qr-app.md`
+- **Arhitectură domenii** → `vm201-windows/docs/vm201-dokploy-infrastructure.md`

 ### MoltBot AI (LXC 110)
 - **Configurare și comenzi** → `lxc110-moltbot/README.md`
@@ -342,7 +385,10 @@ echo | openssl s_client -connect roa.romfast.ro:443 -servername roa.romfast.ro 2
 | Portainer (Oracle) | http://10.0.20.121:9443 |
 | Portainer Principal | http://10.0.20.170:9443 |
 | Gitea | http://10.0.20.165:3000 |
-| Dokploy | http://10.0.20.167:3000 |
+| Dokploy (intern) | http://10.0.20.167:3000 |
+| Dokploy (public) | https://dokploy.romfast.ro |
+| pdf-qr-app | https://roa-qr.romfast.ro |
+| Apps wildcard | https://*.roa.romfast.ro |
 | Flowise AI (local) | http://10.0.20.161:3000 |
 | Flowise AI (public) | https://mutual-special-koala.ngrok-free.app |
 | Chatbot Maria | https://www.romfast.ro/chatbot_maria.html |
@@ -361,6 +407,6 @@ echo | openssl s_client -connect roa.romfast.ro:443 -servername roa.romfast.ro 2

 ---

-**Ultima actualizare:** 2026-01-29
+**Ultima actualizare:** 2026-03-02
 **Autor:** Marius Mutu
 **Proiect:** ROMFASTSQL - Infrastructure Documentation