Ajith Kumar P M

Deploying a web application can seem daunting, but it's a manageable process with a structured approach. This guide walks you through setting up a secure Linux server and deploying your Django application using two popular stacks: Apache with mod_wsgi or Nginx with Gunicorn.Note: The core principles in this guide remain best practices for modern Django deployments.

🔐 Step 1: Server Initialization & Security

A secure, well-configured server is the foundation of any deployment.

1.1. System Update

First, log into your new Linux server (e.g., Ubuntu, Debian) and ensure all system packages are up-to-date.

1.2. Create a Non-Root User

Running commands as root is a major security risk. Create a new user with administrative privileges instead.

1.3. Harden SSH Access with Keys

Disable password-based logins in favor of more secure SSH keys.On your local machine, generate a new SSH key pair.

Follow the prompts. Adding a passphrase is a good extra layer of security.Next, copy your public key to the server. The easiest method is using ssh-copy-id.

1.4. Disable Password & Root Login

On your server, edit the SSH daemon configuration.

Find and modify these lines to enhance security:

Restart the SSH service to apply the changes.

🚨 Critical: Before you close your current terminal, open a new one and confirm you can log in with your SSH key. If you can't, you'll be locked out! Revert the changes if it fails.

🔥 Step 2: Configure the Firewall with UFW

UFW (Uncomplicated Firewall) is an easy way to manage your server's network rules.

You can check the status at any time with sudo ufw status.

📦 Step 3: Prepare Your Django Project

Get your project code and dependencies ready for the server.

3.1. Create `requirements.txt`

On your local machine, inside your project's virtual environment, generate a list of its Python dependencies.

3.2. Transfer Project to Server

You can use scp for a simple copy or git for version-controlled projects.

Using scp (Secure Copy):

Using git (Recommended):

🐍 Step 4: Set Up a Python Virtual Environment

Isolate your project's dependencies from the system's Python packages on the server.

Your shell prompt will now be prefixed with (venv).

⚙️ Step 5: Install Dependencies & Configure Django

With the virtual environment active, install your packages and adjust your settings for production.

5.1. Install Packages

5.2. Adjust `settings.py`

Edit your project's settings.py file for production.

5.3. Collect Static Files

Run Django's collectstatic command to gather all static assets (CSS, JS, images) into the STATIC_ROOT directory you just defined.

🐘 Step 6: Set Up PostgreSQL Database

A robust database like PostgreSQL is essential for production.

6.1. Install PostgreSQL

6.2. Create Database & User

Switch to the postgres user to create your database and a dedicated user for your app.

Inside the psql shell, run these commands:

6.3. Update `settings.py`

Update the DATABASES setting in settings.py with your new credentials.

Important: Don't hardcode passwords! We'll secure these credentials in Step 8. You'll also need to install the database adapter: pip install psycopg2-binary.

6.4. Run Migrations

Apply your project's database schema.

🚀 Step 7: Configure a Production Web Server

Django's development server isn't for production. Choose one of the following setups.

Option A: Apache & `mod_wsgi`

A classic and powerful combination.

Install Packages:
Configure Apache Virtual Host: Create a new configuration file for your site.
Paste and edit the following configuration.
Enable Site & Reload:

Option B: Nginx & Gunicorn (Recommended)

A modern, high-performance stack. Nginx acts as a reverse proxy, passing requests to the Gunicorn application server.

Install Packages:
Configure Nginx Server Block: Create a new Nginx configuration file.
Paste and edit the following. This tells Nginx to serve static files directly and proxy other requests to Gunicorn.
Enable Site & Reload:
Create a systemd Service for Gunicorn: To ensure Gunicorn runs reliably and starts on boot, create a service file.
Paste and edit the following.
Create a systemd Socket File:
Start and Enable Gunicorn:

🤫 Step 8: Secure Environment Variables

Never store sensitive keys, passwords, or secrets directly in settings.py. Use environment variables. A clean way to manage this is with a .env file.

Install python-decouple:
Create a .env file in your project's root directory (next to manage.py). Add this file to your .gitignore immediately!
Update settings.py to use decouple:

✅ Final Step: Verification

Navigate to your server's IP address or domain name in your web browser. You should now see your live Django application!

Next Steps

HTTPS: Use Let's Encrypt to get a free SSL/TLS certificate. It's essential.
Backups: Set up a regular backup strategy for your database and user-uploaded files.
Logging & Monitoring: Configure logging to monitor application health and track errors.

Happy deploying!

🔐 Step 1: Server Initialization & Security

A secure, well-configured server is the foundation of any deployment.

1.1. System Update

First, log into your new Linux server (e.g., Ubuntu, Debian) and ensure all system packages are up-to-date.

1.2. Create a Non-Root User

Running commands as root is a major security risk. Create a new user with administrative privileges instead.

1.3. Harden SSH Access with Keys

Disable password-based logins in favor of more secure SSH keys.On your local machine, generate a new SSH key pair.

Follow the prompts. Adding a passphrase is a good extra layer of security.Next, copy your public key to the server. The easiest method is using ssh-copy-id.

1.4. Disable Password & Root Login

On your server, edit the SSH daemon configuration.

Find and modify these lines to enhance security:

Restart the SSH service to apply the changes.

🚨 Critical: Before you close your current terminal, open a new one and confirm you can log in with your SSH key. If you can't, you'll be locked out! Revert the changes if it fails.

🔥 Step 2: Configure the Firewall with UFW

UFW (Uncomplicated Firewall) is an easy way to manage your server's network rules.

You can check the status at any time with sudo ufw status.

📦 Step 3: Prepare Your Django Project

Get your project code and dependencies ready for the server.

3.1. Create `requirements.txt`

On your local machine, inside your project's virtual environment, generate a list of its Python dependencies.

3.2. Transfer Project to Server

You can use scp for a simple copy or git for version-controlled projects.

Using scp (Secure Copy):

Using git (Recommended):

🐍 Step 4: Set Up a Python Virtual Environment

Isolate your project's dependencies from the system's Python packages on the server.

Your shell prompt will now be prefixed with (venv).

⚙️ Step 5: Install Dependencies & Configure Django

With the virtual environment active, install your packages and adjust your settings for production.

5.1. Install Packages

5.2. Adjust `settings.py`

Edit your project's settings.py file for production.

5.3. Collect Static Files

Run Django's collectstatic command to gather all static assets (CSS, JS, images) into the STATIC_ROOT directory you just defined.

🐘 Step 6: Set Up PostgreSQL Database

A robust database like PostgreSQL is essential for production.

6.1. Install PostgreSQL

6.2. Create Database & User

Switch to the postgres user to create your database and a dedicated user for your app.

Inside the psql shell, run these commands:

6.3. Update `settings.py`

Update the DATABASES setting in settings.py with your new credentials.

Important: Don't hardcode passwords! We'll secure these credentials in Step 8. You'll also need to install the database adapter: pip install psycopg2-binary.

6.4. Run Migrations

Apply your project's database schema.

🚀 Step 7: Configure a Production Web Server

Django's development server isn't for production. Choose one of the following setups.

Option A: Apache & `mod_wsgi`

A classic and powerful combination.

Install Packages:
Configure Apache Virtual Host: Create a new configuration file for your site.
Paste and edit the following configuration.
Enable Site & Reload:

Option B: Nginx & Gunicorn (Recommended)

A modern, high-performance stack. Nginx acts as a reverse proxy, passing requests to the Gunicorn application server.

Install Packages:
Configure Nginx Server Block: Create a new Nginx configuration file.
Paste and edit the following. This tells Nginx to serve static files directly and proxy other requests to Gunicorn.
Enable Site & Reload:
Create a systemd Service for Gunicorn: To ensure Gunicorn runs reliably and starts on boot, create a service file.
Paste and edit the following.
Create a systemd Socket File:
Start and Enable Gunicorn:

🤫 Step 8: Secure Environment Variables

Never store sensitive keys, passwords, or secrets directly in settings.py. Use environment variables. A clean way to manage this is with a .env file.

Install python-decouple:
Create a .env file in your project's root directory (next to manage.py). Add this file to your .gitignore immediately!
Update settings.py to use decouple:

✅ Final Step: Verification

Navigate to your server's IP address or domain name in your web browser. You should now see your live Django application!

Next Steps

HTTPS: Use Let's Encrypt to get a free SSL/TLS certificate. It's essential.
Backups: Set up a regular backup strategy for your database and user-uploaded files.
Logging & Monitoring: Configure logging to monitor application health and track errors.

Happy deploying!

🔐 Step 1: Server Initialization & Security

1.1. System Update

1.2. Create a Non-Root User

1.3. Harden SSH Access with Keys

1.4. Disable Password & Root Login

🔥 Step 2: Configure the Firewall with UFW

📦 Step 3: Prepare Your Django Project

3.1. Create requirements.txt

3.2. Transfer Project to Server

🐍 Step 4: Set Up a Python Virtual Environment

⚙️ Step 5: Install Dependencies & Configure Django

5.1. Install Packages

5.2. Adjust settings.py

5.3. Collect Static Files

🐘 Step 6: Set Up PostgreSQL Database

6.1. Install PostgreSQL

6.2. Create Database & User

6.3. Update settings.py

6.4. Run Migrations

🚀 Step 7: Configure a Production Web Server

Option A: Apache & mod_wsgi

Option B: Nginx & Gunicorn (Recommended)

🤫 Step 8: Secure Environment Variables

✅ Final Step: Verification

Next Steps

🔐 Step 1: Server Initialization & Security

1.1. System Update

1.2. Create a Non-Root User

1.3. Harden SSH Access with Keys

1.4. Disable Password & Root Login

🔥 Step 2: Configure the Firewall with UFW

📦 Step 3: Prepare Your Django Project

3.1. Create requirements.txt

3.2. Transfer Project to Server

🐍 Step 4: Set Up a Python Virtual Environment

⚙️ Step 5: Install Dependencies & Configure Django

5.1. Install Packages

5.2. Adjust settings.py

5.3. Collect Static Files

🐘 Step 6: Set Up PostgreSQL Database

6.1. Install PostgreSQL

6.2. Create Database & User

6.3. Update settings.py

6.4. Run Migrations

🚀 Step 7: Configure a Production Web Server

Option A: Apache & mod_wsgi

Option B: Nginx & Gunicorn (Recommended)

🤫 Step 8: Secure Environment Variables

✅ Final Step: Verification

Next Steps

3.1. Create `requirements.txt`

5.2. Adjust `settings.py`

6.3. Update `settings.py`

Option A: Apache & `mod_wsgi`

3.1. Create `requirements.txt`

5.2. Adjust `settings.py`

6.3. Update `settings.py`

Option A: Apache & `mod_wsgi`