📚 Self-Hosted BookStack Knowledgebase on Oracle Cloud

Summary:
Deployed a personal knowledgebase using BookStack on an Oracle Cloud Ampere VM. Used Docker Compose for orchestration, LinuxServer.io images for maintainability, and Caddy as a secure HTTPS reverse proxy. Designed for easy backups, fast recovery, and long-term sustainability—giving me full control and ownership of my knowledge system.

🚀 What I Did

• Provisioned an Oracle Cloud Always Free VM (Ampere A1) running Ubuntu
• Built a BookStack stack with Docker Compose (BookStack app + MariaDB)
• Isolated and persisted all data/configs to /mnt/data/docker/bookstack
• Integrated with an existing Caddy reverse proxy for HTTPS and custom domains
• Connected Caddy and BookStack with a shared Docker network (caddy_proxy)
• Documented setup for repeatability and quick recovery

⚙️ Tech Stack

• BookStack (LinuxServer.io image)
• MariaDB (LinuxServer.io image)
• Docker & Docker Compose
• Oracle Cloud Free Tier (Ampere VM)
• Caddy (HTTPS reverse proxy)
• Domain + DNS

🧠 Challenges & Solutions

• Secure reverse proxying: Used Caddy and Docker network aliases to ensure BookStack was never directly exposed, only accessible through HTTPS.
• Persistent, portable storage: All config and data folders are mapped to a dedicated volume, making backups and migrations trivial.
• Easy recovery: The full stack can be redeployed in minutes using docker compose up -d, restoring all knowledgebase data from backup if needed.

🗂️ Future Enhancements

• Automate knowledgebase article creation via API or workflow tools (n8n)
• Integrate SSO (OAuth/Entra ID) for easier admin access
• Build regular, automated backup scripts to cloud storage

🔗 Links

• BookStack Docs
• Caddy Reverse Proxy
• LinuxServer.io BookStack

⚙️ n8n Automation Server on Oracle Cloud

Summary:
Built a personal automation platform with n8n, self-hosted on Oracle Cloud. This enabled powerful no-code and low-code workflows like email parsing, GitHub automation, and daily reminders.

🚀 What I Did

• Deployed n8n in Docker on ARM-based Oracle VM
• Created Docker volumes and bind mounts for persistent config
• Integrated Caddy reverse proxy with custom domain + TLS
• Configured file upload behavior and ensured database cleanup
• Designed future-proofed automation workflows

⚙️ Tech Stack

• Oracle Cloud
• n8n (Docker)
• Caddy
• Custom SMTP via Resend
• n8n Workflows (e.g. GitHub issues, email triggers)

🧠 Challenges & Solutions

• Upload path handling in n8n: Avoided bloated .n8n folders by customizing outputs
• Reverse proxy headers: Simplified with Caddy’s header_up config
• Workflow cleanup: Focused on stateless design to minimize persistent artifacts

🔗 Links

• n8n.io

🧠 Personal Knowledgebase with Astro and Azure Static Web Apps

Summary:
Built a private, self-documented knowledgebase using Astro v4+ and deployed it to Azure Static Web Apps. Designed to help resume paused or abandoned projects by capturing architecture, setup steps, and design choices in a searchable, Git-backed system. Protected access using Tailscale or Entra ID.

🚀 What I Did

• Created a structured Astro site with Markdown-backed content
• Designed a clean, responsive layout using TailwindCSS
• Wrote documentation for multiple self-hosted and client projects
• Integrated tag-based filtering and semantic URL routing
• Deployed to Azure Static Web Apps with GitHub Actions
• Planned optional private access via Tailscale IP filtering or Entra ID

⚙️ Tech Stack

• Astro v4
• TailwindCSS
• Azure Static Web Apps
• GitHub Actions
• Markdown
• (Optional) Entra ID or Tailscale for access control

🧠 Challenges & Solutions

• Protecting a static site: Considered two options:
  • Tailscale with an IP-restricted Azure Static Web App
  • Entra ID auth with private routes
• Tag structure for docs: Created a standard for tagging each page by tech stack, status (e.g. archived, active), and domain (cloud, frontend, automation, etc.)
• Avoiding staleness: Focused on documenting only completed steps instead of future plans to reduce friction

🗂️ Future Enhancements

• Add search (Algolia or client-side fuzzy search)
• Version control for doc pages (auto pull Git commit messages)
• Visual timeline of project milestones

🔗 Links

• Astro Docs
• Azure Static Web Apps

🧱 Azure Terraform Bootstrap for Client Projects

Summary:
Built a reusable Terraform bootstrap script for onboarding new Azure clients with GitHub integration. The script provisions a resource group, Terraform state backend, service principal, and sets up a secure GitHub repo with preconfigured CI/CD workflows.

🚀 What I Did

• Wrote an idempotent PowerShell bootstrap script
• Created Terraform state storage (resource group + blob container)
• Generated Azure service principal scoped to the RG
• Set up GitHub repo with secrets and Terraform GitHub Actions workflow
• Included IP whitelist automation and Super Linter integration

⚙️ Tech Stack

• Terraform
• Azure CLI / PowerShell
• GitHub Actions
• Azure Storage
• Azure AD (Service Principal)

🧠 Challenges & Solutions

• Idempotent scripting: Ensured resources are reused if they already exist
• OIDC constraints: Workaround for limited OIDC support in non-main branches
• Secure secret management: Automated secret injection into GitHub

🔗 Links

• Example GitHub Workflow