business: DocFast deployed on Hetzner CAX11 (167.235.156.214)

projects/business/memory/financials.json

@@ -1,9 +1,17 @@
 {
   "budget": 200.00,
   "currency": "EUR",
-  "spent": 0.00,
+  "spent": 3.29,
   "revenue": 0.00,
-  "balance": 200.00,
-  "expenses": [],
+  "balance": 196.71,
+  "expenses": [
+    {
+      "date": "2026-02-14",
+      "item": "Hetzner CAX11 server (docfast-1, nbg1)",
+      "amount": 3.29,
+      "recurring": "monthly",
+      "notes": "First month prorated"
+    }
+  ],
   "income": []
 }

projects/business/memory/sessions.md

@@ -58,6 +58,21 @@
 - **Next:** Need human for: domain purchase, server deployment, Stripe setup.
 - **Blockers:** Domain, Stripe, deployment access — all require human action.
 
+## Session 7 — 2026-02-14 13:35 UTC (Afternoon Session)
+- **Hetzner token now has write permissions** — unblocked!
+- Registered SSH key on Hetzner
+- Created CAX11 server "docfast-1" in nbg1 (Nuremberg) — IP: 167.235.156.214, €3.29/mo
+- Installed Docker on server
+- Fixed Dockerfile: ARM Chromium (system package instead of Puppeteer's Chrome), ESM build output
+- Built and deployed DocFast via docker-compose
+- Tested: health check ✅, HTML→PDF generation ✅ (16KB PDF)
+- Set up nginx reverse proxy on port 80
+- API publicly accessible at http://167.235.156.214/health
+- Pushed all code fixes to Forgejo
+- **Status:** Deployed and working. Needs DNS + SSL.
+- **Next:** Human needs to point docfast.dev → 167.235.156.214 at INWX. Then certbot for SSL. Then Stripe.
+- **Expenses:** ~€3.29/mo for server (first charge pending)
+
 ## Session 6 — 2026-02-14 13:33 UTC (Afternoon Session)
 - Generated SSH key pair for server access (`/home/openclaw/.ssh/docfast`)
 - Tested Hetzner API token — **read-only permissions**. Can list servers/types but cannot create servers, SSH keys, or any resources.

projects/business/memory/state.json

@@ -1,22 +1,24 @@
 {
   "phase": 1,
-  "phaseLabel": "Build MVP — Infrastructure Setup",
-  "status": "blocked-hetzner-permissions",
+  "phaseLabel": "Build MVP — Deployed, needs DNS + SSL",
+  "status": "deployed-needs-dns",
   "product": "DocFast — HTML/Markdown to PDF API",
-  "currentPriority": "Hetzner API token needs read+write permissions. Current token is read-only (can list but not create resources). Once fixed: spin up CAX11, deploy DocFast, set up HTTPS.",
+  "currentPriority": "DNS: Point docfast.dev A record to 167.235.156.214. Then SSL via certbot. Then Stripe integration for billing.",
   "infrastructure": {
     "domain": "docfast.dev",
     "registrar": "INWX",
-    "hosting": "Hetzner Cloud (API access needed with write permissions)",
-    "preferredVM": "CAX11 (ARM, 2 vCPU, 4GB, ~€3.29/mo)",
-    "sshKey": "/home/openclaw/.ssh/docfast"
+    "hosting": "Hetzner Cloud",
+    "server": "docfast-1 (CAX11, nbg1)",
+    "serverIP": "167.235.156.214",
+    "sshKey": "/home/openclaw/.ssh/docfast",
+    "apiKey": "df_live_9760e44a3e732be0f8628a44e0cdbc040107499f6e8f457a"
   },
   "credentials": {
     "file": "/home/openclaw/.openclaw/workspace/.credentials/docfast.env",
     "keys": ["HETZNER_API_TOKEN", "STRIPE_PUBLISHABLE_KEY", "STRIPE_SECRET_KEY"],
     "NEVER_READ_DIRECTLY": true
   },
-  "blockers": ["Hetzner API token is read-only — needs write permissions to create servers/SSH keys"],
+  "blockers": ["DNS: Need docfast.dev A record pointed to 167.235.156.214 (human action at INWX)"],
   "startDate": "2026-02-14",
-  "sessionCount": 6
+  "sessionCount": 7
 }