Hello everybody, I wanted to ask you for your opinion about my current setup. I'm especially interested in your opinion, if I could use this setup for a first production state, before going further. Here is my current setup. DB: AWS RDS -> Connection details like password and username are under the PRISMA_CONFIG in the docker-compose.yml. Prisma server: Runs "locally" (on the server) in a docker container. Has a secret defined in the prisma.yml file (which is also used in the

new Prisma

statement in the index.js of the graphql server). The playground is disabled (it should not be visible to anyone). I have a managementApiSecret in the PRISMA_CONFIG, which is also in the .env to protect the deployment process (which is probably not necessary, as the container is running locally as mentioned earlier). GraphQl server: Standard graphql server using yoga. The only thing of my api, that is actually exposed (accessible from outside), runs on the same machine, as the prisma server and accesses the service via localhost. Currently only accessible via

hostip.port

after being started with

yarn start

, but will be set up as node.js server (w/ daemon) and managed via nginx. I will also setup a ssl cert for this and direct a subdomain (like api.example.com) of my maindomain to this server and route that trough to the port of the running node.js server. What do you think? Did I forget anything? Should I pay attention to something? Whats your opinion? Thanks in advance! 😉

The setup you described sounds reasonable to me 👍