Rob: - EC2 micro instance - secure.eha.io Route53 mapping - Docker-compose setup with - LetEncrypt cert container - Pomerium container https://www.pomerium.com/docs/install/ - GH Action to restart containers on server when merging to main Noam: - Cognito OpenID config for pomerium - Rclone process config - Set up cognito pool with google auth - note for dual logins: https://stackoverflow.com/questions/59635482/aws-cognito-best-practice-to-handle-same-user-with-same-email-address-signing Status: - instance up; login with: `ssh -i secure.pem ubuntu@52.207.30.88` - `secure.pem` added to the repo - Route53 mapping added - `ansible-playbook -b -vvv deploy-secure.yml -i hosts`