Documentation Index

Fetch the complete documentation index at: https://mintlify.com/KevinhosUTP/Automatizacion-Lurwis/llms.txt

Use this file to discover all available pages before exploring further.

​

Production Deployment

​

Pre-Deployment Checklist

​

Infrastructure Requirements

​

Security Hardening

​

Network Security

your-domain.com {
    reverse_proxy n8n:5678
    
    # Security headers
    header {
        Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
        X-Frame-Options "DENY"
        X-Content-Type-Options "nosniff"
        Referrer-Policy "strict-origin-when-cross-origin"
    }
    
    # Rate limiting
    rate_limit {
        zone webhook {
            key {remote_host}
            events 100
            window 1m
        }
    }
}

# Allow HTTPS
ufw allow 443/tcp

# Allow SSH (restrict to your IP)
ufw allow from YOUR_IP to any port 22

# Deny all other incoming
ufw default deny incoming
ufw default allow outgoing
ufw enable

-- Enable Row Level Security
ALTER TABLE pedidos_picanteria ENABLE ROW LEVEL SECURITY;

-- Create policies
CREATE POLICY pedidos_isolation ON pedidos_picanteria
    USING (telefono = current_setting('app.current_user'));

x-hub-signature: sha1=...
x-hub-signature-256: sha256=...

​

Authentication & Authorization

# n8n Access Control
N8N_BASIC_AUTH_ACTIVE=true
N8N_BASIC_AUTH_USER=admin
N8N_BASIC_AUTH_PASSWORD=<strong-password>

# Additional Security
N8N_SECURE_COOKIE=true
N8N_JWT_AUTH_ACTIVE=true

​

High Availability Architecture

​

Recommended Production Architecture

┌─────────────────────────────────────────┐
│         Load Balancer / Caddy            │
│        (SSL Termination)                 │
└────────────┬────────────────────────────┘
             │
    ┌────────┴────────┐
    │                 │
┌───▼───┐        ┌───▼───┐
│ n8n   │        │ n8n   │  (Active-Passive)
│Primary│        │Standby│
└───┬───┘        └───────┘
    │
    ├──────────┬─────────────┬──────────────┐
    │          │             │              │
┌───▼───┐  ┌──▼──┐     ┌────▼────┐   ┌────▼─────┐
│Postgres│  │Redis│     │ MongoDB │   │  Gemini  │
│(RDS)   │  │     │     │(Replica │   │   API    │
└────────┘  └─────┘     │  Set)   │   └──────────┘
                        └─────────┘

​

Container Orchestration

version: '3.8'

services:
  n8n:
    image: n8nio/n8n:latest
    restart: unless-stopped
    ports:
      - "5678:5678"
    environment:
      - NODE_ENV=production
      - N8N_BASIC_AUTH_ACTIVE=true
      - N8N_BASIC_AUTH_USER=${N8N_USER}
      - N8N_BASIC_AUTH_PASSWORD=${N8N_PASSWORD}
      - WEBHOOK_URL=${WEBHOOK_URL}
      - EXECUTIONS_PROCESS=main
      - N8N_METRICS=true
    volumes:
      - n8n_data:/home/node/.n8n
      - ./backups:/backups
    healthcheck:
      test: ["CMD", "wget", "--spider", "http://localhost:5678/healthz"]
      interval: 30s
      timeout: 10s
      retries: 3

  caddy:
    image: caddy:latest
    restart: unless-stopped
    ports:
      - "80:80"
      - "443:443"
    volumes:
      - ./Caddyfile:/etc/caddy/Caddyfile
      - caddy_data:/data
      - caddy_config:/config
    depends_on:
      - n8n

volumes:
  n8n_data:
  caddy_data:
  caddy_config:

apiVersion: apps/v1
kind: Deployment
metadata:
  name: n8n-lurwis
spec:
  replicas: 2
  selector:
    matchLabels:
      app: n8n-lurwis
  template:
    metadata:
      labels:
        app: n8n-lurwis
    spec:
      containers:
      - name: n8n
        image: n8nio/n8n:latest
        ports:
        - containerPort: 5678
        env:
        - name: WEBHOOK_URL
          value: "https://your-domain.com"
        - name: N8N_BASIC_AUTH_ACTIVE
          value: "true"
        envFrom:
        - secretRef:
            name: n8n-secrets
        resources:
          requests:
            memory: "2Gi"
            cpu: "1000m"
          limits:
            memory: "4Gi"
            cpu: "2000m"
        livenessProbe:
          httpGet:
            path: /healthz
            port: 5678
          initialDelaySeconds: 30
          periodSeconds: 10
---
apiVersion: v1
kind: Service
metadata:
  name: n8n-lurwis-service
spec:
  selector:
    app: n8n-lurwis
  ports:
  - protocol: TCP
    port: 80
    targetPort: 5678
  type: LoadBalancer

​

Scaling Strategy

​

Vertical Scaling

# CPU and memory
docker stats n8n-lurwis

# Workflow execution times
# Check n8n metrics endpoint
curl http://localhost:5678/metrics

deploy:
  resources:
    limits:
      cpus: '4'
      memory: 8G
    reservations:
      cpus: '2'
      memory: 4G

​

Horizontal Scaling

EXECUTIONS_MODE=queue
QUEUE_BULL_REDIS_HOST=your-redis-host
QUEUE_BULL_REDIS_PORT=6379
QUEUE_BULL_REDIS_PASSWORD=your-password

​

Database Optimization

-- Create indexes for common queries
CREATE INDEX idx_pedidos_telefono ON pedidos_picanteria(telefono);
CREATE INDEX idx_pedidos_estado ON pedidos_picanteria(estado_pedido);
CREATE INDEX idx_pedidos_fecha ON pedidos_picanteria(created_at);

-- Vacuum regularly
VACUUM ANALYZE pedidos_picanteria;

# PgBouncer configuration
[databases]
picanteria_db = host=postgres-host port=5432 dbname=picanteria_db

[pgbouncer]
pool_mode = session
max_client_conn = 1000
default_pool_size = 25

# redis.conf
maxmemory 4gb
maxmemory-policy allkeys-lru

# Enable AOF persistence
appendonly yes
appendfsync everysec

// Create indexes for memory collections
db.historial_pedidos.createIndex({ sessionId: 1, createdAt: -1 });
db.historial_clasificador.createIndex({ sessionId: 1, createdAt: -1 });

// Set TTL for automatic cleanup (30 days)
db.historial_pedidos.createIndex(
  { "createdAt": 1 },
  { expireAfterSeconds: 2592000 }
);

​

Monitoring & Observability

​

Application Monitoring

N8N_METRICS=true
N8N_METRICS_INCLUDE_DEFAULT_METRICS=true
N8N_METRICS_INCLUDE_WORKFLOW_ID_LABEL=true

# prometheus.yml
scrape_configs:
  - job_name: 'n8n'
    static_configs:
      - targets: ['n8n:5678']
    metrics_path: '/metrics'

​

Error Tracking

1. Create a dedicated error workflow
2. Use Error Trigger node
3. Add WhatsApp node with your notification number
4. Link both main workflows to this error workflow

​

Log Management

# Docker Compose logging
services:
  n8n:
    logging:
      driver: "json-file"
      options:
        max-size: "100m"
        max-file: "10"

• Use ELK Stack (Elasticsearch, Logstash, Kibana)
• Or cloud solutions: CloudWatch, Stackdriver, Datadog

​

Backup & Disaster Recovery

​

Automated Backups

#!/bin/bash
# backup-postgres.sh

BACKUP_DIR="/backups/postgres"
DATE=$(date +%Y%m%d_%H%M%S)
FILE="$BACKUP_DIR/picanteria_db_$DATE.sql.gz"

# Create backup
pg_dump -h $POSTGRES_HOST -U $POSTGRES_USER picanteria_db | gzip > $FILE

# Upload to S3
aws s3 cp $FILE s3://your-bucket/backups/postgres/

# Cleanup old backups (keep 30 days)
find $BACKUP_DIR -name "*.sql.gz" -mtime +30 -delete

0 2 * * * /usr/local/bin/backup-postgres.sh

#!/bin/bash
# backup-mongodb.sh

BACKUP_DIR="/backups/mongodb"
DATE=$(date +%Y%m%d_%H%M%S)

# Create backup
mongodump --uri="$MONGODB_CONNECTION_STRING" \
  --db=picanteria_db \
  --out=$BACKUP_DIR/$DATE

# Compress
tar -czf $BACKUP_DIR/mongo_$DATE.tar.gz -C $BACKUP_DIR $DATE
rm -rf $BACKUP_DIR/$DATE

# Upload to S3
aws s3 cp $BACKUP_DIR/mongo_$DATE.tar.gz s3://your-bucket/backups/mongodb/

# Cleanup
find $BACKUP_DIR -name "*.tar.gz" -mtime +30 -delete

#!/bin/bash
# backup-n8n.sh

BACKUP_DIR="/backups/n8n"
DATE=$(date +%Y%m%d_%H%M%S)

# Export workflows via API
curl -u $N8N_USER:$N8N_PASSWORD \
  http://localhost:5678/api/v1/workflows \
  > $BACKUP_DIR/workflows_$DATE.json

# Backup credentials (encrypted)
docker exec n8n tar czf - /home/node/.n8n > $BACKUP_DIR/n8n_data_$DATE.tar.gz

# Upload to S3
aws s3 sync $BACKUP_DIR s3://your-bucket/backups/n8n/

​

Disaster Recovery Plan

​

Performance Optimization

​

Workflow Optimization

-- Uses TRIM for accurate matching
WHERE TRIM(telefono) = TRIM('...')

-- Filters inactive orders
AND estado_pedido NOT IN ('entregado', 'cancelado')

-- Limits results
LIMIT 1

​

API Rate Limiting

• Free tier: 60 requests/minute
• Implement exponential backoff
• Use faster models for classification

• Tier 1: 1,000 messages/day
• Tier 2: 10,000 messages/day
• Monitor usage in Meta dashboard

​

Deployment Process

​

Blue-Green Deployment

# Deploy to blue environment
docker-compose -f docker-compose.blue.yml up -d

# Verify health
curl https://blue.your-domain.com/healthz

# Caddy
your-domain.com {
    reverse_proxy blue:5678
}

​

Production Checklist

​

Security

• SSL certificates installed and valid
• All default passwords changed
• Firewall rules configured
• Database connections use SSL/TLS
• Row Level Security enabled on PostgreSQL
• API tokens rotated and secured
• Error notifications configured

​

Infrastructure

• Reverse proxy (Caddy) configured
• Health checks enabled
• Auto-restart policies set
• Resource limits configured
• Backup system automated
• Monitoring dashboards created

​

Application

• Both workflows imported and activated
• All credentials configured in n8n
• WhatsApp webhook verified with Meta
• Database schema migrated
• Redis connection tested
• AI models responding correctly

​

Testing

• End-to-end message flow tested
• Order creation verified
• Database writes confirmed
• Error handling validated
• Load testing completed
• Failover procedures tested

​

Documentation

• Runbooks created for operations team
• Disaster recovery plan documented
• Escalation procedures defined
• Architecture diagrams updated

​

Maintenance Windows

​

Planned Maintenance

• Weekly: Database optimization (5 minutes)
• Monthly: Security updates (30 minutes)
• Quarterly: Major version upgrades (2 hours)

• Announce 48 hours in advance
• Use low-traffic windows (3-5 AM local time)
• Post status updates during maintenance

​

Support & Escalation

​

On-Call Rotation

• Error workflow sends WhatsApp notifications
• Monitoring alerts via email/SMS

• Review logs and metrics
• Apply standard troubleshooting
• Escalate if unresolved in 30 minutes

• Deep investigation
• Code fixes if needed
• Post-mortem after resolution

​

Post-Deployment

​

Additional Resources

• n8n Production Documentation
• WhatsApp Business API Best Practices
• PostgreSQL Performance Tuning
• MongoDB Production Checklist