All posts
Product

1-Click Deployment: What Actually Happens in Those 60 Seconds

You click "Deploy" — and 60 seconds later a fully configured open-source app is live with SSL, a database, and automatic backups. Here's the complete technical breakdown of what Syvera ClickCloud does behind the scenes.

L

Leon Müller

Product Engineer

18. März 20268 min read

The problem with "just self-host it"

Open-source software is incredible. DocuSeal, n8n, Nextcloud, WordPress, Gitea — these tools rival their SaaS counterparts feature-for-feature and cost a fraction of the price. The catch? "Just self-host it" hides a mountain of operational work.

To run a production-grade instance of almost any open-source app, you typically need to:

  1. Provision a server (choose region, OS, instance size)
  2. Configure a firewall and SSH access
  3. Install the runtime (Node, PHP, Python, Ruby...)
  4. Set up a database (PostgreSQL, MySQL, Redis...)
  5. Install and configure the application
  6. Set up a reverse proxy (Nginx or Caddy)
  7. Obtain and configure a TLS certificate (Let's Encrypt)
  8. Configure automatic certificate renewal
  9. Set up log rotation and monitoring
  10. Write a backup strategy and test it

For an experienced sysadmin, that's 2–4 hours. For a developer who "just wants the app running", it's a half-day of frustration — or a week of learning. For a non-technical team, it's simply not an option.

Syvera ClickCloud compresses all of that into a single click.

The 60-second timeline

Here is exactly what happens — in order — when you click "Deploy" on a ClickCloud app.

0–5 seconds: Infrastructure provisioning

Syvera's orchestration layer picks up the deployment request and spins up a fresh virtual machine in the nearest EU data center. The VM is pre-configured with:

  • A hardened Debian Linux base image
  • Automatic security updates enabled
  • A non-root service user for the application
  • UFW firewall rules: only ports 80, 443, and a single SSH port open
  • Fail2ban for brute-force protection

The machine gets a private IPv4, an IPv6 address, and is registered with Syvera's internal DNS.

5–20 seconds: Dependency installation

The orchestration agent SSHs into the new VM and runs the app-specific provisioning script. For WordPress, that means:

  • Installing Nginx, PHP 8.3-FPM, and the required PHP extensions (curl, mbstring, xml, gd, zip...)
  • Installing MariaDB and creating a dedicated database + user
  • Installing wp-cli for command-line WordPress management
  • Downloading WordPress core from the official repository and verifying the checksum

For Node.js apps like n8n, it installs the correct Node version via nvm, runs npm install, and configures a systemd service unit for process management.

20–35 seconds: Application configuration

With dependencies in place, the app is configured for production:

  • Database credentials are generated randomly and stored in the app's environment file (never hardcoded)
  • For WordPress: wp-config.php is generated with the correct database connection, randomised secret keys, and production-safe debug settings
  • For n8n: environment variables for database URL, encryption key, and webhook URL are written to /etc/n8n/.env
  • Nginx virtual host configuration is written with correct root paths, PHP-FPM socket, and gzip compression rules

35–50 seconds: TLS certificate

This is where most manual setups slow down. Syvera runs Certbot against Let's Encrypt's ACME API:

  1. Certbot creates a temporary .well-known/acme-challenge/ file
  2. Let's Encrypt validates the domain via HTTP-01 challenge
  3. The TLS certificate (plus intermediate chain) is issued and installed
  4. Nginx is reloaded with the HTTPS configuration
  5. HTTP-to-HTTPS redirect is enabled automatically
  6. A systemd timer is created to renew the certificate 30 days before expiry — forever

50–60 seconds: Health check & handover

Before the deployment is marked "live", Syvera runs a health check:

  • Makes an HTTPS request to the app's URL
  • Verifies a 200 OK response
  • Checks that the TLS certificate is valid and not expired

If the health check passes, the deployment is marked successful and you receive the URL. If it fails, the orchestration layer retries once and, if still failing, rolls back and notifies you — you're never left with a broken, unreachable instance.

What runs continuously after deployment

The 60-second window only covers initial setup. ClickCloud keeps running a set of background services so you don't have to think about operations:

Automatic backups

Every night at 02:00 local time, a backup job runs:

  • Database dump (via mysqldump or pg_dump) compressed with gzip
  • File backup of uploaded media, user data, and configuration
  • Encrypted and stored in Syvera's object storage (EU region)
  • Retained for 30 days — you can restore any snapshot from the dashboard with one click

Health monitoring

A lightweight monitoring agent checks the app every 60 seconds. If it detects an unresponsive process:

  1. Attempts a graceful restart via systemd
  2. If the restart succeeds, logs the incident
  3. If the app fails three consecutive checks, escalates to a full VM restart and notifies you by email

Security updates

The VM's OS packages are updated automatically via unattended-upgrades — critical security patches are applied without manual intervention. Application-level updates (WordPress core, plugin updates) are surfaced in the Syvera dashboard for you to review before applying.

Why this matters for your team

The 60-second claim is not a marketing number — it's the literal wall-clock time from click to live HTTPS app. But the more important number is the operational overhead saved over the lifetime of the deployment:

TaskManual self-hostingSyvera ClickCloud
Initial setup2–4 hours60 seconds
TLS renewalManual (or misconfigured cron)Automatic
OS security patchesWeekly manual interventionAutomatic
BackupsWrite scripts, test restoresDaily, one-click restore
MonitoringSet up Uptime Robot, Grafana...Included
ScalingSSH + resize + reconfigureDashboard slider

For a small team or a solo founder, that's the difference between your side project living or dying. For an enterprise IT department, it's the difference between a 3-week procurement and procurement cycle and a tool your team can use today.

Which apps are available?

Syvera ClickCloud currently supports deployment of:

  • DocuSeal — open-source e-signature platform
  • WordPress — the world's most popular CMS and WooCommerce host
  • n8n — workflow automation and integration platform
  • More apps added regularly — see the full marketplace →

Every app goes through the same rigorous provisioning pipeline described above. No half-baked Docker Compose files, no "works on my machine" configurations — production-grade infrastructure, every time.

Deploy your first app in 60 seconds →

Ready to build something?

Start for free — no credit card required.

Start building
Back to all posts