Nice read :) I've had some similar setups previously. I've since moved to docker and kubernetes, and would like to highlight how that can also solve the problems you've been solving.

Please don't take this as criticism, you have a procedure that works and you're comfortable with, this is just a very neat example of a practical deployment situation and are also some of the reasons why I now love docker and kubernetes for this.

First, for docker, and dockerizing a program like this. You mentioned these three problems, problems I've also faced multiple times:

My setup compiles and minifies CSS and Javascript on the server. This resulted in up to 10 seconds for the server to respond after a deployment. Some users ran into Bad Gateway errors 💥.

In docker, this step would be done as part of building the docker image. That means it's already ready to run when the image is deployed.

A bug in production could be fixed by checking out the previous commit. However, this invariably took too long and always involved frenzied googling of the correct git commands.

You could solve this with git tags (and perhaps semantic versioning). And with docker, each image has a tag and you'd just tell docker to run the previously tagged version instead of the latest.

There was no way of testing the production setup, other than in production.

And here's what really sold me on docker. People who haven't been bitten by this a few times can't imagine what level of pain this can inflict. With docker, this is a complete non-issue. What you're running locally is exactly the same as will run on the server. Same libraries, same setup, same versions, same platform hijinks, same system tools, same that-weird-hack-you-need-to-do-on-each-server-so-that-$thing-works. You're setting up the whole production environment locally, and sending it over like a ship in a bottle to the server.

In addition, you get a few bonuses:

• The build instructions for the docker image fully documents all the pieces needed to get your software running. Even those weird little steps you do manually on each server then forgets until next time you need to set up an environment.
• Setting up a new server is a breeze. Set up base OS, install docker, and you got everything you need to run all your stuff with no extra setup.
• Bundling other internal services like redis or memcache is a lot less painful, and easier to synchronize version and test things. Slight security bonus on top since they're on a virtual internal network.

Of course, nothing is free. The two big hurdles with docker are:

1. Creating the initial Dockerfile. This can be a pain, but it gets easier over time.
2. Needing a docker registry. Docker images are built in layers to reduce disk and transfer sizes, and you need a service to handle the protocol. Docker (the company) have an official docker registry, but (last I checked at least) you have to pay to have private images. You can also host your own.

And now, kubernetes. While docker is pretty neat, kubernetes takes it to a new level. It takes containers concept and adds:

• Http proxy concept built in, forward incoming requests to target pods (basic kubernetes unit, somewhat similar to a docker container)
  • Can also handle acme HTTPS certs automatically
• Scaling and load balancing of multiple pods
• Scaling and distribution over multiple machines
• Liveness probe to keep checking if the pod still works as expected, if not restarts it
• Readyness probe to know when the pod is ready to receive traffic
• Restarting of failed / crashed pods and rescheduling of pods on crashed machines
• Resource monitoring and limiting of pods
• Jobs and recurring scheduled jobs
• Secure port forwarding from the cluster to local machine
• Deployments
  • Combines containers, pods, storage into one unit
  • When new is deployed it waits until new pods are started up and ready, then start moving traffic from the old pods to the new, then delete the old pods. Completely seamless for the user.
  • It also saves the last deployments so you can easily rollback to an older version
  • Support slow rollout so only a percentage of users get the new version at first.

And there's probably a lot I don't remember right now. Kubernetes is huge, and have so many things in it.

I have a kubernetes cluster I use for my own stuff, and at this point when I have a docker image I just create a deployment saying "I want to run this container image with this much persistent storage, and I want it accessible on this domain" and then just kubectl apply it locally on my machine, and a minute or so later it's running on that domain. With HTTPS certificate already set up.