23 min read

> "It works on my laptop" is the seven most dangerous words in software development. The second most dangerous: "I'll deal with deployment later." — Marcus Webb, Acme Corp IT

In This Chapter

Chapter 38: Deploying Python to the Cloud

"It works on my laptop" is the seven most dangerous words in software development. The second most dangerous: "I'll deal with deployment later." — Marcus Webb, Acme Corp IT

What You Will Learn

By the end of this chapter, you will be able to:

  • Explain what deployment means and why it is different from development
  • Understand what Docker containers are and why they solve the environment consistency problem
  • Write a Dockerfile for a Flask application and build a container image locally
  • Use Docker Compose for local development with multiple services
  • Deploy a Flask application to Render using the push-to-deploy workflow
  • Understand what environment variables are in a production context and how to configure them on a platform
  • Package and deploy a Python function to AWS Lambda with a scheduled trigger
  • Read application logs and understand what they tell you when something breaks
  • Describe CI/CD concepts and set up a basic GitHub Actions workflow
  • Make informed decisions about deployment costs for small-scale business tools
  • Deploy both the Acme Corp dashboard and Maya's client portal to production

Opening Scenario: The Gap Between Building and Shipping

The Acme Corp internal dashboard works beautifully on Priya's laptop. Sandra Chen has been accessing it at http://priya-laptop:5000 when she is in the office and Priya's computer is on. This is fine for three weeks. Then Priya takes two days off and her laptop sleeps. Sandra is on a call in Chicago, needs the numbers, and gets a connection refused error.

This is not a Flask problem. It is not a Python problem. It is a deployment problem.

"Runs on my laptop" is not a deployment strategy. A deployment strategy means your application runs on infrastructure that does not depend on any one person's workstation being awake. It means colleagues in other offices can access it. It means if the server crashes at 2 a.m., it comes back up without anyone calling Priya.

Chapter 37 taught you to build. Chapter 38 teaches you to ship.

38.1 What Deployment Actually Means

Deployment is the process of moving your application from a development environment — where it runs on your machine for your own testing — to a production environment, where it runs on infrastructure that other people depend on.

This sounds like a simple move, but it surfaces a category of problems that development hides:

Environment differences. Your machine has specific Python version, specific package versions, specific operating system behavior. A server has different ones. Code that runs perfectly locally can break in production for reasons that have nothing to do with your logic.

Configuration management. In development, your .env file lives on your machine. In production, there is no .env file — there is a server, and you need to provide configuration to that server through its own mechanism.

Process management. In development, you run python app.py and it stays up as long as you want. In production, you need the process to start automatically when the server boots, restart if it crashes, and run as a background service rather than a terminal window.

Concurrency. One developer testing an application generates one or two requests per minute. A team of twenty people using a dashboard generates bursts of concurrent requests. The development server handles one at a time. Production infrastructure needs to handle many simultaneously.

Security. In development, you run with debug=True and hardcoded defaults for convenience. In production, debug mode off, secrets from environment variables, HTTPS if the application is internet-accessible.

Logging and monitoring. In development, you read the console. In production, the console is a terminal you are not watching. Structured logs, error alerts, and uptime monitoring are how you know when something is wrong.

Deployment is not an afterthought. It is half of building useful software.

38.2 Docker: Solving "It Works on My Machine"

The phrase "it works on my machine" is a deployment anti-pattern with a specific cause: the application and its environment are entangled. The code depends on having Python 3.11, Flask 3.0.3, pandas 2.1.0, and a particular operating system configuration. When the destination machine has slightly different versions or configuration, the behavior changes.

Docker solves this by packaging the application and its entire environment into a single, portable unit called a container.

Containers and Images

A Docker image is a snapshot of a filesystem — an operating system, a Python installation, your application code, and all its dependencies, frozen together. You build an image once.

A Docker container is a running instance of an image. You can run the same image on your laptop, a colleague's machine, a cloud server, or five cloud servers simultaneously, and the behavior will be identical because the environment is identical.

The analogy: an image is like a class definition. A container is like an instance of that class.

Why This Matters for Business Tools

Without Docker: 1. Install Python on the server 2. Create a virtual environment 3. Install requirements 4. Copy your code 5. Configure environment variables 6. Start the application 7. Debug the inevitable differences between your machine and the server

With Docker: 1. Build the image (defines everything above in a reproducible file) 2. Run the container on the server

Step 1 can be tested locally. If it works locally, it works on the server. The "works on my machine" problem is gone.

Writing a Dockerfile

A Dockerfile is a text file that describes how to build a Docker image. Each instruction in the file adds a layer to the image.

Here is the complete Dockerfile for the Acme Corp Flask application:

# Start from an official Python image on Alpine Linux.
# Alpine is a minimal Linux distribution — the resulting image is
# significantly smaller than using python:3.11 (which is Debian-based).
# python:3.11-alpine produces ~70MB images; python:3.11 produces ~900MB.
FROM python:3.11-alpine

# Set environment variables that affect Python behavior inside the container.
# PYTHONUNBUFFERED=1 ensures Python output goes to logs immediately,
# not buffered. PYTHONDONTWRITEBYTECODE=1 skips .pyc file creation.
ENV PYTHONUNBUFFERED=1 \
    PYTHONDONTWRITEBYTECODE=1

# Create and set the working directory inside the container.
# All subsequent commands run relative to this directory.
WORKDIR /app

# Install system dependencies that some Python packages require.
# gcc and musl-dev are needed to compile packages with C extensions on Alpine.
# Clean the apk cache afterward to keep the image small.
RUN apk add --no-cache gcc musl-dev libffi-dev

# Copy requirements first, before copying application code.
# Docker caches each layer. If requirements.txt hasn't changed,
# Docker reuses the cached pip install layer, making rebuilds faster.
COPY requirements.txt .

# Install Python dependencies.
# --no-cache-dir keeps the image smaller by not storing the pip download cache.
RUN pip install --no-cache-dir -r requirements.txt

# Now copy the rest of the application code.
# This layer is rebuilt whenever any source file changes.
COPY . .

# Create a non-root user for running the application.
# Running as root inside a container is a security risk.
RUN adduser -D appuser
USER appuser

# Document that the application listens on port 8000.
# This does not publish the port — that is done at container run time.
EXPOSE 8000

# The command that runs when a container starts.
# Uses Gunicorn with 4 worker processes for production.
# Replace "app:app" if your Flask instance is in a different file or variable.
CMD ["gunicorn", "--workers", "4", "--bind", "0.0.0.0:8000", "app:app"]

Building and Running the Container

# Build the image — "acme-dashboard" is the tag (name), "." is the build context
docker build -t acme-dashboard .

# Run the container
# -p 8000:8000 maps port 8000 on your machine to port 8000 in the container
# --env-file .env passes environment variables from your .env file
docker run -p 8000:8000 --env-file .env acme-dashboard

Navigate to http://localhost:8000. You are now running the application inside a container, not as a bare Python process.

To stop the container: Ctrl+C in the terminal where it is running, or docker stop <container_id>.

Docker Image Layers and Caching

The order of COPY and RUN instructions in a Dockerfile matters for build performance. Docker caches each layer. When you rebuild the image, Docker only re-executes layers where something changed and all layers after it.

This is why COPY requirements.txt . comes before COPY . .. Dependencies change far less often than application code. If you put COPY . . first, every code change would invalidate the pip install cache and re-install all packages — turning a 10-second rebuild into a 3-minute one.

Always structure Dockerfiles with most-stable content early, least-stable content late.

38.3 Docker Compose for Local Development

Running a single container with docker run is straightforward. Real applications often need multiple services: the web application, a database, a cache. Docker Compose manages multi-container setups as a single unit, defined in a YAML file.

Even for a single-container application, Docker Compose is useful in development because it provides a declarative, reproducible way to start your development environment:

# docker-compose.yml
version: "3.9"

services:
  web:
    build: .
    ports:
      - "8000:8000"
    env_file:
      - .env
    volumes:
      # Mount the local source code into the container.
      # Changes to local files are reflected immediately in the container,
      # without rebuilding the image — essential for development.
      - ./app.py:/app/app.py
      - ./templates:/app/templates
      - ./static:/app/static
      - ./data:/app/data
    # Override the CMD from the Dockerfile for development.
    # Use Flask's development server with auto-reload instead of Gunicorn.
    command: python app.py
    restart: unless-stopped

Start the development environment:

docker-compose up

Stop it:

docker-compose down

The volumes: section mounts local directories into the running container. When you edit a template file in your editor, the change appears immediately in the container — you do not need to rebuild the image. This is the development workflow: compose up, edit code, see changes, compose down.

The command: python app.py override replaces Gunicorn with Flask's dev server for development, giving you auto-reload. In production (using the Dockerfile's CMD directly), Gunicorn runs.

38.4 Deploying to Platform-as-a-Service: Render

Platform-as-a-Service (PaaS) providers handle the server infrastructure so you focus on your application. You provide the code and configuration; the platform handles servers, networking, scaling, and SSL certificates.

Why Render (and Not Heroku)

Heroku was the dominant Python PaaS for years. In 2022, Heroku eliminated its free tier, making it significantly more expensive for small-scale deployments. Render has filled this gap with a generous free tier, transparent pricing, and strong Python/Flask support. Railway is a competitive alternative with similar characteristics.

For the purposes of this chapter, Render is recommended: - Free tier supports one web service (suitable for internal tools and demos) - Paid tier starts at $7/month per service for always-on deployments - Native Docker support - GitHub integration with automatic deployments on push - Environment variable management through the dashboard - Persistent disk storage available - PostgreSQL databases available on the platform

The Deployment Workflow

The most common deployment workflow for Render:

  1. Push to GitHub — your application code lives in a GitHub repository
  2. Connect to Render — Render watches your repository
  3. Push a commit — Render automatically detects the change, builds your Docker image, and deploys the new version
  4. Monitor the deploy — Render's dashboard shows build logs and deploy status

This is the push-to-deploy model. Once configured, deploying a new version of your application is git push. No SSH to servers, no manual pip install, no copying files.

Configuring Render

At render.com:

  1. Create a new account (free)
  2. Connect your GitHub account
  3. Click "New Web Service"
  4. Select your repository

  5. Configure: - Name: acme-dashboard (appears in the URL) - Environment: Docker (uses your Dockerfile automatically) - Instance Type: Free (for a demo) or Starter ($7/month for always-on) - Branch: main (deploys when main is pushed)

  6. Add environment variables in the "Environment" section: - SECRET_KEY — a long random string (use a password manager to generate one) - DASHBOARD_PASSWORD — your chosen password - FLASK_DEBUGfalse (always false in production)

  7. Click "Create Web Service"

Render builds your Docker image, deploys the container, and provides a URL like https://acme-dashboard.onrender.com.

What Render Does Behind the Scenes

When you push a commit to your connected GitHub repository, Render: 1. Clones your repository 2. Runs docker build using your Dockerfile 3. Runs health checks to verify the container starts successfully 4. Replaces the running container with the new one (zero-downtime deployment on paid plans) 5. Updates the DNS so the URL now points to the new version

You get a full deployment pipeline — Docker build, health check, traffic cutover — without managing any of this infrastructure yourself.

Environment Variables in Production

The critical difference between development and production environment variable management:

Development: A .env file on your machine, loaded by python-dotenv, never committed to version control.

Production: The platform provides environment variables through its own mechanism (Render's "Environment" settings, Railway's environment panel, Heroku's config vars). Your application reads them the same way — os.environ.get("KEY") — but they are never stored in a file.

This means: - No .env file on the server - Secrets are stored in the platform's encrypted secret storage, not in your repository - The same code (no modifications) works in development (reading from .env) and production (reading from platform-provided environment)

This is exactly why the chapter recommended os.environ.get() from the beginning. The code never needed to know whether the value was coming from a .env file or a platform configuration panel.

38.5 Railway as an Alternative

Railway (railway.app) is a close alternative to Render with similar features:

  • Free tier with usage-based billing (pay for what you use, not a flat monthly fee)
  • Docker support
  • GitHub integration
  • PostgreSQL and Redis available as add-on services
  • Dashboard-based environment variable management

The deployment workflow is identical to Render. The primary difference is pricing model: Railway charges per CPU/memory hour used, which is more economical for applications with very low traffic (like a dashboard checked three times per day). Render's Starter plan is more predictable if you prefer a flat monthly cost.

For Maya's client portal, which has eight active clients checking it occasionally, Railway's usage-based pricing would cost less than $1/month. For Priya's Acme dashboard, which Sandra checks daily, Render's flat Starter plan at $7/month is straightforward.

38.6 AWS Lambda for Scheduled Python Scripts

Not everything needs to be a web application. Many business Python scripts are meant to run on a schedule: generate a report at 9 a.m., send invoice emails on the 1st of the month, pull API data every hour, clean up old records weekly.

Running these scripts as part of a web application (using a background task queue) works but is complex. Running them on a schedule on your local machine (Chapter 22) requires your machine to be on. The cloud alternative for scheduled scripts is AWS Lambda.

What Lambda Is

AWS Lambda is a serverless compute service. You provide a Python function, Lambda runs it when triggered, and you pay only for the compute time used — there is no server running when your function is not executing.

For a script that runs once daily for 30 seconds, Lambda costs are essentially zero (AWS provides 1 million free requests per month). For scripts that run once per hour, costs are still pennies per month.

Lambda is not appropriate for web applications that need to respond to HTTP requests quickly — there is a "cold start" latency when a function has not been invoked recently. But for scheduled, batch, or event-driven jobs, Lambda is excellent.

Packaging a Lambda Function

Lambda functions are packaged as ZIP files containing your Python code and dependencies.

A minimal Lambda function:

# lambda_function.py
"""
Scheduled Lambda function: Acme Corp Daily Report
Runs at 9:00 AM EST every weekday via EventBridge (formerly CloudWatch Events).
"""

import json
import logging
import os
from datetime import date

import boto3  # AWS SDK for Python
import pandas as pd

logger = logging.getLogger()
logger.setLevel(logging.INFO)


def lambda_handler(event, context):
    """Entry point for Lambda invocations.

    The 'event' parameter contains trigger-specific data.
    For scheduled triggers, it contains the EventBridge event.
    The 'context' parameter contains runtime information.

    Must return a dict (Lambda converts this to the response).
    """
    logger.info("Daily report Lambda triggered: %s", json.dumps(event))

    try:
        # Your business logic here
        report_date = date.today()
        metrics = generate_daily_metrics(report_date)
        send_report_email(metrics, report_date)

        logger.info("Daily report sent successfully for %s", report_date)
        return {
            "statusCode": 200,
            "body": json.dumps({"status": "success", "report_date": str(report_date)}),
        }

    except Exception as exc:
        logger.exception("Daily report failed: %s", str(exc))
        return {
            "statusCode": 500,
            "body": json.dumps({"status": "error", "message": str(exc)}),
        }


def generate_daily_metrics(report_date):
    """Pull metrics from the data source for the given date."""
    # Implementation reads from S3, RDS, or other AWS-accessible storage
    pass


def send_report_email(metrics, report_date):
    """Send the daily report email via SES (Simple Email Service)."""
    ses = boto3.client("ses", region_name="us-east-1")
    # SES email implementation here
    pass

Packaging for Lambda

Lambda needs your code and all non-standard dependencies in the ZIP. AWS provides some packages (boto3, standard library) but not Flask, pandas, or other third-party libraries.

# Create a build directory
mkdir lambda_package

# Install dependencies into the build directory (not the virtual environment)
pip install -r requirements.txt -t lambda_package/

# Copy your function code
cp lambda_function.py lambda_package/

# Create the ZIP
cd lambda_package
zip -r ../function.zip .
cd ..

Upload function.zip to Lambda via the AWS Console or AWS CLI.

For larger packages (pandas is notoriously large), Lambda Layers let you publish dependencies as a separate layer, keeping the function ZIP small and speeding up cold starts. AWS provides public layers for pandas and numpy that you can attach to your function without packaging them yourself.

Setting Up a Scheduled Trigger

AWS EventBridge (formerly CloudWatch Events) provides cron-based scheduling for Lambda functions. In the Lambda console:

  1. In your function, click "Add trigger"
  2. Select "EventBridge (CloudWatch Events)"
  3. Create a new rule: "Schedule expression"
  4. Use a cron expression: cron(0 14 ? * MON-FRI *) — this runs at 2:00 PM UTC every weekday (9:00 AM EST)

The cron syntax for EventBridge uses UTC time. Always convert from your local timezone.

When Lambda is the Right Choice

Use Lambda for: - Scheduled scripts that run periodically (hourly, daily, weekly) - Event-driven processing (a file uploaded to S3 triggers processing) - Low-frequency API endpoints where you want zero infrastructure to manage - Short-running tasks (Lambda has a maximum execution time of 15 minutes)

Do not use Lambda for: - Long-running jobs (database exports, large file processing) - Applications that need to maintain state between invocations - Web applications where response time is critical (cold start latency) - Processes that require persistent local file system access

38.7 Environment Variables in Production: The Complete Picture

Environment variables are the mechanism by which production applications receive their configuration without hardcoding it in source code. You have used them throughout this book via python-dotenv. In production, the mechanism changes but the code does not.

The Complete Environment Variable Strategy

Development (local):

# .env — in .gitignore, only on developer machines
SECRET_KEY=dev-only-change-me
DASHBOARD_PASSWORD=devpassword
FLASK_DEBUG=true
DATABASE_URL=sqlite:///data/local.db

Staging (test server): Set in the platform's environment variable panel. Staging has its own secrets, pointing to a test database.

Production: Set in the platform's environment variable panel. Production has its own secrets, pointing to the production database. FLASK_DEBUG is always false.

The application code reads environment variables with os.environ.get("KEY"). It does not know or care where they came from. This is intentional.

Generating a Secure SECRET_KEY

Never use a predictable or short SECRET_KEY. For Flask's session signing:

# Run this once in Python to generate a secure key
import secrets
print(secrets.token_hex(32))
# Output: a64-character hex string like
# 8f3e2a1c7b9d4f6e0a2c4b8d6f2e4a8c3d7f1b5e9c3a7b1d5f9e3c7a1b5d9f3

Copy this value and set it as the SECRET_KEY environment variable on your platform. Never put it in source code. Never reuse it across environments.

38.8 Monitoring and Logs: Knowing When Things Break

In development, when your application raises an exception, the traceback appears in your terminal. In production, nobody is watching the terminal. You need structured logging and alerting to know when something goes wrong.

What to Log

Every Flask application should log at minimum: - Application startup (confirms the application is running) - Authentication events (login success, login failure, with IP address) - Errors (exception type, message, and full traceback) - Significant business events (expense submitted, report generated)

import logging
import os

# Configure logging — format includes timestamp, level, and module
logging.basicConfig(
    level=logging.INFO,
    format="%(asctime)s %(levelname)s %(name)s — %(message)s",
)
logger = logging.getLogger(__name__)


@app.route("/login", methods=["GET", "POST"])
def login():
    if request.method == "POST":
        if request.form.get("password") == DASHBOARD_PASSWORD:
            session["authenticated"] = True
            logger.info(
                "Successful login from %s",
                request.remote_addr,
            )
            return redirect(url_for("dashboard"))
        else:
            logger.warning(
                "Failed login attempt from %s",
                request.remote_addr,
            )
            return render_template("login.html", error="Incorrect password.")

Reading Logs on Render

On Render, your application's stdout and stderr output appear in the "Logs" section of your service dashboard. Render captures everything you print or log and displays it with timestamps. For a small-scale application, this is usually sufficient.

For higher-volume applications, log aggregation services (Papertrail, Logtail, Datadog) collect logs from multiple sources, provide search, and send alerts when error rates spike.

Uptime Monitoring

A simple, free way to get notified when your application goes down: services like UptimeRobot or Better Uptime send you an email or SMS when your application stops responding to HTTP requests. Set up a monitor that checks your application's URL every 5 minutes. The free tier of UptimeRobot supports this without cost.

This is the minimum viable monitoring setup for an internal tool: uptime alerts so you know when it's down, logs so you know why.

38.9 CI/CD: What It Means and Why It Matters

Continuous Integration (CI) means that whenever you push code to your repository, an automated system runs your tests, checks code style, and verifies the build. If anything fails, you find out immediately — not when a colleague complains that production is broken.

Continuous Deployment (CD) means that after CI passes, the code is automatically deployed to the production environment. No manual deployment steps. Push to main, tests pass, new version is live.

For the Render deployment described in this chapter, CD is already configured: pushing to main triggers a deployment. The CI part — running tests before deploying — is what GitHub Actions adds.

A Minimal GitHub Actions Workflow

Create .github/workflows/test.yml in your repository:

# .github/workflows/test.yml
# Runs on every push and pull request to the main branch.
# If tests fail, the workflow fails and Render will not deploy.

name: Test

on:
  push:
    branches: [main]
  pull_request:
    branches: [main]

jobs:
  test:
    runs-on: ubuntu-latest

    steps:
      - name: Check out code
        uses: actions/checkout@v4

      - name: Set up Python
        uses: actions/setup-python@v5
        with:
          python-version: "3.11"

      - name: Install dependencies
        run: |
          python -m pip install --upgrade pip
          pip install -r requirements.txt
          pip install pytest

      - name: Run tests
        run: pytest tests/
        env:
          SECRET_KEY: test-secret-key
          DASHBOARD_PASSWORD: testpassword
          FLASK_DEBUG: "false"

When you push a commit, GitHub Actions automatically: 1. Creates a fresh Ubuntu environment 2. Installs your dependencies 3. Runs your test suite 4. Reports success or failure in the GitHub UI

If tests fail, the red X on the commit is visible to everyone who looks at the repository. Render can also be configured to only deploy when the GitHub Actions workflow passes.

This workflow represents a significant shift in professional discipline. You move from "it works when I test it manually" to "I can prove it works every time I push." For a business tool that colleagues depend on, this matters.

38.10 Cost Awareness: Real Numbers for Small Deployments

One of the reasons cloud deployment intimidates business professionals is uncertainty about cost. Here are real numbers for the scale covered in this book.

Render Pricing (February 2026)

Plan Cost Specs Sleep Policy
Free $0/month 512MB RAM, shared CPU Sleeps after 15 min of inactivity; 50 sec cold start
Starter $7/month 512MB RAM, shared CPU Always on
Standard $25/month 2GB RAM, 1 shared CPU Always on, zero-downtime deploys

For Maya's client portal and Acme's internal dashboard: Starter at $7/month per service is the practical choice. The free tier's 50-second cold start is unacceptable for something clients use — that long wait on first load looks broken.

AWS Lambda Pricing

Lambda pricing is based on number of invocations and compute time: - Free tier: 1 million requests and 400,000 GB-seconds of compute time per month, every month, forever - Beyond free tier: $0.20 per million requests + $0.0000166667 per GB-second

For a daily scheduled script that runs for 30 seconds with 256MB of memory: - Invocations: 365 per year → well within free tier - Compute: 365 × 30 seconds × 0.25 GB = 2,737 GB-seconds per year → well within free tier - Annual cost: $0.00

For hourly scripts or multiple daily scripts, you remain within the free tier for months of typical business usage.

A Realistic Cost Picture

Component Solution Monthly Cost
Flask dashboard (always-on) Render Starter $7
Client portal (always-on) Render Starter $7
Scheduled daily reports AWS Lambda $0 (free tier)
Domain name Namecheap or similar ~$1 (amortized)
Uptime monitoring UptimeRobot free $0
Total ~$15/month

For a professional client-facing application with a proper domain, the infrastructure cost is comparable to a streaming service subscription. The value delivered — professional tooling without a SaaS vendor's ongoing license fees — is typically orders of magnitude higher.

38.11 Deploying the Acme Corp Dashboard

The deployment process for Priya's dashboard to Render:

Step 1: Prepare the Repository

acme-dashboard/
├── app.py
├── Dockerfile
├── docker-compose.yml
├── requirements.txt
├── .gitignore          # Must include .env and data/
├── .env.example        # Template only — no actual secrets
├── data/               # Excluded from git; populated at startup
├── templates/
│   ├── base.html
│   ├── index.html
│   ├── dashboard.html
│   ├── expense_form.html
│   ├── expense_success.html
│   ├── login.html
│   ├── expense_history.html
│   ├── 404.html
│   └── 500.html
└── static/
    └── css/

The .gitignore file must contain:

.env
data/
__pycache__/
*.pyc
venv/
.DS_Store

The data/ directory contains the CSV files. These should not be in version control for two reasons: they contain business data, and they change with every use. On the server, the data directory is populated by the first run. On Render with a persistent disk, the data survives deployments.

Step 2: The requirements.txt

flask==3.0.3
pandas==2.2.0
python-dotenv==1.0.1
gunicorn==21.2.0

Exact version pinning matters for production. flask without a version pins to "whatever is current at install time" — which changes and breaks things. Generate your requirements.txt after testing with pip freeze > requirements.txt.

Step 3: Configure Render

In Render's "Environment" panel, set: - SECRET_KEY — a 64-character random hex string - DASHBOARD_PASSWORD — a strong password Sandra and the team will use - FLASK_DEBUGfalse

Do not set these in the Dockerfile or docker-compose.yml. The platform is the source of truth for production secrets.

Step 4: Verify the Deployment

After Render deploys: 1. Visit the provided URL 2. Verify you see the home page 3. Click "View Sales Dashboard" — verify the login page appears 4. Enter the password — verify the dashboard renders (it may show the "no data" warning if the data CSV hasn't been populated yet; running the data generation script or mounting a persistent disk with existing data resolves this)

Step 5: Share with Sandra

Send Sandra the URL and password. She bookmarks it. Priya's laptop can now go to sleep.

38.12 Deploying Maya's Client Portal

Maya's deployment adds one consideration not present in the Acme case: her SQLite database is her core business asset. Losing it is catastrophic.

The Persistent Data Challenge

By default, when a Render deployment updates your container, the old container's filesystem is discarded. Any files written to the container's disk (like Maya's SQLite database) are lost.

Render Persistent Disk ($1/month for 1GB) mounts a persistent volume into your container at a specified path. Files written there survive container restarts and deployments.

Configure in render.yaml or through the Render dashboard: - Mount path: /app/data - Disk size: 1GB (more than sufficient for Maya's database)

In the Dockerfile and application, ensure all data files write to /app/data:

DATABASE = Path("/app/data/maya_projects.db")

For development (where /app/data doesn't exist):

if os.environ.get("RENDER"):
    DATABASE = Path("/app/data/maya_projects.db")
else:
    DATABASE = Path(__file__).parent / "data" / "maya_projects.db"

Or more elegantly, use an environment variable:

DATABASE = Path(os.environ.get("DATABASE_PATH", "data/maya_projects.db"))

Database Backups

A persistent disk prevents data loss during deployments, but it does not protect against disk failure or accidental data deletion. For Maya's business data:

  • Option 1: SQLite backup script that runs daily via Lambda, copies the database file to an S3 bucket. Cost: essentially zero.
  • Option 2: Migrate from SQLite to PostgreSQL (available on Render for $7/month). PostgreSQL on Render has automated daily backups. Chapter 23 covered this migration.

For Maya's current scale (a single database file under 50MB), Option 1 is perfectly adequate and significantly simpler.

38.13 The Production Launch Checklist

Before any deployment to production, work through this checklist. The complete version is in code/deploy_checklist.md.

Security: - FLASK_DEBUG is false in production - SECRET_KEY is a long random string, not a hardcoded default - All secrets are in platform environment variables, not in source code - .env is in .gitignore

Dependencies: - requirements.txt is current (pip freeze > requirements.txt) - All required packages are listed - Versions are pinned

Docker: - docker build completes without errors locally - docker run --env-file .env image-name starts and the application responds at the mapped port - The container runs as a non-root user - Gunicorn (not Flask dev server) is the CMD

Data: - Data files are either in persistent storage or populated on first run - The application handles missing data gracefully (shows a warning rather than crashing)

Error handling: - Custom 404 and 500 pages exist - Logging is configured (not just print statements)

Deployment: - FLASK_DEBUG=false is set in the platform's environment variables - The deployment completes without errors in the platform's build log - The application responds at the production URL - The login flow works with production credentials

Chapter Summary

Deployment is the translation from "works on my laptop" to "works reliably for everyone." The tools and patterns in this chapter address every major gap in that translation:

Docker eliminates environment differences by packaging your application and its complete environment into a portable container. Once the container works locally, it works anywhere.

Platform-as-a-Service (Render, Railway) eliminates server management. You provide code and configuration; the platform handles infrastructure, networking, SSL, and deployment automation.

Environment variables separate configuration from code, allowing the same application to run in development (with a local .env file) and production (with platform-provided secrets) without modification.

AWS Lambda provides a serverless, low-cost execution environment for scheduled Python scripts — ideal for the automation work from Part 3 of this book.

Logging and monitoring give you visibility into production behavior. Structured logs tell you what happened; uptime monitoring tells you when it stopped happening.

CI/CD with GitHub Actions automates the testing and deployment pipeline, turning a manual, error-prone process into a repeatable, verifiable one.

The combination of these tools represents professional-grade deployment practice. They are the same patterns used by teams building software at companies of all sizes — from startups to enterprises.

Key Terms

Container — A portable, isolated runtime environment that packages an application with all its dependencies. Built from an image, runs identically everywhere Docker is available.

Docker image — A layered, read-only snapshot of a filesystem. The template from which containers are instantiated.

Dockerfile — A text file containing instructions for building a Docker image. Each instruction creates a layer.

Docker Compose — A tool for defining and managing multi-container Docker applications using a YAML file.

PaaS (Platform-as-a-Service) — A cloud service category that provides managed infrastructure for deploying applications. Render and Railway are PaaS providers.

AWS Lambda — Amazon's serverless compute service. Runs Python functions in response to events or on a schedule, without managing servers.

Environment variable — A configuration value provided to a running process through the operating system's environment, rather than through a file or code.

Persistent disk — Storage that survives container restarts and redeployments. Required for applications that write data locally (like SQLite databases).

CI/CD — Continuous Integration and Continuous Deployment. Automated systems that test code on every push (CI) and deploy passing code to production automatically (CD).

Cold start — The latency experienced when a serverless function (Lambda) or sleeping container (Render free tier) receives a request after a period of inactivity.

WSGI — Web Server Gateway Interface. The standard Python interface between web applications and web servers. Flask is a WSGI application; Gunicorn is a WSGI server.

Maya's Arc: Complete

From Chapter 1 to Chapter 38, Maya Reyes has built:

  1. Project tracking in CSV (Chapter 9)
  2. Automated invoicing (Chapter 16)
  3. Email automation (Chapter 19)
  4. Scheduled pipelines (Chapter 22)
  5. SQLite project database (Chapter 23)
  6. Automated PDF status reports (Chapter 36)
  7. Client-facing project portal (Chapter 37)
  8. Production deployment to Render (Chapter 38)

The portfolio she has built is not a set of exercises. It is functional infrastructure for a real consulting business. Everything runs. Everything is accessible. Everything is documented.

That is the arc this book has been building toward since page one.

Next: Chapter 39 — Python Best Practices and Collaborative Development. You can build things now. Chapter 39 is about building things that other people can work on, maintain, and trust.