Deployment¶
When you are ready to take your Masonite application to production, there are a few important things you should do to make sure your application runs as securely and efficiently as possible.
The WSGI Entry Point¶
Every Masonite project ships with a wsgi.py file in the project root which creates and boots the application and exposes it as a standard WSGI callable named application. Any WSGI-compliant application server can serve it.
Warning
python craft serve runs the Werkzeug development server. It is perfect for local development but is not designed for production traffic — always use a production WSGI server.
Gunicorn¶
Gunicorn is the most common choice on Linux:
A common rule of thumb for the worker count is (2 x CPU cores) + 1.
Waitress¶
Waitress is a pure-Python alternative that also works on Windows:
Production Checklist¶
Turn Off Debug Mode¶
Never deploy an application with debug mode enabled. With APP_DEBUG=True, unhandled exceptions render a full debug page that can expose environment variables, configuration values and source code to the world. In your production .env:
Set Your Application Key¶
Masonite uses the APP_KEY environment variable to encrypt cookies, sign data and more. Generate a fresh key for production — do not reuse the one from development:
This writes the new key into the .env file on the machine where it runs (use python craft key --dont-store to only print it). Keep it secret: anyone holding the key can decrypt and forge your cookies.
Configure Your Environment¶
Your .env file should never be committed to version control. On your server, either create the .env file by hand or provide the variables through your platform's environment configuration. See Environments for everything Masonite reads from the environment, and remember to configure your production database, mail driver, queue driver and logging channels.
Run Your Migrations¶
Compile Your Assets¶
If your application uses a frontend preset, build the production assets and make sure the compiled files end up in your storage directories:
Serving Static Files¶
Masonite serves static and uploaded files itself through WhiteNoise, which is built into every application via the WhitenoiseProvider. This means a plain gunicorn deployment already serves your CSS, JavaScript and uploads correctly with proper caching headers — no extra configuration needed.
For high-traffic applications you can additionally put a reverse proxy such as nginx in front of your application server:
server {
listen 80;
server_name example.com;
location / {
proxy_pass http://127.0.0.1:8000;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
}
Maintenance Mode¶
When deploying a new version you can put the application into maintenance mode so visitors see a friendly maintenance page (rendered from templates/maintenance.html) instead of a half-deployed application:
Queue Workers and the Scheduler¶
If your application dispatches jobs to a queue, remember that workers are separate, long-running processes that you must keep alive with a process manager such as systemd or supervisor:
If you use task scheduling, add the schedule runner to your server's cron so it runs every minute: