Goal
Use paweldregan.com as the first real-world target for a ts-cloud serverless deploy. It's a low-stakes static site that already has the CloudFront + S3 + CloudFormation stack live, so we can layer a Lambda-backed API onto it without rebuilding the frontend.
Once this works, the same pattern becomes the template for other Stacks app deploys.
Current infra (verified)
| Layer |
Resource |
| Domain / DNS |
paweldregan.com — nameservers on Porkbun (*.ns.porkbun.com) |
| CDN |
CloudFront distribution d2a6p52pzjhw1b.cloudfront.net — aliases paweldregan.com + www.paweldregan.com |
| Origin |
S3 bucket paweldregan-com (static site: 404.html, about.html, coaching.html, plus de/, images/, pl/ prefixes for i18n) |
| IaC |
CloudFormation stack paweldregan-static-site (UPDATE_COMPLETE, created 2026-05-03) |
| Account |
stacks (923076644019), us-east-1 |
Status today: static-only. No /api path. No Lambda. No docs path.
Target architecture (from the cloud-cleanup task drop)
paweldregan.com (Porkbun DNS → CloudFront)
│
┌─────────────────────┼─────────────────────┐
│ │ │
/* /api/* /docs/*
(default) (Lambda origin) (bunpress origin)
│ │ │
S3 paweldregan-com Lambda function S3 bunpress bucket
(static, current) (Stacks API, new) (later)
- Frontend (
/*): stays as-is — keep the existing S3 origin and CloudFront distribution, don't touch the current static content.
- API (
/api/*): new CloudFront origin pointing at a Lambda function (Function URL or API Gateway HTTP API). Per Chris's earlier preference, Lambda over ECS for cost reasons, if it's simple — fall back to ECS only if Lambda has unsolvable size/cold-start problems.
- Docs (
/docs/*): deferred to a follow-up; this test only needs the frontend + API path.
Scope for this test deploy
- Pick a trivial Stacks app to deploy as the API (literal hello-world endpoint is fine — the goal is the plumbing, not the payload).
cd storage/framework/cloud && bun deploy.ts against a config that targets paweldregan.com.- ts-cloud should:
- Detect / reuse the existing
paweldregan-static-site CloudFormation stack (don't blow away the static frontend).
- Provision the Lambda + its execution role + log group.
- Add a new origin + cache behavior to the existing CloudFront distribution for
/api/* → Lambda.
- Wire the API route into the Stacks app's router.
- Verify:
curl https://paweldregan.com/ still serves the static site untouched.curl https://paweldregan.com/api/health (or whatever the hello-world route is) hits the Lambda and returns a 200 with the expected body.- Lambda cold-start latency is recorded.
- Monthly cost estimate vs equivalent ECS deploy, captured in the PR description.
Known constraints / open questions
- Bun on Lambda: Chris's note from the task drop — "the bun runtime didnt exist, but then bun released a lambda layer that allowed for the bun runtime ... idk if there potential size issues". Worth confirming up front which Lambda layer/runtime ts-cloud generates and whether the 250 MB unzipped size limit is anywhere close to a concern for a Stacks API bundle.
- Cold start: the cost win of Lambda over ECS is meaningful, but if cold starts are >2s for a Stacks API bundle, we'd want either provisioned concurrency or a fallback to a small Fargate task. Quantify before scaling this pattern to other domains.
- CloudFormation drift: if ts-cloud manages a new stack alongside the existing
paweldregan-static-site stack, document the boundary. If it modifies the existing stack, that needs to be safe and reversible — losing the frontend in this test would be visible to anyone hitting the live domain.
- DNS unchanged: the test does not require any Porkbun DNS changes — CloudFront fronting the same hostname continues to handle routing. (Unrelated: the
hello@paweldregan.com mailbox work in mail-os/mail will need Porkbun DNS changes, but that's a separate thread.)
Out of scope
- Frontend changes — the existing static site stays exactly as deployed.
- Docs path (
/docs/* → bunpress) — defer.
- DNS migration off Porkbun.
- Multi-region. Single
us-east-1 Lambda is enough for a first test.
Acceptance
PR opens with:
- A working deployed
paweldregan.com/api/... hitting a Lambda.
paweldregan.com/ static site unchanged (no regressions).- A short writeup in the PR description covering: what ts-cloud auto-managed vs what was manual; Lambda runtime choice + bundle size; observed cold-start; estimated monthly cost vs equivalent ECS.
cc: @chrisbreuer
Goal
Use
paweldregan.comas the first real-world target for a ts-cloud serverless deploy. It's a low-stakes static site that already has the CloudFront + S3 + CloudFormation stack live, so we can layer a Lambda-backed API onto it without rebuilding the frontend.Once this works, the same pattern becomes the template for other Stacks app deploys.
Current infra (verified)
paweldregan.com— nameservers on Porkbun (*.ns.porkbun.com)d2a6p52pzjhw1b.cloudfront.net— aliasespaweldregan.com+www.paweldregan.compaweldregan-com(static site:404.html,about.html,coaching.html, plusde/,images/,pl/prefixes for i18n)paweldregan-static-site(UPDATE_COMPLETE, created 2026-05-03)stacks(923076644019),us-east-1Status today: static-only. No
/apipath. No Lambda. No docs path.Target architecture (from the cloud-cleanup task drop)
/*): stays as-is — keep the existing S3 origin and CloudFront distribution, don't touch the current static content./api/*): new CloudFront origin pointing at a Lambda function (Function URL or API Gateway HTTP API). Per Chris's earlier preference, Lambda over ECS for cost reasons, if it's simple — fall back to ECS only if Lambda has unsolvable size/cold-start problems./docs/*): deferred to a follow-up; this test only needs the frontend + API path.Scope for this test deploy
cd storage/framework/cloud && bun deploy.tsagainst a config that targetspaweldregan.com.paweldregan-static-siteCloudFormation stack (don't blow away the static frontend)./api/*→ Lambda.curl https://paweldregan.com/still serves the static site untouched.curl https://paweldregan.com/api/health(or whatever the hello-world route is) hits the Lambda and returns a 200 with the expected body.Known constraints / open questions
paweldregan-static-sitestack, document the boundary. If it modifies the existing stack, that needs to be safe and reversible — losing the frontend in this test would be visible to anyone hitting the live domain.hello@paweldregan.commailbox work inmail-os/mailwill need Porkbun DNS changes, but that's a separate thread.)Out of scope
/docs/*→ bunpress) — defer.us-east-1Lambda is enough for a first test.Acceptance
PR opens with:
paweldregan.com/api/...hitting a Lambda.paweldregan.com/static site unchanged (no regressions).cc: @chrisbreuer