Buildtoacr 01082024

.dockerignore

@@ -0,0 +1,2 @@
+# ignore the target directory
+target/

.env

@@ -0,0 +1,29 @@
+
+#Deployment configuration
+ENVIRONMENT=prod
+
+# Application default configuration
+httpport=8080
+httpsport=8443
+appname=tdpcbpmqreader
+appversion=0.2
+apphttpport=80
+apphttpsport=443
+
+# Bicep Parameters
+targetPort=9080
+maxReplicas=20
+minReplicas=4
+cpuCore=0.5
+memorySize=1
+
+# Change this for your deployment
+aca_volume_mountPath=opt/app
+aca_volumes_name=azure-files-volume
+
+# Azure Container Apps Storage configuration
+# Create a file storage for the storage account
+acenv_fileshare_resource_group=share_rg
+acenv_storage_account_name=jrlmsftstorage
+acenv_fileshareName=acafileshare
+acenv_volumes_storagename=filestorage

.env.example

@@ -0,0 +1,43 @@
+#Deployment configuration
+ENVIRONMENT=dev
+# Application default configuration
+httpport= 8080
+httpsport= 8433
+appname= APP_NAME_PLACEHOLDER
+appversion= APP_VERSION_PLACEHOLDER
+apphttpport= 80
+apphttpsport= 443
+apploglevel= APP_LOG_LEVEL_PLACEHOLDER
+
+# Image configuration
+repository= REPOSITORY_PLACEHOLDER
+imageName= IMAGE_NAME_PLACEHOLDER
+imageTag= IMAGE_TAG_PLACEHOLDER
+image= IMAGE_PLACEHOLDER
+
+# Azure Subscription configuration
+AzureSubscriptionId= SUBSCRIPTION_ID_PLACEHOLDER
+location= LOCATION_PLACEHOLDER
+CreateResourceGroup=FALSE
+ResourceGroupName= RESOURCE_GROUP_NAME_PLACEHOLDER
+# Create json with dummy user names and passwords
+# echo '{"username":"USERNAME_PLACEHOLDER","password":"PASSWORD_PLACEHOLDER"}' > ./azure_credentials.json
+json={"username":"USERNAME_PLACEHOLDER","password":"PASSWORD_PLACEHOLDER"}
+
+# Bicep Parameters
+name= NAME_PLACEHOLDER
+containerRegistry= CONTAINER_REGISTRY_PLACEHOLDER
+containerImage= CONTAINER_IMAGE_PLACEHOLDER
+targetPort= TARGET_PORT_PLACEHOLDER
+maxReplicas= MAX_REPLICAS_PLACEHOLDER
+minReplicas= MIN_REPLICAS_PLACEHOLDER
+cpuCore= CPU_CORE_PLACEHOLDER
+memorySize= MEMORY_SIZE_PLACEHOLDER
+aca_volume_mountPath= ACA_VOLUME_MOUNT_PATH_PLACEHOLDER
+
+# Azure Container Apps Storage configuration
+aca_fileshareName= ACA_FILE_SHARE_NAME_PLACEHOLDER
+azure_storage_name= AZURE_STORAGE_NAME_PLACEHOLDER
+aca_volumes_name= azure-files-volume # do not change
+aca_volumes_storagename= filestorage # do not change
+fileshare_resource_group= FILE_SHARE_RESOURCE_GROUP_PLACEHOLDER

.github/workflows/workflow.yaml

@@ -0,0 +1,69 @@
+# File: .github/workflows/workflow.yml
+
+on: [push]
+# on: [workflow_dispatch]
+
+name: Deploy the petstore app using Github Actions
+permissions:
+  id-token: write
+  contents: read
+env:
+  branch: 'buildtoacr_01082024'
+  reponame: 'swagger-petstore'
+  subscriptionId: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+  containerImage: ${{secrets.ACRNAME}}.azurecr.io/${{env.reponame}}:latest
+  containerRegistryName: ${{secrets.ACRNAME}}
+  registryserver: ${{secrets.ACRNAME}}.azurecr.io
+  createResourceGroup: false
+  name: "petstoredev2"
+jobs:
+
+  build-and-deploy:
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout
+      uses: actions/checkout@v4
+      # with: 
+      #   ref: ${{ env.branch}}
+
+    - name: Login to Azure Container Registry
+      uses: Azure/docker-login@v1
+      with:
+          # Container registry username
+          username: ${{ secrets.ACR_USERNAME }}
+          # Container registry password
+          password: ${{ secrets.ACR_PASSWORD }}
+          # Container registry server url
+          login-server: ${{ secrets.ACRNAME }}.azurecr.io
+
+
+    # Add id token and contents to the permissions
+    - name: Azure login
+      uses: azure/login@v1
+      with:
+        client-id: ${{ secrets.AZURE_CLIENT_ID }}
+        tenant-id: ${{ secrets.AZURE_TENANT_ID }}
+        subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+
+    - name: Build the Docker image
+      run:  
+        az acr build --registry ${{secrets.ACRNAME}} --image swagger-petstore:$(date +'%Y-%m-%d')_$GITHUB_RUN_NUMBER -t ${{secrets.ACRNAME}}.azurecr.io/swagger-petstore:latest --file Dockerfile .;
+
+
+
+    - name: Deploy Azure Container App
+      shell: pwsh
+      run: |
+        ./deploy_infra.ps1
+    # Deploy K8s manifest
+    # - name: Deploy K8s manifest
+    #   uses: Azure/k8s-deploy@v4
+    #   with:
+    #     azureCredentials: ${{ secrets.AZURE_CREDENTIALS }}
+    #     namespace: default
+    #     manifests: |
+    #       k8s/deployment.yaml
+    #       k8s/service.yaml
+    #       k8s/ingress.yaml
+    #     imagePullSecrets: ${{ secrets.ACRNAME }}
+

.gitignore

@@ -10,3 +10,13 @@ target
 atlassian-ide-plugin.xml
 *.iml
 .java-version
+.DS_Store
+# ignore .env file
+# .env
+# ignore .vscode folder
+.vscode/
+compose.log
+svcprincipal_create.md
+draft.md
+creds.json
+```

.vscode/settings.json

@@ -0,0 +1,4 @@
+{
+    "java.configuration.updateBuildConfiguration": "interactive",
+    "java.compile.nullAnalysis.mode": "automatic"
+}

Dockerfile

@@ -1,11 +1,26 @@
-FROM openjdk:8-jre-alpine
+# Build stage
+FROM maven:3.8.6-openjdk-11-slim AS build
+
+RUN apt-get update && apt-get install -y git
+# RUN git clone 
+RUN mvn -version
+WORKDIR /home/app/
+COPY src ./src/  
+COPY pom.xml ./pom.xml 
+RUN ls -ltr
+RUN pwd
+RUN ls -ltr ./src/
+RUN mvn -f pom.xml clean install -DskipTests=true
+
+# FROM openjdk:8-jre-alpine
+FROM eclipse-temurin:11-jre-alpine
 
 WORKDIR /swagger-petstore
 
-COPY target/lib/jetty-runner.jar /swagger-petstore/jetty-runner.jar
-COPY target/*.war /swagger-petstore/server.war
-COPY src/main/resources/openapi.yaml /swagger-petstore/openapi.yaml
-COPY inflector.yaml /swagger-petstore/
+COPY --chown=1001:0 --from=build  /home/app/target/lib/jetty-runner.jar /swagger-petstore/jetty-runner.jar
+COPY --chown=1001:0 --from=build /home/app/target/*.war /swagger-petstore/server.war
+COPY --chown=1001:0 src/main/resources/openapi.yaml /swagger-petstore/openapi.yaml
+COPY --chown=1001:0 inflector.yaml /swagger-petstore/
 
 EXPOSE 8080
 

archive/deploy_infra_archive_02142023.ps1

@@ -0,0 +1,118 @@
+param(
+    [string]$templateFile=".\infra\main.bicep",
+    # read pararmeters from .env file
+    $envParameters = $(Get-Content .\.env | ConvertFrom-StringData),
+    # get name from parameters
+    [string]$name=$envParameters.name,
+    [string]$location=$envParameters.location,
+    # get createResourceGroup from parameters
+    [string]$createResourceGroup=$envParameters.createResourceGroup,
+
+    [string]$subscriptionId=$env:subscriptionId,
+
+    # get resource group name from parameters
+    # if createResourceGroup is false, use the resource group name from parameters else
+    # use the name "name-rg"
+    [string]$resourceGroupName=$(if ($createResourceGroup -eq "false") {
+      $envParameters.resourceGroup} else {
+        "$name-rg"}), 
+    [string]$containerRegistryName=$envParameters.containerRegistryName,
+
+    # Image configuration
+    # [string]$registryserver=$envParameters.registryserver,
+    # [string]$repository=$envParameters.repository,
+    # [string]$imagetag=$envParameters.deploymentImageTag,
+    # Container image in the format of <container registry>/<image name>:<image tag>
+    # [string]$containerImage="$($registryserver)/$($repository):$($imagetag)",
+
+    # New: Get Container image from github workflow environment
+    [string]$containerImage=$env:registryserver,
+
+    #Azure Container Environment Related values
+    [string]$acenv_fileshare_resource_group=$envParameters.acenv_fileshare_resource_group,
+    [string]$acenv_storage_account_name=$envParameters.acenv_storage_account_name,
+    [string]$acenv_fileshareName=$envParameters.acenv_fileshareName,
+    [string]$acenv_volumes_storagename=$envParameters.acenv_volumes_storagename, 
+
+    #Azure Container Apps Related values
+    [string]$aca_volumes_name=$envParameters.aca_volumes_name,
+    [string]$aca_volume_mountPath=$envParameters.aca_volume_mountPath ,
+    [string]$aca_targetPort=$envParameters.targetPort,
+    [string]$aca_maxReplicas=$envParameters.maxReplicas,
+    [string]$aca_minReplicas=$envParameters.minReplicas
+    )
+
+# set default subscription
+az account set --subscription $subscriptionId
+
+#Write Container registry
+write-host "Container Registry: $containerRegistryName"
+
+# Container registry username 
+[string]$acrUsername=$(az acr credential show -n $containerRegistryName --query username -o tsv)
+
+
+# # Container registry password
+# # TODO: use SecureString
+# # TODO: use keyvault to store password
+[string]$acrPassword=$(az acr credential show -n $containerRegistryName --query "passwords[0].value" -o tsv)
+
+# # Create a resource group with azure cli
+# Create a resource group if $createResourceGroup is true
+write-host "Create Resource Group: $createResourceGroup"
+
+if ($createResourceGroup -eq "true") {
+  Write-Host "Creating resource group $resourceGroupName"
+  az group create --name $resourceGroupName --location $location
+}
+Write-Host "Resource Group Name: $resourceGroupName"
+# Test message
+# Write-Host "****** TestMassage: $env:TestMessage ******"
+# Image configuration
+Write-Host "****** Image configuration ******"
+Write-Host "Registry Server: $registryserver"
+Write-Host "Repository: $repository"
+Write-Host "Image Tag: $imagetag"
+Write-Host "Container Image: $containerImage"
+
+# Azure Container Apps Related values
+Write-Host "****** Azure Container Apps Related values ******"
+Write-Host "Azure Container Apps Volumes Name: $aca_volumes_name"
+Write-Host "Azure Container Apps Volume Mount Path: $aca_volume_mountPath"
+Write-Host "Azure Container Apps Target Port: $aca_targetPort"
+
+# Azure Container Environment Related values
+Write-Host "******Azure Container Environment Related values ******"
+Write-Host "Azure Container Environment Fileshare Resource Group: $acenv_fileshare_resource_group"
+Write-Host "Azure Container Environment Storage Account Name: $acenv_storage_account_name"
+Write-Host "Azure Container Environment Fileshare Name: $acenv_fileshareName"
+Write-Host "Azure Container Environment Volumes Storage Name: $acenv_volumes_storagename"
+
+# Common values
+Write-Host "****** Common values *******"
+Write-Host "Location: $location"
+Write-Host "Container Registry Name: $containerRegistryName"
+Write-Host "Container Registry Server: $registryserver"
+Write-Host "Container Registry Username: $acrUsername"
+
+# deploy the template
+az deployment group create `
+  -g $resourceGroupName `
+  --template-file $templateFile `
+  --parameters name=$name `
+    containerImage=$containerImage `
+    targetPort=$aca_targetPort `
+    aca_volume_mountPath=$aca_volume_mountPath `
+    aca_volumes_name=$aca_volumes_name `
+    maxReplicas=$aca_maxReplicas `
+    minReplicas=$aca_minReplicas `
+    acenv_fileshare_resource_group=$acenv_fileshare_resource_group `
+    acenv_storage_account_name=$acenv_storage_account_name `
+    acenv_fileshareName=$acenv_fileshareName `
+    acenv_volumes_storagename=$acenv_volumes_storagename `
+    location=$location `
+    containerRegistryName=$containerRegistryName `
+    registryserver=$registryserver `
+    acrUsername=$acrUsername `
+    acrPassword=$acrPassword `
+  --query properties.outputs.fqdn.value