Skip to content

changes to implement qa and production env #34

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
joseganora merged 4 commits into from
May 27, 2025
Merged

changes to implement qa and production env #34

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
735474d
changes to implement qa and production env
May 27, 2025
c633d24
changes to implement qa and production env
May 27, 2025
dd6f2da
changes to implement qa and production env
May 27, 2025
7d211d9
changes to implement qa and production env
May 27, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
47 changes: 47 additions & 0 deletions .github/workflows/production-pipeline.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,47 @@
name: Production pipeline

on:
Copy link
Collaborator

@jajaramillo24 jajaramillo24 May 27, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

these should be set to manual

workflow_dispatch: # Allows manual execution

jobs:
build-and-deploy:
runs-on: ubuntu-latest
steps:
- name: 'Checkout GitHub Action'
uses: actions/checkout@main

- name: 'Login via Azure CLI'
uses: azure/login@v1
with:
creds: ${{ secrets.AZURE_CREDENTIALS }}

- name: 'Set up Kubernetes'
uses: azure/aks-set-context@v2
with:
creds: ${{ secrets.AZURE_CREDENTIALS }}
cluster-name: ${{ secrets.AKS_CLUSTER_NAME }}
resource-group: ${{ secrets.AKS_RESOURCE_GROUP }}

- name: 'Build and push image'
uses: azure/docker-login@v1
with:
login-server: ${{ secrets.REGISTRY_LOGIN_SERVER }}
username: ${{ secrets.REGISTRY_USERNAME }}
password: ${{ secrets.REGISTRY_PASSWORD }}
- run: |
docker build -t ${{ secrets.REGISTRY_LOGIN_SERVER }}/whatnowapi:${{ github.sha }} -f ./docker/Dockerfile .
docker tag ${{ secrets.REGISTRY_LOGIN_SERVER }}/whatnowapi:${{ github.sha }} ${{ secrets.REGISTRY_LOGIN_SERVER }}/whatnowapi:latest

docker push ${{ secrets.REGISTRY_LOGIN_SERVER }}/whatnowapi:${{ github.sha }}
docker push ${{ secrets.REGISTRY_LOGIN_SERVER }}/whatnowapi:latest
- name: 'Copy production values files'
run: |
cp ./helm-chart/values-production.yaml ./helm-chart/values.yaml

- name: 'Deploy to AKS with Helm'
run: |
helm upgrade --install whatnow ./helm-chart \
--namespace ${{ secrets.AKS_CLUSTER_NAMESPACE }} \
--create-namespace


53 changes: 53 additions & 0 deletions .github/workflows/qa-pipeline.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,53 @@
name: Stage pipeline

on:
pull_request:
types:
- closed
branches:
- 'staging'


jobs:
build-and-deploy:
runs-on: ubuntu-latest
steps:
- name: 'Checkout GitHub Action'
uses: actions/checkout@main

- name: 'Login via Azure CLI'
uses: azure/login@v1
with:
creds: ${{ secrets.AZURE_CREDENTIALS }}

- name: 'Set up Kubernetes'
uses: azure/aks-set-context@v2
with:
creds: ${{ secrets.AZURE_CREDENTIALS }}
cluster-name: ${{ secrets.AKS_CLUSTER_NAME }}
resource-group: ${{ secrets.AKS_RESOURCE_GROUP }}

- name: 'Build and push image'
uses: azure/docker-login@v1
with:
login-server: ${{ secrets.REGISTRY_LOGIN_SERVER }}
username: ${{ secrets.REGISTRY_USERNAME }}
password: ${{ secrets.REGISTRY_PASSWORD }}
- run: |
docker build -t ${{ secrets.REGISTRY_LOGIN_SERVER }}/whatnowapi-qa:${{ github.sha }} -f ./docker/Dockerfile .
docker tag ${{ secrets.REGISTRY_LOGIN_SERVER }}/whatnowapi-qa:${{ github.sha }} ${{ secrets.REGISTRY_LOGIN_SERVER }}/whatnowapi-qa:latest

docker push ${{ secrets.REGISTRY_LOGIN_SERVER }}/whatnowapi-qa:${{ github.sha }}
docker push ${{ secrets.REGISTRY_LOGIN_SERVER }}/whatnowapi-qa:latest

- name: 'Copy staging values file'
run: |
cp ./helm-chart/values-staging.yaml ./helm-chart/values.yaml

- name: 'Deploy to AKS with Helm'
run: |
helm upgrade --install whatnow-qa ./helm-chart \
--namespace ${{ secrets.AKS_CLUSTER_NAMESPACE_QA }} \
--create-namespace


10 changes: 9 additions & 1 deletion .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,4 +19,12 @@ Homestead.yaml
npm-debug.log
yarn-error.log
helm-chart/secrets.yml
.idea/*
.idea/*
helm-chart/fullchain.pem
helm-chart/privkey.pem
helm-chart/secrets.yml
helm-chart/secrets-ifrc.yml
helm-chart/secrets-qa.yml
helm-chart/secrets-prod.yml
helm-chart/ssl-secret.yaml
.DS_Store
84 changes: 84 additions & 0 deletions helm-chart/values-production.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,84 @@
# Azure Container Registry details
image:
repository: ifrcsmdb.azurecr.io/whatnowapi
tag: "latest"
pullPolicy: Always

replicaCount: 1

# Kubernetes service configuration
service:
type: ClusterIP
port: 80
targetPort: 80
# Environment variables
env:
APP_NAME: 'IFRC National Society Preparedness Messages'
APP_ENV: production
APP_DEBUG: false
APP_LOG_LEVEL: info
APP_URL: https://api-preparemessages.ifrc.org
LOG_CHANNEL: stack
DB_PORT: 3306
DB_CONNECTION: mysql
BROADCAST_DRIVER: log
CACHE_DRIVER: file
QUEUE_CONNECTION: sync
SESSION_DRIVER: file
SESSION_LIFETIME: 120
REDIS_HOST: 127.0.0.1
REDIS_PASSWORD: null
REDIS_PORT: 6379
MAIL_DRIVER: smtp
MAIL_HOST: smtp.mailtrap.io
MAIL_PORT: 2525
MAIL_USERNAME: null
MAIL_PASSWORD: null
MAIL_ENCRYPTION: null
AWS_ACCESS_KEY_ID:
AWS_SECRET_ACCESS_KEY:
AWS_DEFAULT_REGION: us-east-1
AWS_BUCKET:
PUSHER_APP_ID:
PUSHER_APP_KEY:
PUSHER_APP_SECRET:
PUSHER_APP_CLUSTER: mt1
MIX_PUSHER_APP_KEY: "${PUSHER_APP_KEY}"
MIX_PUSHER_APP_CLUSTER: "${PUSHER_APP_CLUSTER}"
AZURE_STORAGE_ACCOUNT: smdbstorageaccount
AZURE_STORAGE_CONTAINER: images
AZURE_STORAGE_DOMAIN: blob.core.windows.net

secrets:
dbSecretName: admin-credentials
variables:
ADMIN_USER: ADMIN_USER
ADMIN_PASSWORD: ADMIN_PASSWORD
DB_HOST: DB_HOST
DB_DATABASE: DB_DATABASE
DB_USERNAME: DB_USERNAME
DB_PASSWORD: DB_PASSWORD
APP_KEY: APP_KEY
AZURE_STORAGE_KEY: AZURE_STORAGE_KEY
AZURE_STORAGE_CONNECTION_STRING: AZURE_STORAGE_CONNECTION_STRING

# Ingress (if using)
ingress:
enabled: true
annotations:
kubernetes.io/ingress.class: nginx
nginx.ingress.kubernetes.io/ssl-redirect: "true"
nginx.ingress.kubernetes.io/force-ssl-redirect: "true"
hosts:
- host: "api.whatnow"
paths:
- path: /
pathType: ImplementationSpecific
- host: "api-preparemessages.ifrc.org"
paths:
- path: /
pathType: Prefix
tls:
- hosts:
- "api-preparemessages.ifrc.org"
secretName: "ifrc.certificates.secret"
83 changes: 83 additions & 0 deletions helm-chart/values-staging.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,83 @@
# Azure Container Registry details
image:
repository: ifrcsmdb.azurecr.io/whatnowapi-qa
tag: "latest"
pullPolicy: Always

replicaCount: 1

# Kubernetes service configuration
service:
type: ClusterIP
port: 80
targetPort: 80
# Environment variables
env:
APP_NAME: Laravel
APP_ENV: stage
APP_DEBUG: false
APP_URL: http://localhost
LOG_CHANNEL: stack
DB_PORT: 3306
DB_CONNECTION: mysql
BROADCAST_DRIVER: log
CACHE_DRIVER: file
QUEUE_CONNECTION: sync
SESSION_DRIVER: file
SESSION_LIFETIME: 120
REDIS_HOST: 127.0.0.1
REDIS_PASSWORD: null
REDIS_PORT: 6379
MAIL_DRIVER: smtp
MAIL_HOST: smtp.mailtrap.io
MAIL_PORT: 2525
MAIL_USERNAME: null
MAIL_PASSWORD: null
MAIL_ENCRYPTION: null
AWS_ACCESS_KEY_ID:
AWS_SECRET_ACCESS_KEY:
AWS_DEFAULT_REGION: us-east-1
AWS_BUCKET:
PUSHER_APP_ID:
PUSHER_APP_KEY:
PUSHER_APP_SECRET:
PUSHER_APP_CLUSTER: mt1
MIX_PUSHER_APP_KEY: "${PUSHER_APP_KEY}"
MIX_PUSHER_APP_CLUSTER: "${PUSHER_APP_CLUSTER}"
AZURE_STORAGE_ACCOUNT: smdbstorageaccount
AZURE_STORAGE_CONTAINER: images-stage
AZURE_STORAGE_DOMAIN: blob.core.windows.net

secrets:
dbSecretName: admin-credentials
Copy link
Collaborator

@jajaramillo24 jajaramillo24 May 27, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

no es -qa

variables:
ADMIN_USER: ADMIN_USER
ADMIN_PASSWORD: ADMIN_PASSWORD
DB_HOST: DB_HOST
DB_DATABASE: DB_DATABASE
DB_USERNAME: DB_USERNAME
DB_PASSWORD: DB_PASSWORD
APP_KEY: APP_KEY
AZURE_STORAGE_KEY: AZURE_STORAGE_KEY
AZURE_STORAGE_CONNECTION_STRING: AZURE_STORAGE_CONNECTION_STRING

# Ingress (if using)
ingress:
enabled: true
annotations:
kubernetes.io/ingress.class: nginx
nginx.ingress.kubernetes.io/ssl-redirect: "true"
nginx.ingress.kubernetes.io/force-ssl-redirect: "true"
hosts:
- host: "qa.api.whatnow"
paths:
- path: /
pathType: ImplementationSpecific
- host: "api-preparemessages-stage.ifrc.org"
paths:
- path: /
pathType: Prefix
tls:
- hosts:
- "api-preparemessages-stage.ifrc.org"
secretName: "ifrc.certificates.secret"
Loading