Merge pull request #27 from Code4GovTech/dev

Dev

.dockerignore

@@ -0,0 +1 @@
+.env

.github/workflows/ci.yml

@@ -0,0 +1,146 @@
+name: Build
+
+env:
+  APP_NAME: CMS-BACKEND-API
+  PROJECT_NAME: CMS-BACKEND-API
+  DOCKER_COMPOSE_PATH: /root/app/docker-compose.yml
+  REGISTRY: ghcr.io
+  DOCKER_REGISTRY: ghcr.io/code4govtech/dmp-cms-backend-api
+  DOT_ENV_FILE_NAME: env.dmp-cms-backend-api
+
+
+on:
+  workflow_dispatch:
+  push:
+    branches:
+      - devops
+      - dev
+      - main
+
+permissions:
+  contents: write
+  packages: write
+
+
+jobs:
+  set_vars:
+    name: Set Environment Variables
+    runs-on: ubuntu-latest
+    outputs:
+      TAG_LATEST: ${{ steps.tag_values.outputs.TAG_LATEST }}
+      TAG_ENV_COMMIT: ${{ steps.tag_values.outputs.TAG_ENV_COMMIT }}
+      APP_ENV: ${{ steps.tag_values.outputs.APP_ENV }}
+    steps:
+      - name: Set Docker Image Tags
+        id: tag_values
+        run: |
+          case "${{ github.ref }}" in
+            'refs/heads/main')
+              echo "TAG_LATEST=prod-latest" >> $GITHUB_OUTPUT
+              echo "TAG_ENV_COMMIT=prod-${GITHUB_SHA:0:5}" >> $GITHUB_OUTPUT
+              echo "APP_ENV=PROD" >> $GITHUB_OUTPUT
+              ;;
+            'refs/heads/devops')
+              echo "TAG_LATEST=dev-latest" >> $GITHUB_OUTPUT
+              echo "TAG_ENV_COMMIT=dev-${GITHUB_SHA:0:5}" >> $GITHUB_OUTPUT
+              echo "APP_ENV=DEV" >> $GITHUB_OUTPUT
+              ;;
+            'refs/heads/dev')
+              echo "TAG_LATEST=dev-latest" >> $GITHUB_OUTPUT
+              echo "TAG_ENV_COMMIT=dev-${GITHUB_SHA:0:5}" >> $GITHUB_OUTPUT
+              echo "APP_ENV=DEV" >> $GITHUB_OUTPUT
+              ;;
+          esac
+
+  build:
+    name: Build
+    runs-on: ubuntu-latest
+    needs: [set_vars]
+    permissions:
+      contents: read
+      packages: write
+    env:
+      TAG_LATEST: ${{ needs.set_vars.outputs.TAG_LATEST }}
+      TAG_ENV_COMMIT: ${{ needs.set_vars.outputs.TAG_ENV_COMMIT }}
+      SUPABASE_URL: ${{ vars[format('APP_{0}_SUPABASE_URL', needs.set_vars.outputs.APP_ENV)] }}
+      SUPABASE_KEY: ${{ secrets[format('APP_{0}_SUPABASE_KEY', needs.set_vars.outputs.APP_ENV)] }}
+      SECRET_KEY: ${{ secrets[format('APP_{0}_SECRET_KEY', needs.set_vars.outputs.APP_ENV)] }}
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v2
+
+      # - name: Login to GitHub Packages
+      #   run: echo "${{ secrets.GITHUB_TOKEN }}" | docker login docker.pkg.github.com -u ${{ github.actor }} --password-stdin
+
+      - name: Log in to the Container registry
+        uses: docker/login-action@65b78e6e13532edd9afa3aa52ac7964289d1a9c1
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Set Docker Tags
+        uses: actions/setup-node@v2
+
+      - name: Read Secrets
+        run: |
+          echo "SUPABASE_URL=${SUPABASE_URL}" >> .env
+          echo "SUPABASE_KEY=${SUPABASE_KEY}" >> .env
+          echo "SECRET_KEY=${SECRET_KEY}" >> .env
+          mv .env ${{ env.DOT_ENV_FILE_NAME }}
+
+      - name: Copy env file to DEV Server 
+        uses: appleboy/[email protected]
+        if: needs.set_vars.outputs.APP_ENV == 'DEV'
+        with:
+          host: ${{ vars.DEV_SERVER_HOST }}
+          username: ${{ vars.DEV_SERVER_USERNAME }}
+          key: ${{ secrets.DEV_SSH_PRIVATE_KEY }}
+          port: ${{ vars.DEV_SERVER_PORT }}
+          source: "${{ env.DOT_ENV_FILE_NAME }}"
+          target: /root/app/
+
+      - name: Build ${{ env.APP_NAME }} Docker image
+        run: |
+          docker build -t ${{ env.DOCKER_REGISTRY }}:${{ env.TAG_LATEST }} .
+      
+      - name: Add tag to Docker image
+        run: |
+          echo ${{ github.sha }}
+          docker tag ${{ env.DOCKER_REGISTRY }}:${{ env.TAG_LATEST }} ${{ env.DOCKER_REGISTRY }}:${{ env.TAG_ENV_COMMIT }}
+      
+      - name: Push Docker image to GitHub Packages
+        run: | 
+          docker push ${{ env.DOCKER_REGISTRY }}:${{ env.TAG_LATEST }}
+          docker push ${{ env.DOCKER_REGISTRY }}:${{ env.TAG_ENV_COMMIT }}
+
+  deploy:
+    name: Deployment
+    runs-on: ubuntu-latest
+    needs: build
+    if: github.event_name == 'push' && github.ref_type == 'branch'
+
+    steps:
+      - name: Deploy to DevOps/Dev Environment
+        if: github.ref == 'refs/heads/devops' || github.ref == 'refs/heads/dev'
+        uses: appleboy/[email protected]
+        env:
+          DOCKER_COMPOSE_PATH: ${{ env.DOCKER_COMPOSE_PATH }}
+          APP_NAME: ${{ env.APP_NAME }}
+          DOCKER_REGISTRY: ${{ env.DOCKER_REGISTRY }}
+        with:
+          host: ${{ vars.DEV_SERVER_HOST }}
+          username: ${{ vars.DEV_SERVER_USERNAME }}
+          key: ${{ secrets.DEV_SSH_PRIVATE_KEY }}
+          port: ${{ vars.DEV_SERVER_PORT }}
+          allenvs: true
+          script_stop: true
+          envs: DOCKER_COMPOSE_PATH,APP_NAME,DOCKER_REGISTRY
+          script: |
+            echo "Docker Compose Path $DOCKER_COMPOSE_PATH"
+            docker compose -f $DOCKER_COMPOSE_PATH pull
+            docker compose -f $DOCKER_COMPOSE_PATH up -d
+
+      - name: Deploy to Prod environment
+        if: github.ref == 'refs/heads/main'
+        run: echo "Deploying to Kubernetes"

.gitignore

@@ -1,5 +1,5 @@
 dmp_2/__pycache__/*
 .env
 env/*
-
+venv
 __pycache__/*

Dockerfile

@@ -0,0 +1,22 @@
+# Use an official Python runtime as a parent image
+FROM python:3.12-slim
+
+# Set the working directory in the container
+WORKDIR /app
+
+# Copy the current directory contents into the container at /app
+COPY . /app
+
+# Install any needed packages specified in requirements.txt
+RUN pip install --no-cache-dir -r requirements.txt
+
+# Make port 5000 available to the world outside this container
+EXPOSE 5000
+
+# Define environment variable
+ENV FLASK_APP=wsgi.py
+ENV FLASK_RUN_HOST=0.0.0.0
+
+# Run the application
+CMD ["flask", "run"]
+