Skip to content

adding the Dockerfiles #8

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
rk-madaka wants to merge 11 commits into
base: main
Choose a base branch
from
Open

adding the Dockerfiles #8

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
eeb2227
adding the Dockerfiles
rk-madaka Jan 9, 2026
35b3b2c
ci: add basic CI pipeline for tests and docker build
rk-madaka Jan 9, 2026
145f5a4
Merge branch 'feature/ci-basic' into develop
rk-madaka Jan 9, 2026
631cbed
Added with automation
rk-madaka Jan 10, 2026
5cbb0e1
Added with automation changes
rk-madaka Jan 11, 2026
6c3de7b
Merge branch 'develop' into feature/automation
rk-madaka Jan 11, 2026
d083534
Added without test cases
rk-madaka Jan 11, 2026
7c09916
building frontend docker
rk-madaka Jan 11, 2026
2c1a67e
adding secrets
rk-madaka Jan 11, 2026
270015a
Working on Azure ACR fix
rk-madaka Jan 11, 2026
d39d1a9
ACR issue fix
rk-madaka Jan 11, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
44 changes: 44 additions & 0 deletions .github/workflows/cd.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,44 @@
name: CD - Production (AWS + Azure)

on:
push:
branches:
- main

jobs:
deploy:
runs-on: ubuntu-latest

steps:
- name: Checkout code
uses: actions/checkout@v4

# -------------------------
# Deploy to AWS
# -------------------------
- name: Configure AWS credentials
uses: aws-actions/configure-aws-credentials@v4
with:
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
aws-region: ap-south-1

- name: Terraform Apply - AWS
run: |
cd infra/aws
terraform init
terraform apply -auto-approve

# -------------------------
# Deploy to Azure
# -------------------------
- name: Azure Login
uses: azure/login@v1
with:
creds: ${{ secrets.AZURE_CREDENTIALS }}

- name: Terraform Apply - Azure
run: |
cd infra/azure
terraform init
terraform apply -auto-approve
114 changes: 114 additions & 0 deletions .github/workflows/ci.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,114 @@
name: CI - Develop (AWS + Azure)

on:
push:
branches:
- develop

# ✅ REQUIRED PERMISSIONS
permissions:
contents: read

jobs:
build-test-push:
runs-on: ubuntu-latest

env:
AWS_REGION: ${{ secrets.AWS_REGION }}
AWS_ACCOUNT_ID: ${{ secrets.AWS_ACCOUNT_ID }}
AZURE_ACR_NAME: ${{ secrets.AZURE_ACR_NAME }}

steps:
# -------------------------
# Checkout
# -------------------------
- name: Checkout code
uses: actions/checkout@v4

# -------------------------
# Backend setup
# -------------------------
- name: Set up Python
uses: actions/setup-python@v5
with:
python-version: '3.11'

- name: Install backend dependencies
run: |
cd backend
pip install -r requirements.txt

# -------------------------
# Frontend setup
# -------------------------
- name: Set up Node.js
uses: actions/setup-node@v4
with:
node-version: '18'

- name: Install frontend dependencies
run: |
cd frontend
npm install

# -------------------------
# Docker Build
# -------------------------
- name: Build backend image
run: docker build -t backend:${{ github.sha }} ./backend

- name: Build frontend image
run: docker build -t frontend:${{ github.sha }} ./frontend

# =================================================
# AWS ECR
# =================================================
- name: Configure AWS credentials
uses: aws-actions/configure-aws-credentials@v4
with:
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
aws-region: ${{ env.AWS_REGION }}

- name: Login to AWS ECR
run: |
aws ecr get-login-password --region $AWS_REGION \
| docker login --username AWS --password-stdin \
$AWS_ACCOUNT_ID.dkr.ecr.$AWS_REGION.amazonaws.com

- name: Ensure ECR repositories exist
run: |
for repo in backend frontend; do
aws ecr describe-repositories --repository-names $repo \
|| aws ecr create-repository --repository-name $repo
done

- name: Push images to AWS ECR
run: |
for repo in backend frontend; do
docker tag $repo:${{ github.sha }} \
$AWS_ACCOUNT_ID.dkr.ecr.$AWS_REGION.amazonaws.com/$repo:${{ github.sha }}
docker push \
$AWS_ACCOUNT_ID.dkr.ecr.$AWS_REGION.amazonaws.com/$repo:${{ github.sha }}
done

# =================================================
# Azure ACR (FIXED)
# =================================================
- name: Azure Login
uses: azure/login@v2
with:
creds: ${{ secrets.AZURE_CREDENTIALS }}

- name: Login to Azure ACR
run: |
az acr login --name $AZURE_ACR_NAME

- name: Push images to Azure ACR
run: |
for repo in backend frontend; do
docker tag $repo:${{ github.sha }} \
$AZURE_ACR_NAME.azurecr.io/$repo:${{ github.sha }}
docker push \
$AZURE_ACR_NAME.azurecr.io/$repo:${{ github.sha }}
done
12 changes: 12 additions & 0 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,12 @@
# Backend
backend/venv/
backend/app/__pycache__/
backend/*.pyc

# Frontend
frontend/node_modules/
frontend/.next/

# OS / editor junk
.DS_Store
*.log
44 changes: 44 additions & 0 deletions backend/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,44 @@
# =========================
# Stage 1: Build stage
# =========================
FROM python:3.11-slim AS builder

# Set working directory
WORKDIR /app

# Install build dependencies
COPY requirements.txt .
RUN pip install --no-cache-dir --upgrade pip \
&& pip install --no-cache-dir -r requirements.txt

# Copy application code
COPY app app

# =========================
# Stage 2: Runtime stage
# =========================
FROM python:3.11-slim

# Create non-root user (security best practice)
RUN useradd -m appuser

# Set working directory
WORKDIR /app

# Copy only required files from builder stage
COPY --from=builder /usr/local/lib/python3.11 /usr/local/lib/python3.11
COPY --from=builder /usr/local/bin /usr/local/bin
COPY app app

# Switch to non-root user
USER appuser

# Environment-based configuration
ENV HOST=0.0.0.0
ENV PORT=8000

# Expose application port
EXPOSE 8000

# Start FastAPI using Uvicorn
CMD ["uvicorn", "app.main:app", "--host", "0.0.0.0", "--port", "8000"]
47 changes: 47 additions & 0 deletions frontend/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,47 @@
# =========================
# Stage 1: Build stage
# =========================
FROM node:18-alpine AS builder

# Set working directory
WORKDIR /app

# Copy package files first (better caching)
COPY package.json package-lock.json ./
RUN npm ci

# Copy application source
COPY . .

# Build Next.js app
RUN npm run build

# =========================
# Stage 2: Production stage
# =========================
FROM node:18-alpine

# Create non-root user
RUN addgroup -S appgroup && adduser -S appuser -G appgroup

# Set working directory
WORKDIR /app

# Copy only required build output
COPY --from=builder /app/package.json ./
COPY --from=builder /app/package-lock.json ./
COPY --from=builder /app/.next ./.next
# COPY --from=builder /app/public ./public
COPY --from=builder /app/node_modules ./node_modules

# Switch to non-root user
USER appuser

# Environment variable for backend URL
ENV NEXT_PUBLIC_API_URL=http://localhost:8000

# Expose Next.js port
EXPOSE 3000

# Start Next.js in production mode
CMD ["npm", "start"]