Updated Workflow Letest

Author: Ayukhandal00

.github/workflows/build-deploy.yml

@@ -6,88 +6,126 @@ on:
 
 env:
   IMAGE_NAME: python-app
+  TF_DIR: ./terraform             # Update if your terraform path differs
 
 jobs:
   build-and-deploy:
     runs-on: ubuntu-latest
 
     steps:
+      ###############################################################
+      # Checkout Repository
+      ###############################################################
       - name: Checkout repository
         uses: actions/checkout@v4
 
+      ###############################################################
+      # Configure Git (for Terraform modules hosted on GitHub)
+      ###############################################################
       - name: Configure Git for Terraform module downloads
         run: |
           git config --global url."https://${{ secrets.GH_TOKEN }}:x-oauth-basic@github.com/".insteadOf "https://github.com/"
 
-      - name: Log in to Azure
+      ###############################################################
+      # Login to Azure
+      ###############################################################
+      - name: Azure Login
         uses: azure/login@v2
         with:
           creds: ${{ secrets.AZURE_CREDENTIALS }}
 
+      ###############################################################
+      # Login to Azure Container Registry
+      ###############################################################
       - name: Log in to ACR
-        run: |
-          az acr login --name ${{ secrets.ACR_NAME }}
+        run: az acr login --name ${{ secrets.ACR_NAME }}
 
+      ###############################################################
+      # Determine Deployment Slot (Blue or Green)
+      ###############################################################
       - name: Determine Deployment Slot (Blue/Green)
         id: slot
         run: |
-          # Toggle deployment slot
           LAST_SLOT_FILE=".last_slot"
           if [ -f "$LAST_SLOT_FILE" ]; then
             LAST_SLOT=$(cat $LAST_SLOT_FILE)
             if [ "$LAST_SLOT" == "blue" ]; then
-              echo "green" > $LAST_SLOT_FILE
-              echo "slot=green" >> $GITHUB_OUTPUT
+              NEW_SLOT="green"
             else
-              echo "blue" > $LAST_SLOT_FILE
-              echo "slot=blue" >> $GITHUB_OUTPUT
+              NEW_SLOT="blue"
             fi
           else
-            echo "blue" > $LAST_SLOT_FILE
-            echo "slot=blue" >> $GITHUB_OUTPUT
+            NEW_SLOT="blue"
           fi
+          echo $NEW_SLOT > $LAST_SLOT_FILE
+          echo "slot=$NEW_SLOT" >> $GITHUB_OUTPUT
 
-      - name: Build and Push Docker image to ACR
+      ###############################################################
+      # Build & Push Docker Image to ACR
+      ###############################################################
+      - name: Build and Push Docker image
         run: |
           IMAGE_TAG=${{ github.run_number }}
-          az acr build --registry ${{ secrets.ACR_NAME }} \
+          az acr build \
+            --registry ${{ secrets.ACR_NAME }} \
             --image ${{ env.IMAGE_NAME }}:${IMAGE_TAG} \
-            --image ${{ env.IMAGE_NAME }}:latest .
+            --image ${{ env.IMAGE_NAME }}:${{ steps.slot.outputs.slot }} \
+            .
 
+      ###############################################################
+      # Setup Terraform
+      ###############################################################
       - name: Setup Terraform
         uses: hashicorp/setup-terraform@v3
         with:
           terraform_version: 1.9.5
 
+      ###############################################################
+      # Terraform Init
+      ###############################################################
       - name: Terraform Init
-        working-directory: terraformv3/examples/complete/container_platform
+        working-directory: ${{ env.TF_DIR }}
         env:
           ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
           ARM_CLIENT_SECRET: ${{ secrets.AZURE_CLIENT_SECRET }}
           ARM_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
           ARM_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }}
         run: terraform init -input=false
 
+      ###############################################################
+      # Terraform Plan
+      ###############################################################
       - name: Terraform Plan
-        working-directory: terraformv3/examples/complete/container_platform
+        working-directory: ${{ env.TF_DIR }}
         env:
           ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
           ARM_CLIENT_SECRET: ${{ secrets.AZURE_CLIENT_SECRET }}
           ARM_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
           ARM_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }}
         run: |
           terraform plan \
-            -var="image_tag=${{ github.run_number }}" \
+            -var="docker_image_name=${{ env.IMAGE_NAME }}" \
+            -var="docker_registry_url=${{ secrets.ACR_LOGIN_SERVER }}" \
             -var="slot_name=${{ steps.slot.outputs.slot }}" \
-            -var="acr_login_server=${{ secrets.ACR_LOGIN_SERVER }}" \
-            -var="image_name=${{ env.IMAGE_NAME }}" \
+            -var="image_tag=${{ github.run_number }}" \
             -out=tfplan
 
+      ###############################################################
+      # Terraform Apply (Deploy Selected Slot)
+      ###############################################################
       - name: Terraform Apply
-        working-directory: terraformv3/examples/complete/container_platform
+        working-directory: ${{ env.TF_DIR }}
         env:
           ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
           ARM_CLIENT_SECRET: ${{ secrets.AZURE_CLIENT_SECRET }}
           ARM_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
           ARM_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }}
         run: terraform apply -auto-approve tfplan
+
+      ###############################################################
+      # Optional: Swap Slots (Green <-> Blue)
+      ###############################################################
+      - name: Swap Slots (Post Deployment)
+        if: success()
+        working-directory: ${{ env.TF_DIR }}
+        run: terraform apply -auto-approve -target=azurerm_web_app_slot_swap.swap

terraformv3/examples/complete/container_platform/example.tf

@@ -1,21 +1,23 @@
+###############################################################
+# Provider
+###############################################################
 provider "azurerm" {
   features {}
-  # subscription_id = "1ac2caa4-336e-4daa-b8f1-0fbabe2d4b11"
 }
 
-##----------------------------------------------------------------------------- 
-## Local declaration
-##-----------------------------------------------------------------------------
+###############################################################
+# Local declaration
+###############################################################
 locals {
   name        = "ayush-test"
   environment = "dev"
   label_order = ["name", "environment"]
   location    = "Canada Central"
 }
 
-##----------------------------------------------------------------------------- 
-## Resource group
-##-----------------------------------------------------------------------------
+###############################################################
+# Resource Group
+###############################################################
 module "resource_group" {
   source      = "clouddrove/resource-group/azure"
   version     = "1.0.2"
@@ -25,9 +27,9 @@ module "resource_group" {
   location    = local.location
 }
 
-##----------------------------------------------------------------------------- 
-## Log Analytics
-##-----------------------------------------------------------------------------
+###############################################################
+# Log Analytics
+###############################################################
 module "log-analytics" {
   source                           = "clouddrove/log-analytics/azure"
   version                          = "1.1.0"
@@ -41,9 +43,9 @@ module "log-analytics" {
   log_analytics_workspace_id       = module.log-analytics.workspace_id
 }
 
-##----------------------------------------------------------------------------- 
-## App service with container runtime 
-##-----------------------------------------------------------------------------
+###############################################################
+# Primary App Service (Production Slot)
+###############################################################
 module "app-container" {
   source              = "../../.."
   name                = local.name
@@ -54,27 +56,19 @@ module "app-container" {
   os_type             = "Linux"
   sku_name            = "S1"
 
-  ##----------------------------------------------------------------------------- 
-  ## To Deploy Container
-  ##-----------------------------------------------------------------------------
   use_docker               = true
   docker_image_name        = "python-app"
   docker_registry_url      = "ayushacr123.azurecr.io"
-  # docker_registry_username = "<registryname>"
-  # docker_registry_password = "<docker_registry_password>"
   acr_id                   = "/subscriptions/1ac2caa4-336e-4daa-b8f1-0fbabe2d4b11/resourceGroups/ayush-rg/providers/Microsoft.ContainerRegistry/registries/ayushacr123"
 
   site_config = {
     container_registry_use_managed_identity = true
   }
+
   app_settings = {
     foo = "bar"
   }
 
-  ##----------------------------------------------------------------------------- 
-  ## App Service logs
-  ##-----------------------------------------------------------------------------
-
   app_service_logs = {
     detailed_error_messages = false
     failed_request_tracing  = false
@@ -89,8 +83,62 @@ module "app-container" {
     }
   }
 
-  ##----------------------------------------------------------------------------- 
-  ## log analytics
-  ##-----------------------------------------------------------------------------
   log_analytics_workspace_id = module.log-analytics.workspace_id
-}
+}
+
+###############################################################
+# Blue-Green Deployment Configuration
+###############################################################
+
+# --- Blue Slot (Active Production) ---
+resource "azurerm_linux_web_app_slot" "blue" {
+  name          = "blue"
+  app_service_id = module.app-container.app_service_id  # ✅ FIXED
+  service_plan_id = module.app-container.app_service_plan_id
+
+  site_config {
+    linux_fx_version = "DOCKER|ayushacr123.azurecr.io/python-app:blue"
+    container_registry_use_managed_identity = true
+  }
+
+  app_settings = {
+    SLOT_NAME = "blue"
+  }
+
+  identity {
+    type = "SystemAssigned"
+  }
+}
+
+# --- Green Slot (Staging Slot) ---
+resource "azurerm_linux_web_app_slot" "green" {
+  name          = "green"
+  app_service_id = module.app-container.app_service_id  # ✅ FIXED
+  service_plan_id = module.app-container.app_service_plan_id
+
+
+  site_config {
+    linux_fx_version = "DOCKER|ayushacr123.azurecr.io/python-app:green"
+    container_registry_use_managed_identity = true
+  }
+  app_settings = {
+    SLOT_NAME = "green"
+  }
+
+  identity {
+    type = "SystemAssigned"
+  }
+}
+
+###############################################################
+# Optional: Blue-Green Swap (Manual or Pipeline Triggered)
+###############################################################
+# This resource defines slot swap (to switch traffic)
+# You can trigger it manually or via CI/CD (e.g., GitHub Actions)
+
+resource "azurerm_web_app_slot_swap" "swap" {
+  resource_group_name = module.resource_group.resource_group_name
+  web_app_name        = module.app-container.app_service_name
+  slot_name           = azurerm_linux_web_app_slot.green.name   # New version (staging)
+  target_slot_name    = azurerm_linux_web_app_slot.blue.name    # Current production
+}

terraformv3/examples/complete/container_platform/versions.tf

@@ -1,20 +1,74 @@
-variable "image_tag" {
-  description = "Tag of the Docker image to deploy"
+###############################################################
+# Variables
+###############################################################
+
+variable "subscription_id" {
+  description = "Azure Subscription ID"
   type        = string
-  default     = "latest"
 }
-# EnVirement ( dev )
-variable "env" {
-  description = "Environment name (dev, test, prod)"
+
+variable "location" {
+  description = "Azure region for deployment"
   type        = string
-  default     = "dev"
+  default     = "Canada Central"
+}
+
+variable "name" {
+  description = "Base name for all resources"
+  type        = string
+  default     = "ayush-test"
 }
-variable "slot_name" {
+
+variable "environment" {
+  description = "Environment name (e.g. dev, staging, prod)"
   type        = string
-  description = "Deployment slot name (blue or green)"
-  default     = "blue"
+  default     = "dev"
 }
+
 variable "docker_registry_url" {
+  description = "Azure Container Registry login server URL"
+  type        = string
+  default     = "ayushacr123.azurecr.io"
+}
+
+variable "docker_image_name" {
+  description = "Docker image name for deployment"
+  type        = string
+  default     = "python-app"
+}
+
+variable "acr_id" {
+  description = "Resource ID of Azure Container Registry"
   type        = string
-  description = "ACR login server URL"
-}
+  default     = "/subscriptions/1ac2caa4-336e-4daa-b8f1-0fbabe2d4b11/resourceGroups/ayush-rg/providers/Microsoft.ContainerRegistry/registries/ayushacr123"
+}
+
+variable "sku_name" {
+  description = "App Service plan SKU (S1, P1v2, etc.)"
+  type        = string
+  default     = "S1"
+}
+
+variable "os_type" {
+  description = "Operating system type"
+  type        = string
+  default     = "Linux"
+}
+
+variable "enable_logs" {
+  description = "Enable or disable App Service logs"
+  type        = bool
+  default     = true
+}
+
+variable "log_retention_days" {
+  description = "Days to retain logs"
+  type        = number
+  default     = 7
+}
+
+variable "log_retention_mb" {
+  description = "Retention size (MB) for logs"
+  type        = number
+  default     = 35
+}