sayedimac
diff --git a/‎.github/workflows/build_push_AKS.yml
Lines changed: 7 additions & 2 deletions b/‎.github/workflows/build_push_AKS.yml
Lines changed: 7 additions & 2 deletions
diff --git a/‎.github/workflows/deploy_to_aca.yml
Lines changed: 74 additions & 0 deletions b/‎.github/workflows/deploy_to_aca.yml
Lines changed: 74 additions & 0 deletions
diff --git a/‎.github/workflows/deploy_to_aci.yml
Lines changed: 74 additions & 0 deletions b/‎.github/workflows/deploy_to_aci.yml
Lines changed: 74 additions & 0 deletions
diff --git a/‎acr-nginx.yaml
Lines changed: 28 additions & 0 deletions b/‎acr-nginx.yaml
Lines changed: 28 additions & 0 deletions
diff --git a/‎azd/aci/infra.bicep
Lines changed: 51 additions & 0 deletions b/‎azd/aci/infra.bicep
Lines changed: 51 additions & 0 deletions
diff --git a/‎azd/aci/main.bicep
Lines changed: 64 additions & 0 deletions b/‎azd/aci/main.bicep
Lines changed: 64 additions & 0 deletions
@@ -67,18 +67,23 @@ jobs:
         with:
           subscriptionId: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
           resourceGroupName: ${{ env.RESOURCE_GROUP }}
-          template: IaC/acr.bicep
+          template: azd/modules/acr.bicep
           parameters: "registryName=${{ env.AZURE_CONTAINER_REGISTRY }}"
           failOnStdErr: false # Deploy AKS using Bicep
       - name: Deploy AKS using Bicep
         uses: azure/arm-deploy@v2
         with:
           subscriptionId: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
           resourceGroupName: ${{ env.RESOURCE_GROUP }}
-          template: IaC/aks.bicep
+          template: azd/modules/aks.bicep
           parameters: "aksClusterName=${{ env.CLUSTER_NAME }} acrResourceId=/subscriptions/${{ secrets.AZURE_SUBSCRIPTION_ID }}/resourceGroups/${{ env.RESOURCE_GROUP }}/providers/Microsoft.ContainerRegistry/registries/${{ env.AZURE_CONTAINER_REGISTRY }}"
           failOnStdErr: false
 
+      # Ensures AKS has access to the ACR
+      - name: Ensure AKS has access to the ACR # REcommended permission is Role Based Access Control Administrator
+        run: |
+          az aks update --name ${{ env.CLUSTER_NAME }} --resource-group ${{ env.RESOURCE_GROUP }} --attach-acr ${{ env.AZURE_CONTAINER_REGISTRY }}
+
       # Builds and pushes an image up to your Azure Container Registry
       - name: Build and push image to ACR
         run: |
 
@@ -0,0 +1,74 @@
+# This workflow will build and deploy an application to Azure Container Apps (ACA)
+# It uses the same container registry as the AKS deployment workflow
+
+name: Deploy to ACA
+
+on:
+  push:
+    branches: ["aca-deploy"]
+  workflow_dispatch:
+
+env:
+  AZURE_CONTAINER_REGISTRY: "jaz400acr"
+  CONTAINER_NAME: "docker-app"
+  RESOURCE_GROUP: "az400"
+  ACA_NAME: "docker-app-aca"
+
+jobs:
+  buildAndDeploy:
+    permissions:
+      contents: read
+      id-token: write
+    runs-on: ubuntu-latest
+    environment: production
+    steps:
+      # Checks out the repository this file is in
+      - uses: actions/checkout@v4
+
+      # Logs in with your Azure credentials
+      - name: Azure login
+        uses: azure/login@v2
+        with:
+          client-id: ${{ secrets.AZURE_CLIENT_ID }}
+          tenant-id: ${{ secrets.AZURE_TENANT_ID }}
+          subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          enable-AzPSSession: true
+
+      # Deploy ACR using Bicep if it doesn't exist
+      - name: Deploy ACR using Bicep
+        uses: azure/arm-deploy@v2
+        with:
+          subscriptionId: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          resourceGroupName: ${{ env.RESOURCE_GROUP }}
+          template: IaC/acr.bicep
+          parameters: "registryName=${{ env.AZURE_CONTAINER_REGISTRY }}"
+          failOnStdErr: false
+
+      # Builds and pushes an image up to your Azure Container Registry
+      - name: Build and push image to ACR
+        run: |
+          az acr build --image ${{ env.AZURE_CONTAINER_REGISTRY }}.azurecr.io/${{ env.CONTAINER_NAME }}:latest --registry ${{ env.AZURE_CONTAINER_REGISTRY }} -g ${{ env.RESOURCE_GROUP }} .
+
+      # Deploy to Azure Container Apps using Bicep
+      - name: Deploy to Azure Container Apps
+        uses: azure/arm-deploy@v2
+        with:
+          subscriptionId: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          resourceGroupName: ${{ env.RESOURCE_GROUP }}
+          template: IaC/aca.bicep
+          parameters: >
+            containerAppName=${{ env.ACA_NAME }}
+            acrName=${{ env.AZURE_CONTAINER_REGISTRY }}
+            imageName=${{ env.CONTAINER_NAME }}
+          failOnStdErr: false
+
+      # Get Container App URL for output
+      - name: Get Container App URL
+        id: get-aca-url
+        run: |
+          ACA_URL=$(az containerapp show --name ${{ env.ACA_NAME }} --resource-group ${{ env.RESOURCE_GROUP }} --query properties.configuration.ingress.fqdn -o tsv)
+          echo "Container App is accessible at: https://$ACA_URL"
+          echo "ACA_URL=$ACA_URL" >> $GITHUB_OUTPUT
+
+      - name: Output deployment URL
+        run: echo "Application deployed to https://${{ steps.get-aca-url.outputs.ACA_URL }}"
@@ -0,0 +1,74 @@
+# This workflow will build and deploy an application to Azure Container Instances (ACI)
+# It uses the same container registry as the AKS deployment workflow
+
+name: Deploy to ACI
+
+on:
+  push:
+    branches: ["aci-deploy"]
+  workflow_dispatch:
+
+env:
+  AZURE_CONTAINER_REGISTRY: "jaz400acr"
+  CONTAINER_NAME: "docker-app"
+  RESOURCE_GROUP: "az400"
+  ACI_NAME: "docker-app-aci"
+
+jobs:
+  buildAndDeploy:
+    permissions:
+      contents: read
+      id-token: write
+    runs-on: ubuntu-latest
+    environment: production
+    steps:
+      # Checks out the repository this file is in
+      - uses: actions/checkout@v4
+
+      # Logs in with your Azure credentials
+      - name: Azure login
+        uses: azure/login@v2
+        with:
+          client-id: ${{ secrets.AZURE_CLIENT_ID }}
+          tenant-id: ${{ secrets.AZURE_TENANT_ID }}
+          subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          enable-AzPSSession: true
+
+      # Deploy ACR using Bicep if it doesn't exist
+      - name: Deploy ACR using Bicep
+        uses: azure/arm-deploy@v2
+        with:
+          subscriptionId: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          resourceGroupName: ${{ env.RESOURCE_GROUP }}
+          template: IaC/acr.bicep
+          parameters: "registryName=${{ env.AZURE_CONTAINER_REGISTRY }}"
+          failOnStdErr: false
+
+      # Builds and pushes an image up to your Azure Container Registry
+      - name: Build and push image to ACR
+        run: |
+          az acr build --image ${{ env.AZURE_CONTAINER_REGISTRY }}.azurecr.io/${{ env.CONTAINER_NAME }}:latest --registry ${{ env.AZURE_CONTAINER_REGISTRY }} -g ${{ env.RESOURCE_GROUP }} .
+
+      # Deploy to ACI using Bicep
+      - name: Deploy to Azure Container Instances
+        uses: azure/arm-deploy@v2
+        with:
+          subscriptionId: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          resourceGroupName: ${{ env.RESOURCE_GROUP }}
+          template: IaC/aci.bicep
+          parameters: >
+            containerInstanceName=${{ env.ACI_NAME }}
+            acrName=${{ env.AZURE_CONTAINER_REGISTRY }}
+            imageName=${{ env.CONTAINER_NAME }}
+          failOnStdErr: false
+
+      # Get ACI IP address for output
+      - name: Get ACI IP Address
+        id: get-aci-ip
+        run: |
+          IP_ADDRESS=$(az container show --name ${{ env.ACI_NAME }} --resource-group ${{ env.RESOURCE_GROUP }} --query ipAddress.ip -o tsv)
+          echo "Container is accessible at: http://$IP_ADDRESS"
+          echo "ACI_IP=$IP_ADDRESS" >> $GITHUB_OUTPUT
+
+      - name: Output deployment URL
+        run: echo "Application deployed to http://${{ steps.get-aci-ip.outputs.ACI_IP }}"
@@ -0,0 +1,28 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx0-deployment
+  labels:
+    app: nginx0-deployment
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: nginx0
+  template:
+    metadata:
+      labels:
+        app: nginx0
+    spec:
+      containers:
+      - name: nginx
+        image: nginx:latest
+        ports:
+        - containerPort: 80
+        resources:
+          requests:
+            memory: "32Mi"
+            cpu: "50m"
+          limits:
+            memory: "64Mi" 
+            cpu: "100m"
@@ -0,0 +1,51 @@
+targetScope = 'subscription'
+
+@minLength(1)
+@maxLength(64)
+@description('Name of the the environment which is used to generate a short unique hash used in all resources.')
+param environmentName string
+
+@minLength(1)
+@description('Primary location for all resources')
+param location string
+
+var resourceToken = toLower(uniqueString(subscription().id, environmentName, location))
+var tags = { 'azd-env-name': environmentName }
+
+resource resourceGroup 'Microsoft.Resources/resourceGroups@2021-04-01' = {
+  name: 'rg-${environmentName}'
+  location: location
+  tags: tags
+}
+
+module containerRegistry 'modules/container-registry.bicep' = {
+  name: 'registry'
+  scope: resourceGroup
+  params: {
+    location: location
+    tags: tags
+    name: 'acr${resourceToken}'
+  }
+}
+
+module containerInstance 'modules/container-instance.bicep' = {
+  name: 'container-instance'
+  scope: resourceGroup
+  params: {
+    location: location
+    tags: tags
+    name: 'aci-${resourceToken}'
+    containerImage: '${containerRegistry.outputs.loginServer}/docker-app:latest'
+    containerPort: 80
+    cpuCores: '1.0'
+    memoryInGb: '1.5'
+    registryLoginServer: containerRegistry.outputs.loginServer
+    registryUsername: containerRegistry.outputs.adminUsername
+    registryPassword: containerRegistry.outputs.adminPassword
+  }
+}
+
+output AZURE_LOCATION string = location
+output AZURE_CONTAINER_REGISTRY_ENDPOINT string = containerRegistry.outputs.loginServer
+output AZURE_CONTAINER_REGISTRY_NAME string = containerRegistry.outputs.name
+output ACI_URI string = containerInstance.outputs.uri
@@ -0,0 +1,64 @@
+targetScope = 'subscription'
+
+@minLength(1)
+@maxLength(64)
+@description('Name of the the environment which is used to generate a short unique hash used in all resources.')
+param environmentName string
+
+@minLength(1)
+@description('Primary location for all resources')
+param location string
+
+@description('The container image to deploy')
+param containerImage string = ''
+
+@description('Port the container listens on')
+param containerPort int = 80
+
+@description('CPU cores allocated to the container instance')
+param cpuCores string = '1.0'
+
+@description('Memory allocated to the container instance in GB')
+param memoryInGb string = '1.5'
+
+var resourceToken = toLower(uniqueString(subscription().id, environmentName, location))
+var tags = { 'azd-env-name': environmentName }
+
+resource resourceGroup 'Microsoft.Resources/resourceGroups@2021-04-01' = {
+  name: 'rg-${environmentName}'
+  location: location
+  tags: tags
+}
+
+module containerRegistry './modules/acr.bicep' = {
+  name: 'registry'
+  scope: resourceGroup
+  params: {
+    location: location
+    registryName: 'acr${resourceToken}'
+    sku: 'Basic'
+    addAdminUser: true
+  }
+}
+
+module containerInstance './modules/container-instance.bicep' = {
+  name: 'container-instance'
+  scope: resourceGroup
+  params: {
+    location: location
+    tags: tags
+    name: 'aci-${resourceToken}'
+    containerImage: !empty(containerImage) ? containerImage : 'mcr.microsoft.com/azuredocs/aci-helloworld'
+    containerPort: containerPort
+    cpuCores: cpuCores
+    memoryInGb: memoryInGb
+    registryLoginServer: containerRegistry.outputs.loginServer
+    registryUsername: containerRegistry.outputs.adminUsername
+    registryPassword: containerRegistry.outputs.adminPassword
+  }
+}
+
+output AZURE_LOCATION string = location
+output AZURE_CONTAINER_REGISTRY_ENDPOINT string = containerRegistry.outputs.loginServer
+output AZURE_CONTAINER_REGISTRY_NAME string = containerRegistry.outputs.name
+output ACI_URI string = containerInstance.outputs.uri