There are a couple of things that need to be said about our CD setup
We use AKS (Azure Kubernetes Service) for our APIs. See https://github.com/De-Oefenpraktijk/Manifest-As-Code for more. As a consequence, the pipelines are designed to deploy to Kubernetes.
We chose to deploy the front end with Azure Static Web Apps.
Green arrows - developer actions
Black arrows - automated actions
Staging is a safety net for you as a developer. With staging you can assure that your changes are safe and sound.
Simply open a pull request from your feature branch to development and GitHub Actions will do the rest.
That's a little bit more complex. The idea is that we don't want to expose staging endpoints to the internet. To solve that we decided to use the port-forward functionality of kubetcl (Kubernetes CLI). The way it works is that you forward the traffic from the staging environment in the cluster to your local machine.
- Start with logging in to Azure and making sure you have a right Kubernetes context
kubectl port-forward service/profile-service 8081:80 -n stage- You can now use
localhost:8081to access the staging environment. - You can also use
localhost:8081/swaggerto open swagger.
The next step is to do a code review with your fellow engineers and when your pull request is approved, merge it to the main branch. This will trigger the production pipeline.
Yes, you can. Every commit has an associated docker image in the registry. Just revert the commit.
There is a folder k8s-manifest in the root of the folder with the deployment.yaml file. That file contains the workload definiton.
There is a dedicated service principal account in the resource group RGR-DeOefenpraktijk. Credentials are stored securely in GitHub secrets. The pipeline then authenticates with those credentials to perform actions like build and push images.
https://learn.microsoft.com/en-us/azure/aks/kubernetes-action