devops docs refactoring

Wael Kdouh · pankajagrawal16 · commit 0081582fafce · 2023-04-20T06:40:30.000+02:00
diff --git a/.github/workflows/infra-deploy.yml b/.github/workflows/infra-deploy.yml
@@ -137,7 +137,7 @@ jobs:
             az acr import --name ${{ vars.CONTAINER_REGISTRY_NAME }} --source ${{ env.REGISTRY }}/${{ env.BACKEND_API_IMAGE_NAME }}:latest --image tasksmanager/tasksmanager-backend-api --force
             az acr import --name ${{ vars.CONTAINER_REGISTRY_NAME }} --source ${{ env.REGISTRY }}/${{ env.FRONTEND_APP_IMAGE_NAME }}:latest --image tasksmanager/tasksmanager-frontend-webapp --force
 
-  # This job deploys the bicep template to Azure subscription either using ACR images
+  # This job deploys the bicep template to Azure subscription using ACR images
   deploy-with-acr-images:
     runs-on: ubuntu-latest
     if : ${{ github.event.inputs.teardown != 'true' }}
diff --git a/docs/aca/10-aca-iac-bicep/ci-cd-azdo.md b/docs/aca/10-aca-iac-bicep/ci-cd-azdo.md
@@ -1,15 +1,15 @@
 
-# Deploy infrastructure using GitHub Actions
+# Deploy Infrastructure Using Azure DevOps
 
 !!! info "Module Duration"
     30 minutes
 
-Azure Devops pipeline is another great way to automate your workflow. In this section, we will create a Azure Devops Pipeline to 
-deploy the infrastructure components of our application.
+In the [previous section](../../aca/10-aca-iac-bicep/iac-bicep.md), we demonstrated how Bicep scripts can be used to automate the deployment of infrastructure components. However, creating the container registry and deploying the Bicep scripts using the Azure CLI still required manual effort. For a more efficient and streamlined process, it's preferable to use automation. Azure DevOps is a great solution for automating workflows, and in this section, we'll explain how to create a Azure DevOps pipeline for deploying the infrastructure components of our application.
 
-The workshop repository contains a Azure Devops Pipeline yaml file that will be used to deploy the infrastructure 
-components of our application. Follow the steps below to create a devops pipeline to deploy the 
-infrastructure components of our application.
+The workshop repository contains a Azure Devops Pipeline yaml file that will be used to deploy the infrastructure components of our application. Follow the steps below to create a devops pipeline to deploy the infrastructure components of our application.
+
+!!! note
+        The following instructions assume that you will utilize the forked Github repository both as the host for your YAML pipeline and the source code. However, it is possible to host the same assets in your Azure DevOps repository instead, if that is your preference. It is important to remember that if you choose to store your assets in your Azure DevOps repository, you will have to direct your Azure DevOps pipeline towards the Azure DevOps repository instead of the Github repository.
 
 ### Fork the GitHub repository
 
@@ -20,14 +20,13 @@ Start by forking the workshop repository to your GitHub account. Follow the step
 3. Select your GitHub account to fork the repository to.
 4. Wait for the repository to be forked.
 
-### Configure Service Connection for GitHub and Azure Subscription
+### Configure a Service Connection for GitHub and Azure Subscription
 
 Before we start with creating pipeline, we need to configure service connection for GitHub and Azure Subscription. You can do this in either existing or new project.
 
-#### Create Service Connection for GitHub
+#### Create a Service Connection for GitHub
 
-Provide access to the repository forked above by creating a service connection to GitHub. You create a new pipeline 
-by first selecting a GitHub repository and then a YAML file in repository at path [.ado/infra-deploy.yml](https://raw.githubusercontent.com/Azure/aca-dotnet-workshop/main/.ado/infra-deploy.yml){target=_blank}. 
+Provide access to the repository forked above by creating a service connection to GitHub. You create a new pipeline by first selecting a GitHub repository and then a YAML file in repository at path [.ado/infra-deploy.yml](https://raw.githubusercontent.com/Azure/aca-dotnet-workshop/main/.ado/infra-deploy.yml){target=_blank}. 
 
 The repository in which the YAML file is present is called self repository. By default, this is the repository that your pipeline builds.
 
@@ -40,16 +39,28 @@ to create service connection for GitHub.
 
 #### Create Service Connection for Azure Subscription
 
-Create new service connection to your azure subscription by following steps at [this link](https://docs.microsoft.com/en-us/azure/devops/pipelines/library/service-endpoints?view=azure-devops&tabs=yaml#create-a-service-connection){target=_blank}
+Create a new service connection to your azure subscription by following the steps at [this link](https://docs.microsoft.com/en-us/azure/devops/pipelines/library/service-endpoints?view=azure-devops&tabs=yaml#create-a-service-connection){target=_blank}.
 
 !!! note
-    Update the created service connection role to have **[User Access Administrator](https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#user-access-administrator)** role. 
-    This is required for pipeline to be able to perform role assignments in the infrastructure components deployed.
+    Update the created service connection role to have **[User Access Administrator](https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#user-access-administrator)** role. This is required for pipeline to be able to perform role assignments in the infrastructure components deployed. To update the role of a service connection in Azure DevOps to have the User Access Administrator role, you can follow these steps:
+
+    - Navigate to the Azure portal and select the subscription where the service connection is created.
+
+    - Click on **Access control (IAM)** in the left-hand menu.
+
+    - Click on **Add role assignment**.
 
-### Configure Variable group under Library
+    - For the **Assignment type** choose **Privileged administrator roles**.
 
-Create a variable group named **AcaApp** under Library in your Azure Devops project. Make sure the pipeline has 
-permissions to access the created variable group under **Pipeline permissions**.
+    - In the **Role** section choose **User Access Administrator**.
+
+    - In the **Members** section, search for the name of the service connection that you want to update and select it.
+
+    - Click **Save** to apply the changes.
+
+### Configure Variable Group under Azure DevOps Library Section
+
+Create a variable group named **AcaApp** under Library in your Azure Devops project. Make sure the pipeline has permissions to access the created variable group under **Pipeline permissions**.
 
 This variable group will be used to store below details:
 
@@ -60,7 +71,7 @@ AZURE_SUBSCRIPTION=<service connection name>
 # LOCATION: Azure region where resources will be deployed
 LOCATION=<location>
 
-# RESOURCE_GROUP: Name of the resource group which will be created and resources will be deployed
+# RESOURCE_GROUP: Name of the resource group which will be created and where the resources will be deployed
 RESOURCE_GROUP=<resource group name>
 
 # (OPTIONAL)CONTAINER_REGISTRY_NAME: Unique name of the container registry which will be created and where images will be imported
@@ -69,9 +80,7 @@ CONTAINER_REGISTRY_NAME=<container registry name>
 
 !!! note
 
-    Repository variables `CONTAINER_REGISTRY_NAME` is only needed by pipeline, if you wish the images to be deployed from private ACR.
-    
-    You may chose to skip defining this variable and the pipeline will use the [public github container registry images](https://github.com/orgs/Azure/packages?repo_name=aca-dotnet-workshop) to deploy the images.
+    Repository variable `CONTAINER_REGISTRY_NAME` is only needed by pipeline if you intend to deploy images from a private Azure Container Registry (ACR). You may chose to skip defining this variable and the pipeline will use the [public github container registry images](https://github.com/orgs/Azure/packages?repo_name=aca-dotnet-workshop) to deploy the images.
 
 ### Trigger Azure Devops Pipeline
 
diff --git a/docs/aca/10-aca-iac-bicep/ci-cd-git-action.md b/docs/aca/10-aca-iac-bicep/ci-cd-git-action.md
@@ -1,15 +1,12 @@
 
-# Deploy infrastructure using GitHub Actions
+# Deploy Infrastructure Using GitHub Actions
 
 !!! info "Module Duration"
     30 minutes
 
-GitHub Actions is a great way to automate your workflow. In this section, we will create a GitHub Action workflow to 
-deploy the infrastructure components of our application.
+In the [previous section](../../aca/10-aca-iac-bicep/iac-bicep.md), we demonstrated how Bicep scripts can be used to automate the deployment of infrastructure components. However, creating the container registry and deploying the Bicep scripts using the Azure CLI still required manual effort. For a more efficient and streamlined process, it's preferable to use automation. GitHub Actions is a great solution for automating workflows, and in this section, we'll explain how to create a GitHub Action workflow for deploying the infrastructure components of our application.
 
-The workshop repository contains a GitHub Action workflow file that will be used to deploy the infrastructure 
-components of our application. Follow the steps below to create a GitHub Action workflow to deploy the 
-infrastructure components of our application.
+The workshop repository contains a GitHub Action workflow file that will be used to deploy the infrastructure components of our application. Follow the steps below to create a GitHub Action workflow to deploy the infrastructure components of our application.
 
 ### Fork the GitHub repository
 
@@ -109,8 +106,7 @@ locally, follow the steps below to configure the repository for OIDC authenticat
 
 ### Configure GitHub Repository Secrets
 
-Configure secrets details in GitHub repo as described here in [create GitHub secrets](https://learn.microsoft.com/en-us/azure/developer/github/connect-from-azure?tabs=azure-cli%2Clinux#create-github-secrets). 
-Use below values mapped to relevant secrets in GitHub. 
+Configure secrets details in GitHub repo as described here in [create GitHub secrets](https://learn.microsoft.com/en-us/azure/developer/github/connect-from-azure?tabs=azure-cli%2Clinux#create-github-secrets). Use below values mapped to relevant secrets in GitHub. 
 
 ```bash
 # AZURE_SUBSCRIPTION_ID
@@ -123,11 +119,11 @@ echo $APP_ID
 
 ### Configure GitHub Repository Variables
 
-Configure repository variables as shown below:
+Configure repository variables in GitHub repo as described here in [create GitHub variables](https://docs.github.com/en/actions/learn-github-actions/variables). Use below values mapped to relevant variables in GitHub. 
 
 ```bash 
 # LOCATION: Azure region where resources will be deployed
-LOCATION=<location>
+LOCATION=<location. e.g. eastus>
 
 # RESOURCE_GROUP: Name of the resource group which will be created and resources will be deployed
 RESOURCE_GROUP=<resource group name>
@@ -144,9 +140,7 @@ CONTAINER_REGISTRY_NAME=<container registry name>
 
 ### Trigger GitHub Actions Workflow
 
-With these steps completed, you are now ready to trigger the GitHub Actions workflow name **Build and deploy 
-infrastructure as code to Azure** using **workflow dispatch** to deploy the infrastructure components of our 
-application.
+With these steps completed, you are now ready to trigger the GitHub Actions workflow named **Build and deploy infrastructure as code to Azure** using **workflow dispatch** to deploy the infrastructure components of the application.
 
 !!! success
     
diff --git a/docs/aca/10-aca-iac-bicep/iac-bicep.md b/docs/aca/10-aca-iac-bicep/iac-bicep.md
@@ -7,6 +7,9 @@ canonical_url: https://bitoftech.net/2022/09/16/use-bicep-to-deploy-dapr-microse
 !!! info "Module Duration"
     30 minutes
 
+!!! note
+    If you're not interested in manually deploying the Bicep files or creating the container registry yourself, and prefer not to delve into the details of how they work, then you can skip this section and head directly to either [Build the Infrastructure as Code Using Bicep and Github](../../aca/10-aca-iac-bicep/ci-cd-git-action.md) or [Build the Infrastructure as Code Using Bicep and Azure DevOps](../../aca/10-aca-iac-bicep/ci-cd-azdo.md) depending on your DevOps tool of choice.
+
 To begin, we need to define the Bicep modules that will be required to generate the Infrastructure code. Our goal for this module is to have a freshly created resource group that encompasses all the necessary resources and configurations - such as connection strings, secrets, environment variables, and Dapr components - which we utilized to construct our solution. By the end, we will have a new resource group that includes the following resources.
 
 ![aca-resources](../../assets/images/10-aca-iac-bicep/aca-rescources.jpg)
diff --git a/docs/aca/10-aca-iac-bicep/index.md b/docs/aca/10-aca-iac-bicep/index.md
@@ -2,7 +2,7 @@
 canonical_url: https://bitoftech.net/2022/09/16/use-bicep-to-deploy-dapr-microservices-apps-to-azure-container-apps-part-10/
 ---
 
-# Module 10 - Deployment Via Bicep
+# Module 10 - Deployment Via Bicep and DevOps
 
 Throughout the various modules, we have utilized various Azure CLI commands to provision different resources. While this approach is suitable for this workshop, in a production environment, you will likely require a more automated process to deploy the same resources. In this module, we will be working on defining the proper process to automate the infrastructure provisioning by creating the scripts/templates to provision the resources. This process is known as IaC (Infrastructure as Code).
 
diff --git a/mkdocs.yml b/mkdocs.yml
@@ -15,22 +15,22 @@ nav:
   - Module 4 - ACA State Store With Dapr State Management API: aca/04-aca-dapr-stateapi/index.md
   - Module 5 - ACA Async Communication with Dapr Pub/Sub API: aca/05-aca-dapr-pubsubapi/index.md
   - Module 6 - ACA with Dapr Bindings Building Block: aca/06-aca-dapr-bindingsapi/index.md
-  - Module 7 - ACA scheduled jobs with Dapr Cron Binding: aca/07-aca-cron-bindings/index.md
+  - Module 7 - ACA Scheduled Jobs with Dapr Cron Binding: aca/07-aca-cron-bindings/index.md
   - Module 8 - ACA Monitoring and Observability with Application Insights: aca/08-aca-monitoring/index.md
   - Module 9 - ACA Auto Scaling with KEDA: aca/09-aca-autoscale-keda/index.md
-  - Module 10 - Use Bicep to Deploy Dapr Microservices Apps to ACA:
+  - Module 10 - Deployment Via Bicep and DevOps:
     - aca/10-aca-iac-bicep/index.md
-    - Build the Infrastructure as Code Using Bicep: aca/10-aca-iac-bicep/iac-bicep.md
-    - Deploy infrastructure using GitHub Actions: aca/10-aca-iac-bicep/ci-cd-git-action.md
+    - Deploy Infrastructure using Bicep: aca/10-aca-iac-bicep/iac-bicep.md
+    - Deploy Infrastructure using Bicep via GitHub Actions: aca/10-aca-iac-bicep/ci-cd-git-action.md
     - Deploy infrastructure using Azure Devops Pipeline: aca/10-aca-iac-bicep/ci-cd-azdo.md
   - About The Authors: aca/11-about-the-authors/index.md
   - Contributing:
     - Contribution Guide: aca/12-contributing/1-contribution-guide.md
-    - Submit an issue or suggestion: aca/12-contributing/2-Submit-issue-suggestion.md
-    - Minor update or fix, new challenge: aca/12-contributing/3-minor-update-fix.md
+    - Submit An Issue or Suggestion: aca/12-contributing/2-Submit-issue-suggestion.md
+    - Minor Update or fix, New Challenge: aca/12-contributing/3-minor-update-fix.md
   - Appendix:
-    - Debug and launch Dapr applications in VSCode: aca/13-appendix/01-run-debug-dapr-app-vscode.md
-    - Testing changes locally or with GitHub Codespaces: aca/13-appendix/02-github-local-codespaces.md
+    - Debug and Launch Dapr Applications in VSCode: aca/13-appendix/01-run-debug-dapr-app-vscode.md
+    - Testing Changes Locally or with GitHub Codespaces: aca/13-appendix/02-github-local-codespaces.md
   
 theme:
   name: material
