Merge pull request #10 from vectornguyen76/develop

Develop

Author: vectornguyen76

.github/workflows/ansible/deploy-app.yml

@@ -0,0 +1,61 @@
+---
+
+- name: "configuration play." 
+  hosts: web
+  user: ubuntu
+  become: true
+  gather_facts: false
+  vars:    
+    - ansible_python_interpreter: /usr/bin/python3
+    - ansible_host_key_checking: false
+    - ansible_stdout_callback: yaml
+
+    - mlflow_image_name: vectornguyen76/mlflow
+    - mlflow_tag_name: latest
+
+    - model_predictor_image_name: vectornguyen76/model_predictor
+    - model_predictor_tag_name: latest
+  pre_tasks:
+    - name: "wait 600 seconds for target connection to become reachable/usable."
+      wait_for_connection:
+  
+    - name: Install aptitude
+      apt:
+        name: aptitude
+        state: latest
+        update_cache: true
+
+    - name: Install required system packages
+      apt:
+        pkg:
+          - apt-transport-https
+          - ca-certificates
+          - curl
+          - software-properties-common
+          - python3-pip
+          - virtualenv
+          - python3-setuptools
+        state: latest
+        update_cache: true
+
+    - name: Add Docker GPG apt Key
+      apt_key:
+        url: https://download.docker.com/linux/ubuntu/gpg
+        state: present
+
+    - name: Add Docker Repository
+      apt_repository:
+        repo: deb https://download.docker.com/linux/ubuntu jammy stable
+        state: present
+
+    - name: Update apt and install docker-ce
+      apt:
+        name: docker-ce
+        state: latest
+        update_cache: true
+
+    - name: Install Docker Module for Python
+      pip:
+        name: docker
+  roles:
+    - deploy

.github/workflows/ansible/inventory.txt

@@ -0,0 +1 @@
+[web]

.github/workflows/ansible/roles/deploy/tasks/main.yml

@@ -0,0 +1,40 @@
+- name: "Creates directory"
+  file:
+    path: "/home/ubuntu/server"
+    state: "directory"
+    mode: 0755
+
+- name: "Copy compressed app folder"
+  copy:
+    src: "artifact-app.tar.gz"
+    dest: "/home/ubuntu/server/artifact-app.tar.gz"
+
+- name: "Extract app"
+  unarchive:
+    remote_src: yes
+    src: "/home/ubuntu/server/artifact-app.tar.gz"
+    dest: "/home/ubuntu/server"
+      
+- name: Pull mlflow image
+  community.docker.docker_image:
+    name: "{{ mlflow_image_name }}"
+    tag: "{{ mlflow_tag_name }}"
+    source: pull
+
+- name: Pull model_predictor image
+  community.docker.docker_image:
+    name: "{{ model_predictor_image_name }}"
+    tag: "{{ model_predictor_tag_name }}"
+    source: pull
+
+- name: Run mlflow container
+  become: True
+  shell:
+    chdir: /home/ubuntu/server
+    cmd: "docker compose -f deployment/mlflow/docker-compose.yml up -d"
+
+- name: Run model_predictor container
+  become: True
+  shell:
+    chdir: /home/ubuntu/server
+    cmd: "bash deployment/deploy.sh deploy_run_predictor data/model_config/phase-1/prob-1/model-1.yml data/model_config/phase-1/prob-2/model-1.yml 5040"

.github/workflows/development_pipeline.yml

@@ -20,7 +20,7 @@ jobs:
           - 5432:5432
         options: --health-cmd pg_isready --health-interval 10s --health-timeout 5s --health-retries 5
     steps:
-      - name: Checkout code
+      - name: Checkout Repository
         uses: actions/checkout@v2
 
       - name: Cache Python dependencies
@@ -45,6 +45,7 @@ jobs:
         run: python -m flask tests
 
   deploy-service:
+    needs: build-test
     runs-on: ubuntu-latest
     env:	
       AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
@@ -53,11 +54,31 @@ jobs:
       DOCKERHUB_USERNAME: ${{ secrets.DOCKERHUB_USERNAME }}
       DOCKERHUB_PASSWORD: ${{ secrets.DOCKERHUB_PASSWORD }}
     steps:
-      - name: Checkout code
+      - name: Checkout Repository
         uses: actions/checkout@v2
 
-      - name: Authenticate Docker Hub
+      - name: Login to Docker Hub
         id: docker_hub_auth
-        run: docker login -u ${{ env.DOCKERHUB_USERNAME }} -p ${{ env.DOCKERHUB_PASSWORD }}
+        uses: docker/login-action@v1
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}  
+          password: ${{ secrets.DOCKERHUB_PASSWORD }}     
+
+      - name: Build Docker Image
+        id: build_docker
+        run: |
+          docker compose build api_service
+          
+          # Add tag
+          docker tag api_image:latest ${{ secrets.DOCKERHUB_USERNAME }}/api_image:latest
 
-        
+      - name: Push Docker Image
+        id: push_images
+        run: docker push ${{ secrets.DOCKERHUB_USERNAME }}/api_image:latest
+
+      - name: Deploy to AWS CloudFormation
+        uses: aws-actions/aws-cloudformation-github-deploy@v1
+        with:
+          name: MyStackEC2
+          template: myStack.yaml
+          parameter-overrides: "MyParam1=myValue,MyParam2=${{ secrets.MY_SECRET_VALUE }}"

.github/workflows/files/ec2-parameters.json

@@ -0,0 +1,22 @@
+[
+  {
+    "ParameterKey": "VpcCIDR",
+    "ParameterValue": "10.0.0.0/16"
+  }, 
+  {
+    "ParameterKey": "PublicSubnetCIDR",
+    "ParameterValue": "10.0.1.0/24"
+  },
+  {
+    "ParameterKey": "InstanceType",
+    "ParameterValue": "t3.medium"
+  },
+  {
+    "ParameterKey": "KeyPair",
+    "ParameterValue": "my-keypair"
+  },
+  {
+    "ParameterKey": "AMItoUse",
+    "ParameterValue": "ami-053b0d53c279acc90"
+  }
+]

.github/workflows/files/ec2.yml

@@ -0,0 +1,174 @@
+AWSTemplateFormatVersion: 2010-09-09
+Description: Creates EC2
+Parameters:
+  VpcCIDR:
+    Description: "VPC range"
+    Type: String
+    Default: ""
+
+  PublicSubnetCIDR:
+    Description: "Public subnet CIDR block"
+    Type: String
+    Default: ""
+
+  InstanceType:
+    Type: String
+    Description: "EC2 instance type"
+    AllowedValues:
+      - t2.micro
+      - t3.micro
+      - t3.medium
+
+  KeyPairName:
+    Description: "AWS key pair in us-east-1, stored in SSM Parameter Store"
+    Type: String
+    Default: "my-keypair"
+
+  AMItoUse:
+    Description: AMI to use for our base image - Canonical, Ubuntu, 22.04 LTS, amd64 jammy image build on 2023-05-16
+    Type: String
+    Default: "ami-053b0d53c279acc90"
+
+Resources: 
+  VPC:
+    Type: AWS::EC2::VPC
+    Properties:
+      CidrBlock: !Ref VpcCIDR
+      EnableDnsHostnames: true
+      EnableDnsSupport: true
+      Tags: 
+        - Key: Name
+          Value: "Main VPC"
+
+  InternetGateway:
+    Type: AWS::EC2::InternetGateway
+    Properties:
+      Tags:
+        - Key: Name
+          Value: Internet Gateway
+
+  AttachGateway:
+    Type: AWS::EC2::VPCGatewayAttachment
+    Properties:
+      VpcId: !Ref VPC
+      InternetGatewayId: !Ref InternetGateway
+
+  PublicSubnet:
+    Type: AWS::EC2::Subnet
+    Properties:
+      AvailabilityZone: 'us-east-1a'
+      VpcId: !Ref VPC
+      CidrBlock: !Ref PublicSubnetCIDR
+      Tags: 
+        - Key: Name
+          Value: "Public Subnet AZ1"
+
+  PublicRouteTable:
+    Type: AWS::EC2::RouteTable
+    Properties:
+      VpcId: !Ref VPC
+      Tags: 
+        - Key: Name
+          Value: "Public Route Table"
+
+  SubnetRouteTableAssociationPub:
+    Type: AWS::EC2::SubnetRouteTableAssociation
+    Properties:
+      SubnetId: !Ref PublicSubnet
+      RouteTableId: !Ref PublicRouteTable
+
+  PublicRouteNATGateway:
+    Type: AWS::EC2::Route
+    DependsOn: AttachGateway
+    Properties:
+        RouteTableId: !Ref PublicRouteTable
+        DestinationCidrBlock: '0.0.0.0/0'
+        GatewayId: !Ref InternetGateway
+
+  SecurityGroup:
+    Type: AWS::EC2::SecurityGroup
+    Properties:
+      GroupName: mySecurityGroup
+      GroupDescription: Allow http to client host
+      VpcId: !Ref VPC
+      SecurityGroupIngress:
+        - IpProtocol: tcp
+          FromPort: 80
+          ToPort: 80
+          CidrIp: 0.0.0.0/0
+        - IpProtocol: tcp
+          FromPort: 22
+          ToPort: 22
+          CidrIp: 0.0.0.0/0
+        - IpProtocol: tcp
+          FromPort: 5000
+          ToPort: 5000
+          CidrIp: 0.0.0.0/0
+        - IpProtocol: tcp
+          FromPort: 3000
+          ToPort: 3000
+          CidrIp: 0.0.0.0/0
+        - IpProtocol: tcp
+          FromPort: 5040
+          ToPort: 5040
+          CidrIp: 0.0.0.0/0
+      SecurityGroupEgress:
+        - IpProtocol: "-1"
+          FromPort: -1
+          ToPort: -1
+          CidrIp: 0.0.0.0/0
+      Tags:
+        - Key: Name
+          Value: SecurityGroup
+
+# Server EC2 Instance
+  ServerInstance: 
+    Type: AWS::EC2::Instance
+    Properties:
+      InstanceType: !Ref InstanceType
+      ImageId: !Ref AMItoUse
+      KeyName: !Ref KeyPairName
+      NetworkInterfaces: 
+        - AssociatePublicIpAddress: true
+          DeviceIndex: "0"
+          GroupSet: 
+            - !Ref SecurityGroup 
+          SubnetId: !Ref PublicSubnet
+      BlockDeviceMappings: 
+      - DeviceName: "/dev/sdk"
+        Ebs: 
+          VolumeSize: 20
+      # UserData:   
+      #   Fn::Base64: !Sub |
+      #     #!/bin/bash
+      #     sudo apt-get update -y
+      #     sudo apt-get install ca-certificates curl gnupg
+      #     sudo install -m 0755 -d /etc/apt/keyrings
+      #     curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg
+      #     sudo chmod a+r /etc/apt/keyrings/docker.gpg
+      #     echo \
+      #     "deb [arch="$(dpkg --print-architecture)" signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu \
+      #     "$(. /etc/os-release && echo "$VERSION_CODENAME")" stable" | \
+      #     sudo tee /etc/apt/sources.list.d/docker.list > /dev/null  
+      #     sudo apt-get update -y
+      #     apt-get install -y docker-ce
+      #     docker run -p 80:8080 tomcat:8.0  
+      Tags:
+        - Key: Name
+          Value: ServerInstance
+
+Outputs:
+  EC2InstanceConnection:
+    Description: The connection for the EC2 instance
+    Value: !Join
+      - ""
+      - - "ubuntu@"
+        - !GetAtt ServerInstance.PublicIp
+  EC2InstancePublicDNS:
+    Description: The instance public DNS name
+    Value: !GetAtt ServerInstance.PublicDnsName
+    Export:
+      Name: !Join
+        - ""
+        - - !Ref AWS::StackName
+          - "-PublicDNS"

docker-compose.yml

@@ -25,12 +25,15 @@ services:
 
   nginx_service:
     container_name: nginx_container
-    image: nginx_image
+    image: nginx:1.25.1-alpine
     build:
       context: ./server
       dockerfile: Dockerfile
     ports:
-      - 8080:80
+      - 80:80
+    volumes:
+      - ./server/default.conf:/etc/nginx/conf.d/default.conf
+      - ./server/log:/var/log/nginx
     depends_on:
       - api_service
 volumes: