Add AZD template files (#3)

* Add AZD template files

* Fix: addressed code review feedback

* Adding codeowners and copilot

* feat: update devcontainer configuration and enhance copilot instructions

* fix: remove skip_provider_registration from azurerm provider configuration

* fix: correct commit message instructions formatting

* feat: update copilot instructions and add Azure best practices section
fix: add .azure directory to .gitignore

---------

Co-authored-by: Matt Dotson <[email protected]>

Author: HadwaAbdelhalem

.devcontainer/devcontainer.json

@@ -0,0 +1,45 @@
+{
+    "name": "Azure Developer CLI",
+    "image": "mcr.microsoft.com/devcontainers/go:1.4.1-bullseye",
+    "features": {
+        // terraform and az (required for auth) are installed by default
+        // See https://containers.dev/features for list of features
+        "ghcr.io/devcontainers/features/python:1" : {},
+        "ghcr.io/devcontainers/features/azure-cli:1": {},
+        "ghcr.io/devcontainers/features/docker-in-docker:2": {},
+        "ghcr.io/devcontainers/features/terraform:1": {
+            "installTFsec": true
+        },
+        "ghcr.io/azure/azure-dev/azd:latest": {}
+    },
+    "customizations": {
+        "vscode": {
+            "extensions": [
+                "GitHub.vscode-github-actions",
+                "hashicorp.terraform",
+                "ms-azuretools.azure-dev",
+                "ms-azuretools.vscode-docker",
+                "GitHub.copilot",  
+                "GitHub.copilot-chat",
+                "ms-vscode.makefile-tools",  
+                "DavidAnson.vscode-markdownlint",
+                "golang.go",
+                "azapi-vscode.azapi",
+                "ms-azuretools.vscode-azureterraform"
+                // Include other VSCode extensions if needed
+                // Right click on an extension inside VSCode to add directly to devcontainer.json, or copy the extension ID
+            ]
+        }
+    },
+    "forwardPorts": [
+        // Forward ports if needed for local development
+    ],
+    "containerEnv": {
+        "ARM_PARTNER_ID": "acce1e78-90a1-4306-89d1-a03ed6284007"
+    },
+    "postCreateCommand": "pip install --upgrade pip && pip install checkov",
+    "remoteUser": "vscode",
+    "hostRequirements": {
+        "memory": "8gb"
+    }
+}

.github/CODEOWNERS

@@ -0,0 +1,4 @@
+# This is the default CODEOWNERS file for the repository.
+# It assigns @Azure-Samples/ise-scale-contributors as the default owners.
+
+* @Azure-Samples/ise-scale-contributors

.github/copilot-commit-message-instructions.md

@@ -0,0 +1,3 @@
+# Commit Message instructions
+
+Write commit messages that conform to the [Convention Commits 1.0.0 specification](https://www.conventionalcommits.org/en/v1.0.0/)

.github/copilot-instructions.md

@@ -0,0 +1,104 @@
+# Copilot Instructions
+
+## Coding Guidelines
+
+### Terraform Best Practices
+
+- Use `snake_case` for all variable, resource, and module names.
+- Use double quotes (`"`) for strings, not single quotes.
+- Use `#` for for both single-line and multi-line comments, not `//` or `/* ... */`.
+- Place one argument per line for readability.
+- Always include a `description` for variables and outputs.
+- Use `locals` to define computed values or constants.
+- Prefer `for_each` over `count` when managing unique resources.
+- Use `terraform fmt` to enforce consistent formatting.
+- Group related resources together in logical files.
+- Keep resource blocks under 100 lines each.
+- Use modules to encapsulate reusable code.
+- Use `main.tf`, `variables.tf`, `outputs.tf`, and `locals.tf` to organize root modules.
+- Use explicit types in `variable` blocks.
+- Avoid hardcoding values; use variables or locals instead.
+- Use `depends_on` only when dependency is not implied.
+- Avoid interpolations like `"${var.foo}"`; use `var.foo` directly.
+- Always pin provider versions using `~>` or exact versions.
+- Avoid using data sources for static values.
+- Use backend configuration blocks for remote state setup.
+- Add tags to all resources that support them.
+- Validate inputs using `validation` blocks in variables.
+- Prefer `compact`, `merge`, and `flatten` over manual list iteration.
+- Avoid mixing resource creation and data fetching in a single module.
+- Use meaningful resource names, not just "this" or "example".
+- Document every module with a `README.md`.
+- Use `terraform-docs` to generate module documentation.
+- Avoid null/default patterns by setting default values explicitly.
+- Prefer smaller modules over large monolithic ones.
+- Mark variables and outputs containing secrets as `sensitive` to prevent accidental exposure in logs or Terraform state.
+- Use lifecycle rules like `create_before_destroy` with caution.
+- Never store secrets in plain text in `.tf` files.
+- Do not commit `.tfstate`, `.tfvars`, or `.terraform/` folders.
+
+## Testing
+
+### Terratest Best Practices for Azure and Power Platform (Test Coding Only)
+
+- **Keep tests small and focused** – one deployment scenario per test function with a clear, descriptive name.
+- **Organize test files by module or domain** – e.g., networking, compute, identity – to improve clarity and maintainability.
+- **Isolate infrastructure for each test** – use separate Azure resource groups or Power Platform environments. Never share Terraform state between tests.
+- **Use unique resource names** – append a random suffix using `random.UniqueId` or similar to avoid name collisions.
+- **Always clean up test resources** – use `defer terraform.Destroy(...)` to ensure cleanup runs regardless of test success or failure.
+- **Prefer retries over sleep** – use `retry.DoWithRetry` to poll for eventual consistency (e.g., waiting for DNS propagation or resource readiness).
+- **Run tests in parallel** – mark test functions with `t.Parallel()` if they don’t share state or resources.
+- **Assert outputs and infrastructure state** – use `assert` statements or Azure SDK/CLI validation to confirm resources match expectations.
+- **Use Terratest’s default error-handling methods** – use `terraform.Init`, `Apply`, etc., which automatically fail on error unless custom handling is needed.
+- **Modularize shared logic** – extract common setup, teardown, and verification code into helper functions for DRY, maintainable test suites.
+
+## Azure Best Practices
+
+- @azure Rule - Use Azure Best Practices: When generating code for Azure, running terminal commands for Azure, or performing operations related to Azure, invoke your `azure_development-get_best_practices` tool if available
+
+## AZD Template Repo Structure (Terraform)
+
+This project structure is typical for Azure Developer CLI (`azd`) templates using **Terraform** for infrastructure provisioning.
+
+## Directory Structure
+
+```plaintext
+/
+├── .azure/                  # Optional: Local azd environment configuration (e.g., config.json)
+├── infra/                   # Terraform IaC code for provisioning Azure resources
+│   ├── main.tf              # Terraform root module (entry point)
+│   ├── variables.tf         # Input variables used by the module
+│   ├── outputs.tf           # Output values for azd service bindings
+│   └── providers.tf         # Provider and backend configuration
+├── src/                     # Source code for the Power Platform solution
+├── azure.yaml               # azd project manifest: defines infra, services, and deployment behavior
+├── .gitignore               # Standard Git ignore rules
+└── README.md                # Overview and usage instructions
+```
+
+## Key Files and Purpose
+
+| File/Folder         | Purpose                                                                 |
+|---------------------|-------------------------------------------------------------------------|
+| `azure.yaml`        | Declares the services and infrastructure backend (e.g., `terraform`).   |
+| `infra/`            | Contains all Terraform configuration files.                             |
+| `main.tf`           | Main entry point for infrastructure definitions.                        |
+| `outputs.tf`        | Outputs used by `azd` to bind environment variables to app services.     |
+| `variables.tf`      | Parameters to customize deployments (e.g., location, resource names).    |
+| `providers.tf`      | Provider setup and optional remote state configuration.                 |
+| `src/`              | One or more services defined under `azure.yaml`.                         |
+
+## ⚙️ AZD Workflow
+
+```bash
+azd init             # Initialize project using this template
+azd up               # Provision infra via Terraform and deploy app services
+azd down             # Destroy all provisioned resources
+```
+
+## 📘 Best Practices
+
+- Store reusable Terraform modules in `/infra/modules/` if needed.
+- Use remote state (e.g., Azure Storage backend) to avoid local state file conflicts.
+- Use `outputs.tf` to export values required by `azd` to deploy and configure services.
+- Reference service-level variables via `${azurerm_...}` resources in outputs for app service bindings.

.github/dependabot.yml

@@ -0,0 +1,9 @@
+version: 2
+updates:
+  - package-ecosystem: "devcontainers"
+    directory: "/.devcontainer"
+    schedule:
+      interval: "weekly"
+    commit-message:
+      prefix: "chore(deps):"
+    open-pull-requests-limit: 5

.gitignore

@@ -398,3 +398,5 @@ FodyWeavers.xsd
 
 # JetBrains Rider
 *.sln.iml
+
+.azure/

.vscode/settings.json

@@ -0,0 +1,7 @@
+{
+    "github.copilot.chat.commitMessageGeneration.instructions": [
+        {
+            "file": ".github/copilot-commit-message-instructions.md"
+        }
+    ]
+}

azure.yaml

@@ -0,0 +1,6 @@
+# Name of the application.
+name: Copilot-Studio-with-Azure-AI-Search
+metadata:
+  template: [email protected]
+infra:
+  provider: terraform

infra/main.tf

@@ -0,0 +1,23 @@
+resource "azurecaf_name" "rg_name" {
+  name          = var.environment_name
+  resource_type = "azurerm_resource_group"
+  random_length = 0
+  clean_input   = true
+}
+
+# Deploy resource group
+resource "azurerm_resource_group" "rg" {
+  name     = azurecaf_name.rg_name.result
+  location = var.location
+  // Tag the resource group with the azd environment name
+  // This should also be applied to all resources created in this module
+  tags = { azd-env-name : var.environment_name }
+}
+
+# Add resources to be provisioned below.
+# To learn more, https://developer.hashicorp.com/terraform/tutorials/azure-get-started/azure-change
+# Note that a tag:
+#   azd-service-name: "<service name in azure.yaml>"
+# should be applied to targeted service host resources, such as:
+#  azurerm_linux_web_app, azurerm_windows_web_app for appservice
+#  azurerm_function_app for function

infra/main.tfvars.json

@@ -0,0 +1,4 @@
+{
+    "location": "${AZURE_LOCATION}",
+    "environment_name": "${AZURE_ENV_NAME}"
+}