first commit

Author: NeckerFree

.github/workflows/cd.yml

@@ -0,0 +1,61 @@
+name: CD Deploy to AKS
+on:
+  workflow_run:
+    workflows: ["CI Build & Push"]
+    types: [completed]
+
+env:
+  ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }}
+  ARM_CLIENT_SECRET: ${{ secrets.ARM_CLIENT_SECRET }}
+  ARM_SUBSCRIPTION_ID: ${{ secrets.ARM_SUBSCRIPTION_ID }}
+  ARM_TENANT_ID: ${{ secrets.ARM_TENANT_ID }}
+
+jobs:
+  deploy:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+
+      - name: Azure Login
+        uses: azure/login@v1
+        with:
+          client-id: ${{ secrets.ARM_CLIENT_ID }}
+          client-secret: ${{ secrets.ARM_CLIENT_SECRET }}
+          tenant-id: ${{ secrets.ARM_TENANT_ID }}
+          subscription-id: ${{ secrets.ARM_SUBSCRIPTION_ID }}
+
+      - name: Get Terraform Outputs
+        id: tfout
+        run: |
+          echo "acr=$(terraform -chdir=infra output -raw acr_login_server)" >> $GITHUB_OUTPUT
+          echo "aks=$(terraform -chdir=infra output -raw aks_name)" >> $GITHUB_OUTPUT
+          echo "rg=$(terraform -chdir=infra output -raw aks_rg_name)" >> $GITHUB_OUTPUT
+
+      - name: Get AKS Credentials
+        run: |
+          az aks get-credentials --name "${{ steps.tfout.outputs.aks }}" --resource-group "${{ steps.tfout.outputs.rg }}" --overwrite-existing
+
+      - name: Patch Deployment Image
+        env:
+          ACR_LOGIN_SERVER: ${{ steps.tfout.outputs.acr }}
+        run: |
+          sed -i "s|<ACR_LOGIN_SERVER>|$ACR_LOGIN_SERVER|g" src/k8s/deployment.yaml
+
+      - name: Deploy to AKS
+        run: |
+          kubectl apply -f src/k8s/pvc.yaml
+          kubectl apply -f src/k8s/deployment.yaml
+          kubectl apply -f src/k8s/service.yaml
+
+      - name: Wait for Service External IP
+        run: |
+          echo "Esperando EXTERNAL-IP..."
+          for i in {1..30}; do
+            ip=$(kubectl get svc hola-mundo-dotnet-svc -o jsonpath='{.status.loadBalancer.ingress[0].ip}' || true)
+            if [ -n "$ip" ]; then
+              echo "EXTERNAL-IP=$ip" >> $GITHUB_ENV
+              echo "External IP: $ip"
+              break
+            fi
+            sleep 10
+          done

.github/workflows/ci.yml

@@ -0,0 +1,38 @@
+name: CI Build & Push
+on:
+  workflow_run:
+    workflows: ["Terraform Create Infra"]
+    types: [completed]
+
+env:
+  ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }}
+  ARM_CLIENT_SECRET: ${{ secrets.ARM_CLIENT_SECRET }}
+  ARM_SUBSCRIPTION_ID: ${{ secrets.ARM_SUBSCRIPTION_ID }}
+  ARM_TENANT_ID: ${{ secrets.ARM_TENANT_ID }}
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+
+      - name: Azure Login
+        uses: azure/login@v1
+        with:
+          client-id: ${{ secrets.ARM_CLIENT_ID }}
+          client-secret: ${{ secrets.ARM_CLIENT_SECRET }}
+          tenant-id: ${{ secrets.ARM_TENANT_ID }}
+          subscription-id: ${{ secrets.ARM_SUBSCRIPTION_ID }}
+
+      - name: Get ACR login server from terraform output
+        id: get_acr
+        run: echo "acr=$(terraform -chdir=infra output -raw acr_login_server)" >> $GITHUB_OUTPUT
+
+      - name: Docker Build & Push
+        env:
+          ACR_LOGIN_SERVER: ${{ steps.get_acr.outputs.acr }}
+        run: |
+          echo "ACR_LOGIN_SERVER=$ACR_LOGIN_SERVER"
+          az acr login --name $(echo $ACR_LOGIN_SERVER | cut -d'.' -f1)
+          docker build -t $ACR_LOGIN_SERVER/hola-mundo-dotnet:latest ./src/K8sDotnetApi
+          docker push $ACR_LOGIN_SERVER/hola-mundo-dotnet:latest

.github/workflows/terraform-create.yml

@@ -0,0 +1,43 @@
+name: Terraform Create Infra
+on:
+  workflow_dispatch:
+  push:
+    branches: [ "main" ]
+
+env:
+  ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }}
+  ARM_CLIENT_SECRET: ${{ secrets.ARM_CLIENT_SECRET }}
+  ARM_SUBSCRIPTION_ID: ${{ secrets.ARM_SUBSCRIPTION_ID }}
+  ARM_TENANT_ID: ${{ secrets.ARM_TENANT_ID }}
+
+jobs:
+  terraform:
+    runs-on: ubuntu-latest
+    defaults:
+      run:
+        working-directory: infra
+    steps:
+      - uses: actions/checkout@v3
+
+      - name: Azure Login (for backend bootstrap)
+        uses: azure/login@v1
+        with:
+          client-id: ${{ secrets.ARM_CLIENT_ID }}
+          client-secret: ${{ secrets.ARM_CLIENT_SECRET }}
+          tenant-id: ${{ secrets.ARM_TENANT_ID }}
+          subscription-id: ${{ secrets.ARM_SUBSCRIPTION_ID }}
+
+      - name: Ensure backend storage exists (idempotent)
+        run: |
+          az group create -n tfstate-rg -l eastus
+          az storage account create -n tfstatek8sstore -g tfstate-rg -l eastus --sku Standard_LRS || true
+          az storage container create --name tfstate --account-name tfstatek8sstore || true
+
+      - name: Setup Terraform
+        uses: hashicorp/setup-terraform@v2
+
+      - name: Terraform Init
+        run: terraform init -input=false -no-color
+
+      - name: Terraform Apply
+        run: terraform apply -auto-approve -input=false -no-color           -var "client_id=${{ secrets.ARM_CLIENT_ID }}"           -var "client_secret=${{ secrets.ARM_CLIENT_SECRET }}"           -var "subscription_id=${{ secrets.ARM_SUBSCRIPTION_ID }}"           -var "tenant_id=${{ secrets.ARM_TENANT_ID }}"           -var "ssh_public_key=${{ secrets.VM_SSH_PUB_KEY }}"

.github/workflows/terraform-destroy.yml

@@ -0,0 +1,35 @@
+name: Terraform Destroy Infra
+on:
+  workflow_dispatch:
+
+env:
+  ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }}
+  ARM_CLIENT_SECRET: ${{ secrets.ARM_CLIENT_SECRET }}
+  ARM_SUBSCRIPTION_ID: ${{ secrets.ARM_SUBSCRIPTION_ID }}
+  ARM_TENANT_ID: ${{ secrets.ARM_TENANT_ID }}
+
+jobs:
+  terraform-destroy:
+    runs-on: ubuntu-latest
+    defaults:
+      run:
+        working-directory: infra
+    steps:
+      - uses: actions/checkout@v3
+
+      - name: Azure Login (for backend)
+        uses: azure/login@v1
+        with:
+          client-id: ${{ secrets.ARM_CLIENT_ID }}
+          client-secret: ${{ secrets.ARM_CLIENT_SECRET }}
+          tenant-id: ${{ secrets.ARM_TENANT_ID }}
+          subscription-id: ${{ secrets.ARM_SUBSCRIPTION_ID }}
+
+      - name: Setup Terraform
+        uses: hashicorp/setup-terraform@v2
+
+      - name: Terraform Init
+        run: terraform init -input=false -no-color
+
+      - name: Terraform Destroy
+        run: terraform destroy -auto-approve -input=false -no-color           -var "client_id=${{ secrets.ARM_CLIENT_ID }}"           -var "client_secret=${{ secrets.ARM_CLIENT_SECRET }}"           -var "subscription_id=${{ secrets.ARM_SUBSCRIPTION_ID }}"           -var "tenant_id=${{ secrets.ARM_TENANT_ID }}"           -var "ssh_public_key=${{ secrets.VM_SSH_PUB_KEY }}"

.gitignore

@@ -0,0 +1,22 @@
+# Build artifacts
+bin/
+obj/
+out/
+
+# Rider / VS / VS Code
+.vscode/
+.idea/
+*.user
+*.suo
+
+# Terraform
+infra/.terraform/
+infra/.terraform.lock.hcl
+*.tfstate*
+.terraform.tfstate*
+crash.log
+
+# Dotnet
+*.db
+*.db-shm
+*.db-wal

.vs/K8sDotnetApi/DesignTimeBuild/.dtbcache.v2

@@ -0,0 +1,79 @@
+{
+  "Version": 1,
+  "WorkspaceRootPath": "C:\\Elio\\Development\\Projects\\2025\\Azure\\k8s-dotnet-aks\\",
+  "Documents": [],
+  "DocumentGroupContainers": [
+    {
+      "Orientation": 0,
+      "VerticalTabListWidth": 256,
+      "DocumentGroups": [
+        {
+          "DockedWidth": 200,
+          "SelectedChildIndex": -1,
+          "Children": [
+            {
+              "$type": "Bookmark",
+              "Name": "ST:0:0:{cce594b6-0c39-4442-ba28-10c64ac7e89f}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:1:0:{fabf9319-47eb-497e-b8f6-d9f73fba5f55}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:129:0:{1fc202d4-d401-403c-9834-5b218574bb67}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:131:0:{1fc202d4-d401-403c-9834-5b218574bb67}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:130:0:{116d2292-e37d-41cd-a077-ebacac4c8cc4}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:133:0:{1fc202d4-d401-403c-9834-5b218574bb67}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:134:0:{1fc202d4-d401-403c-9834-5b218574bb67}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:132:0:{116d2292-e37d-41cd-a077-ebacac4c8cc4}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:0:0:{3ae79031-e1bc-11d0-8f78-00a0c9110057}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:1563555105:0:{bf84ea66-d821-4dba-b1b1-2777d8574775}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:464748262:0:{bf84ea66-d821-4dba-b1b1-2777d8574775}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:0:0:{e506b91c-c606-466a-90a9-123d1d1e12b3}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:66:0:{e8034f19-ab72-4f06-83fd-f6832b41aa63}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:4650798:0:{bf84ea66-d821-4dba-b1b1-2777d8574775}"
+            },
+            {
+              "$type": "Bookmark",
+              "Name": "ST:1275996112:0:{bf84ea66-d821-4dba-b1b1-2777d8574775}"
+            }
+          ]
+        }
+      ]
+    }
+  ]
+}