Added deployment scripts and GitHub Actions

Author: kevinjnev

.github/workflows/deploy.yml

@@ -0,0 +1,84 @@
+name: Deploy to EC2
+
+on:
+  push:
+    branches: [ main, master ]
+  pull_request:
+    branches: [ main, master ]
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v4
+    
+    - name: Set up Python
+      uses: actions/setup-python@v4
+      with:
+        python-version: '3.10'
+    
+    - name: Install dependencies
+      run: |
+        cd backend
+        pip install -r requirements.txt || pip install -e .
+    
+    - name: Run tests
+      run: |
+        cd backend
+        python -m pytest tests/ -v
+
+  deploy:
+    needs: test
+    runs-on: ubuntu-latest
+    if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master'
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+    
+    - name: Setup SSH
+      uses: webfactory/[email protected]
+      with:
+        ssh-private-key: ${{ secrets.EC2_SSH_KEY }}
+    
+    - name: Add EC2 to known hosts
+      run: |
+        ssh-keyscan -H ${{ secrets.EC2_HOST }} >> ~/.ssh/known_hosts
+    
+    - name: Deploy to EC2
+      run: |
+        ssh ec2-user@${{ secrets.EC2_HOST }} << 'EOF'
+          # Navigate to project directory
+          cd mosaic-project-cs4800 || cd mosaic-project-cs4800-main
+          
+          # Pull latest changes
+          git pull origin main || git pull origin master
+          
+          # Make deployment script executable
+          chmod +x deploy-ip.sh
+          
+          # Run deployment script
+          ./deploy-ip.sh ${{ secrets.EC2_HOST }}
+          
+          # Deploy with Docker Compose
+          docker compose -f docker-compose.production.yml down
+          docker compose -f docker-compose.production.yml up -d --build
+          
+          # Wait for services to be healthy
+          sleep 30
+          
+          # Check if services are running
+          docker compose -f docker-compose.production.yml ps
+          
+          # Test backend health
+          curl -f http://localhost:8000/api/v1/utils/health-check/ || echo "Backend health check failed"
+        EOF
+    
+    - name: Verify deployment
+      run: |
+        # Wait a bit for services to fully start
+        sleep 10
+        
+        # Test if the application is accessible
+        curl -f http://${{ secrets.EC2_HOST }}:8000/api/v1/utils/health-check/ || echo "Backend not accessible"
+        curl -f http://${{ secrets.EC2_HOST }} || echo "Frontend not accessible"

DEPLOYMENT_GUIDE.md

@@ -0,0 +1,129 @@
+# AWS EC2 Deployment Guide (IP-based)
+
+This guide will help you deploy your FastAPI project to AWS EC2 using the public IP address.
+
+## Prerequisites
+
+1. AWS EC2 instance running Amazon Linux 2023
+2. Security group configured to allow:
+   - SSH (port 22)
+   - HTTP (port 80)
+   - Backend API (port 8000)
+   - Adminer (port 8080)
+   - Database (port 5432) - optional for external access
+
+## Step 1: Set up EC2 Instance
+
+Connect to your EC2 instance and run these commands:
+
+```bash
+# Update the system
+sudo yum update -y
+
+# Install Docker
+sudo yum install -y docker
+sudo systemctl start docker
+sudo systemctl enable docker
+sudo usermod -a -G docker ec2-user
+
+# Install Docker Compose
+sudo curl -L "https://github.com/docker/compose/releases/latest/download/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose
+sudo chmod +x /usr/local/bin/docker-compose
+
+# Logout and login again to apply docker group changes
+exit
+```
+
+## Step 2: Upload Project Files
+
+Upload your project files to the EC2 instance. You can use:
+
+```bash
+# From your local machine, upload the project
+scp -r -i your-key.pem . ec2-user@YOUR_EC2_IP:/home/ec2-user/mosaic-project/
+```
+
+Or clone from Git if your project is in a repository:
+
+```bash
+# On the EC2 instance
+git clone YOUR_REPOSITORY_URL
+cd mosaic-project-cs4800
+```
+
+## Step 3: Deploy the Application
+
+1. **Run the deployment script** (replace YOUR_EC2_IP with your actual IP):
+
+```bash
+./deploy-ip.sh YOUR_EC2_IP
+```
+
+2. **Start the services**:
+
+```bash
+docker compose -f docker-compose.production.yml up -d
+```
+
+## Step 4: Verify Deployment
+
+Your application will be available at:
+
+- **Frontend**: `http://YOUR_EC2_IP`
+- **Backend API**: `http://YOUR_EC2_IP:8000`
+- **API Documentation**: `http://YOUR_EC2_IP:8000/docs`
+- **Adminer (Database UI)**: `http://YOUR_EC2_IP:8080`
+
+## Step 5: Access the Application
+
+1. **Create your first admin user**:
+   - Go to `http://YOUR_EC2_IP:8000/docs`
+   - Use the `/api/v1/users/` endpoint to create a user
+   - Or use the frontend registration
+
+2. **Login and start using the application**:
+   - Frontend: `http://YOUR_EC2_IP`
+   - API docs: `http://YOUR_EC2_IP:8000/docs`
+
+## Troubleshooting
+
+### Check if services are running:
+```bash
+docker compose -f docker-compose.production.yml ps
+```
+
+### View logs:
+```bash
+# All services
+docker compose -f docker-compose.production.yml logs
+
+# Specific service
+docker compose -f docker-compose.production.yml logs backend
+docker compose -f docker-compose.production.yml logs frontend
+```
+
+### Restart services:
+```bash
+docker compose -f docker-compose.production.yml restart
+```
+
+### Stop services:
+```bash
+docker compose -f docker-compose.production.yml down
+```
+
+## Security Notes
+
+- The deployment uses HTTP (not HTTPS) since we're using IP addresses
+- Database is accessible on port 5432 - consider restricting this in production
+- Adminer is accessible on port 8080 - consider restricting this in production
+- All passwords are generated securely using Python's secrets module
+
+## Environment Variables
+
+The deployment script automatically generates:
+- `SECRET_KEY`: Secure random key for JWT tokens
+- `FIRST_SUPERUSER_PASSWORD`: Secure random password for admin user
+- `POSTGRES_PASSWORD`: Secure random password for database
+
+You can modify these in the `.env` file if needed.

deploy-ip.sh

@@ -0,0 +1,166 @@
+#!/bin/bash
+
+# Deployment script for FastAPI project on EC2 with IP address
+# Usage: ./deploy-ip.sh YOUR_EC2_IP
+
+if [ -z "$1" ]; then
+    echo "Usage: ./deploy-ip.sh YOUR_EC2_IP"
+    echo "Example: ./deploy-ip.sh 54.123.45.67"
+    exit 1
+fi
+
+EC2_IP=$1
+
+echo "Deploying to EC2 IP: $EC2_IP"
+
+# Create environment file
+cat > .env << EOF
+# Production Environment Variables for IP-based deployment
+ENVIRONMENT=production
+DOMAIN=$EC2_IP
+PROJECT_NAME=Mosaic Project
+STACK_NAME=mosaic-project-production
+BACKEND_CORS_ORIGINS=http://$EC2_IP:5173,http://$EC2_IP:80,http://$EC2_IP
+FRONTEND_HOST=http://$EC2_IP:5173
+SECRET_KEY=$(python3 -c "import secrets; print(secrets.token_urlsafe(32))")
+[email protected]
+FIRST_SUPERUSER_PASSWORD=$(python3 -c "import secrets; print(secrets.token_urlsafe(16))")
+POSTGRES_SERVER=db
+POSTGRES_PORT=5432
+POSTGRES_USER=postgres
+POSTGRES_PASSWORD=$(python3 -c "import secrets; print(secrets.token_urlsafe(16))")
+POSTGRES_DB=app
+SMTP_HOST=
+SMTP_USER=
+SMTP_PASSWORD=
+EMAILS_FROM_EMAIL=
+DOCKER_IMAGE_BACKEND=mosaic-backend
+DOCKER_IMAGE_FRONTEND=mosaic-frontend
+TAG=latest
+EOF
+
+echo "Environment file created with secure random keys"
+
+# Create simplified docker-compose for IP deployment
+cat > docker-compose.production.yml << EOF
+services:
+  db:
+    image: postgres:17
+    restart: always
+    healthcheck:
+      test: ["CMD-SHELL", "pg_isready -U \${POSTGRES_USER} -d \${POSTGRES_DB}"]
+      interval: 10s
+      retries: 5
+      start_period: 30s
+      timeout: 10s
+    volumes:
+      - app-db-data:/var/lib/postgresql/data/pgdata
+    environment:
+      - PGDATA=/var/lib/postgresql/data/pgdata
+      - POSTGRES_PASSWORD=\${POSTGRES_PASSWORD}
+      - POSTGRES_USER=\${POSTGRES_USER}
+      - POSTGRES_DB=\${POSTGRES_DB}
+    ports:
+      - "5432:5432"
+
+  adminer:
+    image: adminer
+    restart: always
+    depends_on:
+      - db
+    environment:
+      - ADMINER_DESIGN=pepa-linha-dark
+    ports:
+      - "8080:8080"
+
+  prestart:
+    image: \${DOCKER_IMAGE_BACKEND}:\${TAG}
+    build:
+      context: ./backend
+    depends_on:
+      db:
+        condition: service_healthy
+        restart: true
+    command: bash scripts/prestart.sh
+    environment:
+      - DOMAIN=\${DOMAIN}
+      - FRONTEND_HOST=\${FRONTEND_HOST}
+      - ENVIRONMENT=\${ENVIRONMENT}
+      - BACKEND_CORS_ORIGINS=\${BACKEND_CORS_ORIGINS}
+      - SECRET_KEY=\${SECRET_KEY}
+      - FIRST_SUPERUSER=\${FIRST_SUPERUSER}
+      - FIRST_SUPERUSER_PASSWORD=\${FIRST_SUPERUSER_PASSWORD}
+      - SMTP_HOST=\${SMTP_HOST}
+      - SMTP_USER=\${SMTP_USER}
+      - SMTP_PASSWORD=\${SMTP_PASSWORD}
+      - EMAILS_FROM_EMAIL=\${EMAILS_FROM_EMAIL}
+      - POSTGRES_SERVER=db
+      - POSTGRES_PORT=\${POSTGRES_PORT}
+      - POSTGRES_DB=\${POSTGRES_DB}
+      - POSTGRES_USER=\${POSTGRES_USER}
+      - POSTGRES_PASSWORD=\${POSTGRES_PASSWORD}
+
+  backend:
+    image: \${DOCKER_IMAGE_BACKEND}:\${TAG}
+    restart: always
+    depends_on:
+      db:
+        condition: service_healthy
+        restart: true
+      prestart:
+        condition: service_completed_successfully
+    build:
+      context: ./backend
+    environment:
+      - DOMAIN=\${DOMAIN}
+      - FRONTEND_HOST=\${FRONTEND_HOST}
+      - ENVIRONMENT=\${ENVIRONMENT}
+      - BACKEND_CORS_ORIGINS=\${BACKEND_CORS_ORIGINS}
+      - SECRET_KEY=\${SECRET_KEY}
+      - FIRST_SUPERUSER=\${FIRST_SUPERUSER}
+      - FIRST_SUPERUSER_PASSWORD=\${FIRST_SUPERUSER_PASSWORD}
+      - SMTP_HOST=\${SMTP_HOST}
+      - SMTP_USER=\${SMTP_USER}
+      - SMTP_PASSWORD=\${SMTP_PASSWORD}
+      - EMAILS_FROM_EMAIL=\${EMAILS_FROM_EMAIL}
+      - POSTGRES_SERVER=db
+      - POSTGRES_PORT=\${POSTGRES_PORT}
+      - POSTGRES_DB=\${POSTGRES_DB}
+      - POSTGRES_USER=\${POSTGRES_USER}
+      - POSTGRES_PASSWORD=\${POSTGRES_PASSWORD}
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:8000/api/v1/utils/health-check/"]
+      interval: 10s
+      timeout: 5s
+      retries: 5
+    ports:
+      - "8000:8000"
+
+  frontend:
+    image: \${DOCKER_IMAGE_FRONTEND}:\${TAG}
+    restart: always
+    build:
+      context: ./frontend
+      args:
+        - VITE_API_URL=http://$EC2_IP:8000
+        - NODE_ENV=production
+    ports:
+      - "80:80"
+
+volumes:
+  app-db-data:
+EOF
+
+echo "Production docker-compose file created"
+
+echo "Deployment files created successfully!"
+echo ""
+echo "Next steps:"
+echo "1. Copy your project files to the EC2 instance"
+echo "2. Run: docker compose -f docker-compose.production.yml up -d"
+echo ""
+echo "Your application will be available at:"
+echo "- Frontend: http://$EC2_IP"
+echo "- Backend API: http://$EC2_IP:8000"
+echo "- API Docs: http://$EC2_IP:8000/docs"
+echo "- Adminer: http://$EC2_IP:8080"