Merge pull request #170 from microsoft/PSL-additionOfGithubAction

ci: Add configuration files and workflows for enhanced CI/CD and quality checks

Author: Roopan-Microsoft

.coveragerc

@@ -0,0 +1,3 @@
+[run]
+omit =
+    */test_*.py

.flake8

@@ -0,0 +1,5 @@
+[flake8]
+max-line-length = 88
+extend-ignore = E501
+exclude = .venv, frontend
+ignore = E203, W503, G004, G200

.github/PULL_REQUEST_TEMPLATE.md

@@ -34,4 +34,6 @@ Verify that the following are valid
 * ...
 
 ## Other Information
+
 <!-- Add any other helpful information that may be needed here. -->
+

.github/dependabot.yml

@@ -0,0 +1,32 @@
+# Dependabot configuration file
+# For more details, refer to: https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
+
+version: 2
+updates:
+  # GitHub Actions dependencies
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "monthly"
+    commit-message:
+      prefix: "build"
+    target-branch: "dependabotchanges"
+    open-pull-requests-limit: 20
+
+  - package-ecosystem: "pip"
+    directory: "/App"
+    schedule:
+      interval: "monthly"
+    commit-message:
+      prefix: "build"
+    target-branch: "dependabotchanges"
+    open-pull-requests-limit: 60
+
+  - package-ecosystem: "npm"
+    directory: "/App/frontend"
+    schedule:
+      interval: "monthly"
+    commit-message:
+      prefix: "build"
+    target-branch: "dependabotchanges"
+    open-pull-requests-limit: 60

.github/workflows/deploy-KMGeneric.yml

@@ -0,0 +1,108 @@
+name: CI-Validate Deployment-KM-Generic
+on:
+  push:
+    branches:
+
+      - main
+      - dev
+      - demo
+
+  schedule:
+    - cron: '0 6,18 * * *'  # Runs at 6:00 AM and 6:00 PM GMT
+    
+jobs:
+  deploy:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@v3
+
+      - name: Setup Azure CLI
+        run: |
+          curl -sL https://aka.ms/InstallAzureCLIDeb | sudo bash
+          az --version  # Verify installation
+
+      - name: Login to Azure
+        run: |
+          az login --service-principal -u ${{ secrets.AZURE_CLIENT_ID }} -p ${{ secrets.AZURE_CLIENT_SECRET }} --tenant ${{ secrets.AZURE_TENANT_ID }}
+      
+      - name: Install Bicep CLI
+        run: az bicep install
+    
+      - name: Generate Resource Group Name
+        id: generate_rg_name
+        run: |
+          echo "Generating a unique resource group name..."
+          TIMESTAMP=$(date +%Y%m%d%H%M%S)
+          COMMON_PART="ci-KMGeneric"
+          UNIQUE_RG_NAME="${COMMON_PART}${TIMESTAMP}"
+          echo "RESOURCE_GROUP_NAME=${UNIQUE_RG_NAME}" >> $GITHUB_ENV
+          echo "Generated Resource_GROUP_PREFIX: ${UNIQUE_RG_NAME}"
+
+      - name: Create Resource Group
+        run: |
+          az group create --name ${{ env.RESOURCE_GROUP_NAME }} --location westeurope
+
+      - name: Generate Unique Solution Prefix
+        id: generate_solution_prefix
+        run: |
+          set -e
+          COMMON_PART="km"
+          TIMESTAMP=$(date +%s)  
+          UPDATED_TIMESTAMP=$(echo $TIMESTAMP | tail -c 3) 
+          UNIQUE_SOLUTION_PREFIX="${COMMON_PART}${UPDATED_TIMESTAMP}"
+          echo "SOLUTION_PREFIX=${UNIQUE_SOLUTION_PREFIX}" >> $GITHUB_ENV
+          echo "Generated SOLUTION_PREFIX: ${UNIQUE_SOLUTION_PREFIX}" 
+
+
+      - name: Determine Tag Name Based on Branch
+        id: determine_tag
+        run: echo "tagname=${{ github.ref_name == 'main' && 'latest' || github.ref_name == 'dev' && 'dev' || github.ref_name == 'demo' && 'demo' || github.head_ref || 'default' }}" >> $GITHUB_OUTPUT
+
+      - name: Deploy Bicep Template
+        id: deploy
+        run: |
+          set -e
+          az deployment group create \
+            --resource-group ${{ env.RESOURCE_GROUP_NAME }} \
+            --template-file Deployment/bicep/main.bicep \
+            --parameters solutionPrefix=${{ env.SOLUTION_PREFIX }} otherLocation=centralus imageTag=${{ steps.determine_tag.outputs.tagname }}
+
+      
+
+      - name: Send Notification on Failure
+        if: failure()
+        run: |
+          RUN_URL="https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}"
+      
+          # Construct the email body
+          EMAIL_BODY=$(cat <<EOF
+          {
+            "body": "<p>Dear Team,</p><p>We would like to inform you that the CKMv2 Automation process has encountered an issue and has failed to complete successfully.</p><p><strong>Build URL:</strong> ${RUN_URL}<br> ${OUTPUT}</p><p>Please investigate the matter at your earliest convenience.</p><p>Best regards,<br>Your Automation Team</p>"
+          }
+          EOF
+          )
+      
+          # Send the notification
+          curl -X POST "${{ secrets.LOGIC_APP_URL }}" \
+            -H "Content-Type: application/json" \
+            -d "$EMAIL_BODY" || echo "Failed to send notification"
+
+
+      - name: Delete Bicep Deployment
+        
+        run: |
+              set -e  
+              echo "Checking if resource group exists..."
+              rg_exists=$(az group exists --name ${{ env.RESOURCE_GROUP_NAME }})
+              if [ "$rg_exists" = "true" ]; then
+                echo "Resource group exist. Cleaning..."
+                az group delete \
+                    --name ${{ env.RESOURCE_GROUP_NAME }} \
+                    --yes \
+                    --no-wait
+                echo "Resource group deleted...  ${{ env.RESOURCE_GROUP_NAME }}"
+              else
+                echo "Resource group does not exists."
+              fi
+        

.github/workflows/deploy.yml

@@ -3,8 +3,7 @@ on:
   push:
     branches:
       - ckm-v2
-  schedule:
-    - cron: '0 6,18 * * *'  # Runs at 6:00 AM and 6:00 PM GMT
+
 
 jobs:
   deploy:
@@ -92,4 +91,4 @@ jobs:
           # Send the notification
           curl -X POST "${{ secrets.LOGIC_APP_URL }}" \
             -H "Content-Type: application/json" \
-            -d "$EMAIL_BODY" || echo "Failed to send notification"
+            -d "$EMAIL_BODY" || echo "Failed to send notification"

.github/workflows/docker-build.yml

@@ -0,0 +1,89 @@
+name: Build and Push Docker Image
+
+on:
+  push:
+    branches:
+      - main
+      - dev
+      - demo
+  pull_request:
+    types:
+      - opened
+      - ready_for_review
+      - reopened
+      - synchronize
+    branches:
+      - main
+      - dev
+      - demo
+  workflow_dispatch:
+
+jobs:
+  build-and-push:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v2
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v1
+
+      - name: Log in to Azure Container Registry
+        if: ${{ github.event_name == 'push' && (github.ref_name == 'main' || github.ref_name == 'dev' || github.ref_name == 'demo' ) }}
+        uses: azure/docker-login@v2
+        with:
+          login-server: ${{ secrets.ACR_LOGIN_SERVER }}
+          username: ${{ secrets.ACR_USERNAME }}
+          password: ${{ secrets.ACR_PASSWORD }}
+
+      - name: Get current date
+        id: date
+        run: echo "date=$(date +'%Y-%m-%d')" >> $GITHUB_OUTPUT
+        
+      - name: Output ACR Login Server
+        run: |
+          echo "ACR Login Server: ${{ secrets.ACR_LOGIN_SERVER }}"
+
+      - name: Determine Tag Name Based on Branch
+        id: determine_tag
+        run: |
+         if [[ "${{ github.ref_name }}" == "main" ]]; then
+          echo "tagname=latest" >> $GITHUB_OUTPUT
+         elif [[ "${{ github.ref_name }}" == "dev" ]]; then
+          echo "tagname=dev" >> $GITHUB_OUTPUT
+         elif [[ "${{ github.ref_name }}" == "demo" ]]; then
+          echo "tagname=demo" >> $GITHUB_OUTPUT
+         else
+          echo "tagname=default" >> $GITHUB_OUTPUT
+       
+         fi
+      - name: Build and Push Docker Image for WebApp
+        uses: docker/build-push-action@v6
+        with:
+          context: ./App
+          file: ./App/WebApp.Dockerfile
+          push: ${{ github.ref_name == 'main' || github.ref_name == 'dev' || github.ref_name == 'demo' }}
+          tags: |
+            ${{ secrets.ACR_LOGIN_SERVER }}/km-app:${{ steps.determine_tag.outputs.tagname }}
+            ${{ secrets.ACR_LOGIN_SERVER }}/km-app:${{ steps.determine_tag.outputs.tagname }}_${{ steps.date.outputs.date }}_${{ github.run_number }}
+
+      - name: Build and Push Docker Image for km-rag-function
+        uses: docker/build-push-action@v6
+        with:
+          context: ./AzureFunctions/km-rag-function
+          file: ./AzureFunctions/km-rag-function/Dockerfile
+          push: ${{ github.ref_name == 'main' || github.ref_name == 'dev' || github.ref_name == 'demo' }}
+          tags: |
+            ${{ secrets.ACR_LOGIN_SERVER }}/km-rag-function:${{ steps.determine_tag.outputs.tagname }}
+            ${{ secrets.ACR_LOGIN_SERVER }}/km-rag-function:${{ steps.determine_tag.outputs.tagname }}_${{ steps.date.outputs.date }}_${{ github.run_number }}
+
+      - name: Build and Push Docker Image for km-charts-function
+        uses: docker/build-push-action@v6
+        with:
+          context: ./AzureFunctions/km-charts-function
+          file: ./AzureFunctions/km-charts-function/Dockerfile
+          push: ${{ github.ref_name == 'main' || github.ref_name == 'dev' || github.ref_name == 'demo' }}
+          tags: |
+            ${{ secrets.ACR_LOGIN_SERVER }}/km-charts-function:${{ steps.determine_tag.outputs.tagname }}
+            ${{ secrets.ACR_LOGIN_SERVER }}/km-charts-function:${{ steps.determine_tag.outputs.tagname }}_${{ steps.date.outputs.date }}_${{ github.run_number }}

.github/workflows/pylint.yml

@@ -0,0 +1,27 @@
+name: Pylint and Flake8
+
+on: [push]
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        python-version: ["3.11"]
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Set up Python ${{ matrix.python-version }}
+        uses: actions/setup-python@v3
+        with:
+          python-version: ${{ matrix.python-version }}
+      
+      - name: Install dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install -r App/requirements.txt
+          pip install flake8  # Ensure flake8 is installed explicitly
+      
+      - name: Run flake8 and pylint
+        run: |
+          flake8 --config=.flake8 App/backend  # Specify the directory to lint

.github/workflows/test.yml

@@ -0,0 +1,102 @@
+name: Test Workflow with Coverage
+
+on:
+  push:
+    branches:
+      - main
+      - dev
+      - demo
+  pull_request:
+    types:
+      - opened
+      - ready_for_review
+      - reopened
+      - synchronize
+    branches:
+      - main
+      - dev
+      - demo
+
+jobs:
+#   frontend_tests:
+#     runs-on: ubuntu-latest
+
+#     steps:
+#       - name: Checkout code
+#         uses: actions/checkout@v3
+
+#       - name: Set up Node.js
+#         uses: actions/setup-node@v3
+#         with:
+#           node-version: '20'
+
+#       - name: Check if Frontend Test Files Exist
+#         id: check_frontend_tests
+#         run: |
+#           if [ -z "$(find App/frontend/src -type f -name '*.test.js' -o -name '*.test.ts' -o -name '*.test.tsx')" ]; then
+#             echo "No frontend test files found, skipping frontend tests."
+#             echo "skip_frontend_tests=true" >> $GITHUB_ENV
+#           else
+#             echo "Frontend test files found, running tests."
+#             echo "skip_frontend_tests=false" >> $GITHUB_ENV
+#           fi
+
+#       - name: Install Frontend Dependencies
+#         if: env.skip_frontend_tests == 'false'
+#         run: |
+#           cd App/frontend
+#           npm install
+
+#       - name: Run Frontend Tests with Coverage
+#         if: env.skip_frontend_tests == 'false'
+#         run: |
+#           cd App/frontend
+#           npm run test -- --coverage
+
+#       - name: Skip Frontend Tests
+#         if: env.skip_frontend_tests == 'true'
+#         run: |
+#           echo "Skipping frontend tests because no test files were found."
+
+  backend_tests:
+    runs-on: ubuntu-latest
+    
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v3
+
+      - name: Set up Python
+        uses: actions/setup-python@v4
+        with:
+          python-version: '3.11'
+
+      - name: Install Backend Dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install -r App/requirements.txt
+          pip install pytest-cov
+          pip install pytest-asyncio
+
+      - name: Check if Backend Test Files Exist
+        id: check_backend_tests
+        run: |
+          if [ -z "$(find App/backend -type f -name 'test_*.py')" ]; then
+            echo "No backend test files found, skipping backend tests."
+            echo "skip_backend_tests=true" >> $GITHUB_ENV
+          else
+            echo "Backend test files found, running tests."
+            echo "skip_backend_tests=false" >> $GITHUB_ENV
+          fi
+
+      - name: Run Backend Tests with Coverage
+        if: env.skip_backend_tests == 'false'
+        run: |
+          pytest --cov=. --cov-report=term-missing --cov-report=xml
+
+
+
+      - name: Skip Backend Tests
+        if: env.skip_backend_tests == 'true'
+        run: |
+          echo "Skipping backend tests because no test files were found."