Merge pull request #25 from nitrictech/database-migration-docs

HomelessDinosaur · web-flow · commit 819949d2683b · 2025-08-27T10:27:01.000+10:00
docs: Add database migrations and guides overview pages
diff --git a/.github/workflows/test-docs.yml b/.github/workflows/test-docs.yml
@@ -1,14 +1,14 @@
-name: Docs Test
+name: Test Docs
 
 on:
   push:
-    branches: [ main ]
+    branches: [main]
     paths:
-      - 'docs/**'
+      - "docs/**"
   pull_request:
-    branches: [ main ]
+    branches: [main]
     paths:
-      - 'docs/**'
+      - "docs/**"
 
 jobs:
   vale:
@@ -22,7 +22,8 @@ jobs:
         uses: errata-ai/vale-action@v2
         with:
           files: '["docs"]'
-          vale_flags: '--config=docs/.vale.ini'
+          vale_flags: "--config=docs/.vale.ini"
+          fail_on_error: true
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
@@ -36,8 +37,8 @@ jobs:
       - name: Setup Node.js
         uses: actions/setup-node@v4
         with:
-          node-version: '22'
+          node-version: "22"
 
       - name: Check for broken links
         working-directory: docs
-        run: npx --yes mint@latest broken-links
+        run: npx --yes mint@latest broken-links
diff --git a/docs/.vale/styles/config/vocabularies/Suga/accept.txt b/docs/.vale/styles/config/vocabularies/Suga/accept.txt
@@ -6,7 +6,9 @@ Dockerfile
 Subcommands
 SDKs
 Supabase
-
+Planetscale
+liquibase
+allowlisting
 
 # Defaults from mintlify
 Mintlify
diff --git a/docs/docs.json b/docs/docs.json
@@ -28,12 +28,16 @@
       },
       {
         "dropdown": "Guides",
-        "description": "In-depth guides for Suga",
+        "description": "Learn how to use Suga",
         "icon": "graduation-cap",
         "groups": [
           {
-            "group": "Migrations",
-            "pages": ["guides/migrate-existing"]
+            "group": "Overview",
+            "pages": ["guides/overview"]
+          },
+          {
+            "group": "Guides",
+            "pages": ["guides/database-migration", "guides/migrate-existing"]
           }
         ]
       },
diff --git a/docs/guides/database-migration.mdx b/docs/guides/database-migration.mdx
@@ -0,0 +1,256 @@
+---
+title: 'Database Migrations'
+description: 'Running migrations for a database deployed with Suga'
+---
+
+## With public database (Neon, Supabase, Planetscale etc.)
+
+Running database migrations against services like Neon, Supabase or Planetscale is simple with Suga.
+
+### Prerequisites
+
+1. **Ensure your application build is up to date** by running `suga build` to generate the necessary Terraform configuration
+
+2. **Identify your database module name** from your `suga.yaml` file:
+
+```yaml
+databases:
+  database: # <-- 👀 This will be the terraform module name
+    env_var_key: DATABASE_URL
+```
+
+3. **Ensure your migration tool is available** in your CI/CD environment (e.g., golang-migrate, flyway, liquibase, or a custom migration script)
+
+### Migration Strategy
+
+The recommended approach follows a four-phase deployment pattern:
+
+1. **Deploy database infrastructure first** - Create or update database resources
+2. **Extract connection details** - Get the database connection string from Terraform state
+3. **Run migrations** - Apply schema changes before deploying application code
+4. **Deploy application** - Roll out the updated application that depends on the new schema
+
+### Implementation Steps
+
+<Steps>
+  <Step title="Deploy Database Module">
+    First, apply only the database module using Terraform's `-target` flag:
+
+    ```bash
+    # Initialize Terraform
+    terraform init
+
+    # Plan database module deployment
+    terraform plan -target=module.database -out=tfplan-database
+
+    # Apply database module
+    terraform apply tfplan-database
+    ```
+  </Step>
+
+  <Step title="Extract Database Connection String">
+    After the database module is deployed, extract the connection details from Terraform state:
+
+    ```bash
+    # Extract database connection components
+    terraform output -json database_connection_string
+
+    # Or extract from state directly
+    terraform state show module.database
+    ```
+
+    For Neon databases specifically, you'll typically need:
+    - Role name and password
+    - Endpoint host
+    - Database name
+    - SSL mode (usually `require`)
+  </Step>
+
+  <Step title="Run Migrations">
+    With the connection string available, run your migrations:
+
+    ```bash
+    # Example using golang-migrate
+    migrate -database "$DATABASE_URL" -path ./migrations up
+
+    # Example using a custom migration tool
+    ./run-migrations.sh --database-url "$DATABASE_URL"
+
+    # Example using Node.js migration tool
+    npm run migrate:up
+    ```
+  </Step>
+
+  <Step title="Deploy Application">
+    After migrations succeed, deploy the complete application stack:
+
+    ```bash
+    # Plan full deployment
+    terraform plan -out=tfplan-app
+
+    # Apply all modules
+    terraform apply tfplan-app
+    ```
+  </Step>
+</Steps>
+
+### Best Practices
+
+1. **Use environment-specific workspaces** to isolate different stages (dev, staging, production)
+2. **Implement proper concurrency control** to prevent simultaneous migrations
+3. **Always backup data** before running migrations in production
+4. **Test migrations** in lower environments first
+5. **Use transactional migrations** when possible to enable rollback on failure
+6. **Version control your migration files** alongside your application code
+
+### Full Example: Platform-Agnostic Script
+
+Here's a general approach that can be adapted to any CI/CD platform:
+
+```bash
+#!/bin/bash
+set -e
+
+# Configuration
+WORKSPACE="${ENVIRONMENT:-dev}"
+TERRAFORM_DIR="./terraform/stacks/suga_platform"
+
+# Step 1: Initialize and select workspace
+cd "$TERRAFORM_DIR"
+terraform init
+terraform workspace select "$WORKSPACE" || terraform workspace new "$WORKSPACE"
+
+# Step 2: Deploy database module
+terraform plan -target=module.database -out=tfplan-database
+terraform apply tfplan-database
+
+# Step 3: Extract connection string
+DATABASE_URL=$(terraform output -raw database_connection_string)
+export DATABASE_URL
+
+# Step 4: Run migrations
+cd ../../../backend  # Adjust path as needed
+./migrate up  # Replace with your migration command
+
+# Step 5: Deploy application
+cd "$TERRAFORM_DIR"
+terraform plan -out=tfplan-app
+terraform apply tfplan-app
+```
+
+### Example: GitHub Actions Implementation
+
+Here's a complete GitHub Actions workflow that implements the migration pattern:
+> This is a copy of the workflow used to deploy the Suga platform itself 😃
+
+```yaml
+name: Deploy with Database Migrations
+
+on:
+  push:
+    branches: [main]
+    tags: ['v[0-9]+.[0-9]+.[0-9]+']
+
+jobs:
+  terraform-apply:
+    name: Deploy Terraform Stack
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: us-east-2
+
+      - name: Setup Terraform
+        uses: hashicorp/setup-terraform@v3
+
+      - name: Set Terraform Workspace
+        id: workspace
+        run: |
+          if [[ "${{ github.ref }}" =~ ^refs/tags/v[0-9]+\.[0-9]+\.[0-9]+ ]]; then
+            WORKSPACE="production"
+          elif [[ "${{ github.ref }}" == "refs/heads/main" ]]; then
+            WORKSPACE="staging"
+          else
+            WORKSPACE="dev"
+          fi
+          echo "workspace=$WORKSPACE" >> $GITHUB_OUTPUT
+
+      - name: Terraform Init
+        working-directory: ./terraform/stacks/suga_platform
+        run: terraform init
+
+      - name: Create or Select Terraform Workspace
+        working-directory: ./terraform/stacks/suga_platform
+        run: |
+          terraform workspace select ${{ steps.workspace.outputs.workspace }} || \
+          terraform workspace new ${{ steps.workspace.outputs.workspace }}
+
+      # Step 1: Deploy Database Module First
+      - name: Deploy Database Module
+        working-directory: ./terraform/stacks/suga_platform
+        run: |
+          terraform plan -target=module.database -out=tfplan-database
+          terraform apply -auto-approve tfplan-database
+
+      # Step 2: Extract Database Connection String
+      - name: Extract Database Connection String
+        id: db-connection
+        working-directory: ./terraform/stacks/suga_platform
+        run: |
+          # Extract from Terraform state (example for Neon)
+          STATE_JSON=$(terraform state pull)
+          
+          ROLE_NAME=$(echo "$STATE_JSON" | jq -r '.resources[] | 
+            select(.module == "module.database" and .type == "neon_role") | 
+            .instances[0].attributes.name')
+          ROLE_PASSWORD=$(echo "$STATE_JSON" | jq -r '.resources[] | 
+            select(.module == "module.database" and .type == "neon_role") | 
+            .instances[0].attributes.password')
+          ENDPOINT_HOST=$(echo "$STATE_JSON" | jq -r '.resources[] | 
+            select(.module == "module.database" and .type == "neon_endpoint") | 
+            .instances[0].attributes.host')
+          DATABASE_NAME=$(echo "$STATE_JSON" | jq -r '.resources[] | 
+            select(.module == "module.database" and .type == "neon_database") | 
+            .instances[0].attributes.name')
+          
+          DATABASE_URL="postgresql://${ROLE_NAME}:${ROLE_PASSWORD}@${ENDPOINT_HOST}/${DATABASE_NAME}?sslmode=require"
+          echo "DATABASE_URL=$DATABASE_URL" >> $GITHUB_OUTPUT
+
+      # Step 3: Run Database Migrations
+      - name: Setup Go  # Or your migration tool runtime
+        uses: actions/setup-go@v5
+        with:
+          go-version: "1.23"
+
+      - name: Run Database Migrations
+        working-directory: ./backend
+        env:
+          DATABASE_URL: ${{ steps.db-connection.outputs.DATABASE_URL }}
+        run: |
+          go mod download
+          go run cmd/migrate/main.go -action=up
+
+      # Step 4: Deploy Complete Application
+      - name: Deploy Application
+        working-directory: ./terraform/stacks/suga_platform
+        run: |
+          terraform plan -out=tfplan-app
+          terraform apply -auto-approve tfplan-app
+```
+
+### Security Considerations
+
+- **Never log database credentials** - Use masked outputs in CI/CD logs
+- **Use secure secret management** - Store credentials in CI/CD secret stores
+- **Rotate credentials regularly** - Implement credential rotation policies
+- **Limit network access** - Use private endpoints or IP allowlisting where possible
+
+## With private databases (Cloud SQL, RDS, etc.)
+
+Coming soon...
diff --git a/docs/guides/overview.mdx b/docs/guides/overview.mdx
@@ -0,0 +1,37 @@
+---
+title: 'Guides Overview'
+description: 'Learn how to leverage Suga for common infrastructure patterns and workflows'
+---
+
+## Welcome to Suga Guides
+
+These guides provide practical, hands-on instructions for implementing common infrastructure patterns and workflows with Suga. Whether you're setting up CI/CD pipelines, managing databases, or deploying applications, you'll find step-by-step instructions and best practices here.
+
+## Featured Guides
+
+<CardGroup cols={2}>
+  <Card title="Migrate Existing Applications" icon="truck" href="/guides/migrate-existing">
+    Step-by-step guide to migrate your existing applications to Suga infrastructure management.
+  </Card>
+  <Card title="Database Migrations" icon="database" href="/guides/database-migration">
+    Learn how to run database migrations as part of your deployment pipeline.
+  </Card>
+</CardGroup>
+
+## Prerequisites
+
+Before diving into the guides, ensure you have:
+
+1. **Suga CLI installed** - See our [Installation Guide](/cli/installation)
+2. **A Suga project initialized** - Follow the [Quickstart](/quickstart) to create your first project
+3. **Basic Terraform knowledge** - Familiarity with Terraform concepts will help you customize the examples
+
+## Getting Help
+
+- **Documentation** - Browse the complete [CLI Reference](/cli/introduction) for detailed command information
+- **Support** - Contact us at [support@nitric.io](mailto:support@nitric.io)
+- **Community** - Join our [GitHub Discussions](https://github.com/nitrictech/suga/discussions) to connect with other users
+
+## Contributing
+
+Found an issue or have a suggestion for these guides? We welcome contributions! Please open an issue or pull request on our [GitHub repository](https://github.com/nitrictech/suga).

Original file line number	Diff line number	Diff line change
`@@ -28,12 +28,16 @@`
`28`	`28`	`},`
`29`	`29`	`{`
`30`	`30`	`"dropdown": "Guides",`
`31`		`- "description": "In-depth guides for Suga",`
	`31`	`+ "description": "Learn how to use Suga",`
`32`	`32`	`"icon": "graduation-cap",`
`33`	`33`	`"groups": [`
`34`	`34`	`{`
`35`		`- "group": "Migrations",`
`36`		`- "pages": ["guides/migrate-existing"]`
	`35`	`+ "group": "Overview",`
	`36`	`+ "pages": ["guides/overview"]`
	`37`	`+ },`
	`38`	`+ {`
	`39`	`+ "group": "Guides",`
	`40`	`+ "pages": ["guides/database-migration", "guides/migrate-existing"]`
`37`	`41`	`}`
`38`	`42`	`]`
`39`	`43`	`},`