Add real-time GraphQL subscriptions for infrastructure task events (backend + Blazor UI)

Author: srnichols

management-portal/deploy-container-apps.ps1

@@ -215,24 +215,6 @@ finally {
     Pop-Location
 }
 
-# Build and push DAB image
-Write-Host "📦 Building DAB container image..." -ForegroundColor Yellow
-Push-Location "dab"
-try {
-    docker build -t $dabImage .
-    if ($LASTEXITCODE -ne 0) {
-        throw "DAB image build failed"
-    }
-    
-    Write-Host "📤 Pushing DAB image to registry..." -ForegroundColor Yellow
-    docker push $dabImage
-    if ($LASTEXITCODE -ne 0) {
-        throw "DAB image push failed"
-    }
-}
-finally {
-    Pop-Location
-}
 
 # Phase 3: Deploy Container Apps
 Write-Host "🏗️  Phase 3: Deploying Container Apps..." -ForegroundColor Yellow
@@ -256,34 +238,9 @@ $acrPassword = az acr credential show `
     --query "passwords[0].value" `
     --output tsv
 
-# Create DAB Container App
-Write-Host "🚀 Creating DAB Container App..." -ForegroundColor Yellow
-az containerapp create `
-    --name "ca-stamps-dab" `
-    --resource-group $ResourceGroupName `
-    --environment $containerAppsEnvironmentName `
-    --image $dabImage `
-    --target-port 80 `
-    --ingress external `
-    --registry-server $acrLoginServer `
-    --registry-username $containerRegistryName `
-    --registry-password $acrPassword `
-    --secrets "cosmos-connection-string=$cosmosConnectionString" "appinsights-connection-string=$appInsightsConnectionString" `
-    --env-vars "COSMOS_CONNECTION_STRING=secretref:cosmos-connection-string" "ASPNETCORE_ENVIRONMENT=Production" "APPLICATIONINSIGHTS_CONNECTION_STRING=secretref:appinsights-connection-string" `
-    --cpu 0.25 `
-    --memory 0.5Gi `
-    --min-replicas 1 `
-    --max-replicas 3 `
-    --output none
 
-# Get DAB URL
-$dabUrl = az containerapp show `
-    --name "ca-stamps-dab" `
-    --resource-group $ResourceGroupName `
-    --query "properties.configuration.ingress.fqdn" `
-    --output tsv
 
-# Create Portal Container App
+# Create Portal Container App (HotChocolate GraphQL only)
 Write-Host "🚀 Creating Portal Container App..." -ForegroundColor Yellow
 az containerapp create `
     --name "ca-stamps-portal" `
@@ -295,8 +252,8 @@ az containerapp create `
     --registry-server $acrLoginServer `
     --registry-username $containerRegistryName `
     --registry-password $acrPassword `
-    --secrets "dab-graphql-url=https://$dabUrl/graphql" "appinsights-connection-string=$appInsightsConnectionString" "azure-ad-client-id=e691193e-4e25-4a72-9185-1ce411aa2fd8" "azure-ad-tenant-id=16b3c013-d300-468d-ac64-7eda0820b6d3" `
-    --env-vars "DAB_GRAPHQL_URL=secretref:dab-graphql-url" "ASPNETCORE_ENVIRONMENT=Production" "APPLICATIONINSIGHTS_CONNECTION_STRING=secretref:appinsights-connection-string" "ASPNETCORE_URLS=http://+:8080" "AzureAd__ClientId=secretref:azure-ad-client-id" "AzureAd__TenantId=secretref:azure-ad-tenant-id" "AzureAd__Instance=https://login.microsoftonline.com/" "AzureAd__CallbackPath=/signin-oidc" "AzureAd__SignedOutCallbackPath=/signout-callback-oidc" "RUNNING_IN_PRODUCTION=true" `
+    --secrets "appinsights-connection-string=$appInsightsConnectionString" "azure-ad-client-id=e691193e-4e25-4a72-9185-1ce411aa2fd8" "azure-ad-tenant-id=16b3c013-d300-468d-ac64-7eda0820b6d3" `
+    --env-vars "ASPNETCORE_ENVIRONMENT=Production" "APPLICATIONINSIGHTS_CONNECTION_STRING=secretref:appinsights-connection-string" "ASPNETCORE_URLS=http://+:8080" "AzureAd__ClientId=secretref:azure-ad-client-id" "AzureAd__TenantId=secretref:azure-ad-tenant-id" "AzureAd__Instance=https://login.microsoftonline.com/" "AzureAd__CallbackPath=/signin-oidc" "AzureAd__SignedOutCallbackPath=/signout-callback-oidc" "RUNNING_IN_PRODUCTION=true" `
     --cpu 0.5 `
     --memory 1Gi `
     --min-replicas 1 `
@@ -319,7 +276,6 @@ Write-Host "  Container Registry: $containerRegistryName" -ForegroundColor White
 Write-Host ""
 Write-Host "🌐 Application URLs:" -ForegroundColor Cyan
 Write-Host "  Portal: https://$portalUrl" -ForegroundColor White
-Write-Host "  Data API Builder: https://$dabUrl" -ForegroundColor White
 Write-Host ""
 Write-Host "📊 Monitoring:" -ForegroundColor Cyan
 Write-Host "  Application Insights: $appInsightsName" -ForegroundColor White

management-portal/src/Portal/GraphQL/Query.cs

@@ -0,0 +1,28 @@
+using HotChocolate;
+using HotChocolate.Types;
+using Stamps.ManagementPortal.Models;
+using Stamps.ManagementPortal.Services;
+using System.Collections.Generic;
+using System.Threading.Tasks;
+
+namespace Stamps.ManagementPortal.GraphQL;
+
+public class Query
+{
+    private readonly ICosmosDiscoveryService _cosmosDiscoveryService;
+
+    public Query(ICosmosDiscoveryService cosmosDiscoveryService)
+    {
+        _cosmosDiscoveryService = cosmosDiscoveryService;
+    }
+
+    [UsePaging]
+    [UseFiltering]
+    [UseSorting]
+    public async Task<IEnumerable<Tenant>> GetTenantsAsync() => await _cosmosDiscoveryService.DiscoverTenantsAsync();
+
+    [UsePaging]
+    [UseFiltering]
+    [UseSorting]
+    public async Task<IEnumerable<Cell>> GetCellsAsync() => await _cosmosDiscoveryService.DiscoverCellsAsync();
+}

management-portal/src/Portal/GraphQL/Subscription.cs

@@ -0,0 +1,22 @@
+using HotChocolate;
+using HotChocolate.Subscriptions;
+using System.Threading;
+using System.Threading.Tasks;
+
+namespace Stamps.ManagementPortal.GraphQL
+{
+    public class TaskEvent
+    {
+        public string Id { get; set; }
+        public string Status { get; set; }
+        public string Message { get; set; }
+        public DateTime Timestamp { get; set; }
+    }
+
+    public class Subscription
+    {
+        [Subscribe]
+        [Topic("TASK_EVENTS")]
+        public TaskEvent OnTaskEvent([EventMessage] TaskEvent taskEvent) => taskEvent;
+    }
+}

management-portal/src/Portal/Models/TaskEventModel.cs

@@ -0,0 +1,9 @@
+namespace Stamps.ManagementPortal.Models;
+
+public class TaskEventModel
+{
+    public string Id { get; set; }
+    public string Status { get; set; }
+    public string Message { get; set; }
+    public DateTime Timestamp { get; set; }
+}

management-portal/src/Portal/Pages/Infrastructure.razor

@@ -2,12 +2,28 @@
 @using Stamps.ManagementPortal.Models
 @using Stamps.ManagementPortal.Services
 @using Microsoft.JSInterop
+@using Stamps.ManagementPortal.Models
+@using System.Net.WebSockets
+@using System.Text.Json
+@using System.Threading
+@using System.Threading.Tasks
+@using System.Collections.Concurrent
+@inject NavigationManager Navigation
 @inject Stamps.ManagementPortal.Services.IDataService Data
 @inject Stamps.ManagementPortal.Services.IAzureInfrastructureService AzureInfrastructureService
 @inject ILogger<Infrastructure> Logger
 @inject IJSRuntime JSRuntime
 
 <div class="infrastructure-container">
+    <div class="realtime-events mb-3">
+        <h6>🔔 Real-Time Task Events</h6>
+        <ul class="list-unstyled">
+            @foreach (var evt in taskEvents)
+            {
+                <li><span class="badge bg-info">@evt.Status</span> @evt.Message <small class="text-muted">@evt.Timestamp.ToLocalTime()</small></li>
+            }
+        </ul>
+    </div>
     <div class="page-header">
         <h1>🏗️ Infrastructure Discovery</h1>
         <p class="lead">Real-time view of your Azure Stamps infrastructure across all regions</p>
@@ -444,6 +460,78 @@
 </style>
 
 @code {
+    private List<TaskEventModel> taskEvents = new();
+    private ClientWebSocket? ws;
+    private CancellationTokenSource? wsCts;
+
+    protected override async Task OnInitializedAsync()
+    {
+        await base.OnInitializedAsync();
+        _ = ConnectToTaskEvents();
+    }
+
+    private async Task ConnectToTaskEvents()
+    {
+        try
+        {
+            wsCts = new CancellationTokenSource();
+            ws = new ClientWebSocket();
+            var wsUri = new Uri(Navigation.ToAbsoluteUri("/graphql").ToString().Replace("http","ws"));
+            await ws.ConnectAsync(wsUri, wsCts.Token);
+
+            // Send GraphQL subscription start message (Apollo protocol)
+            var payload = new
+            {
+                id = "1",
+                type = "start",
+                payload = new
+                {
+                    query = "subscription { taskEvents { id status message timestamp } }"
+                }
+            };
+            var json = JsonSerializer.Serialize(payload);
+            var bytes = System.Text.Encoding.UTF8.GetBytes(json);
+            await ws.SendAsync(new ArraySegment<byte>(bytes), WebSocketMessageType.Text, true, wsCts.Token);
+
+            // Listen for messages
+            var buffer = new byte[4096];
+            while (ws.State == WebSocketState.Open)
+            {
+                var result = await ws.ReceiveAsync(new ArraySegment<byte>(buffer), wsCts.Token);
+                if (result.MessageType == WebSocketMessageType.Close) break;
+                var msg = System.Text.Encoding.UTF8.GetString(buffer, 0, result.Count);
+                if (msg.Contains("taskEvents"))
+                {
+                    var doc = JsonDocument.Parse(msg);
+                    var evt = doc.RootElement
+                        .GetProperty("payload").GetProperty("data").GetProperty("taskEvents");
+                    var model = new TaskEventModel
+                    {
+                        Id = evt.GetProperty("id").GetString() ?? string.Empty,
+                        Status = evt.GetProperty("status").GetString() ?? string.Empty,
+                        Message = evt.GetProperty("message").GetString() ?? string.Empty,
+                        Timestamp = evt.GetProperty("timestamp").GetDateTime()
+                    };
+                    taskEvents.Insert(0, model);
+                    if (taskEvents.Count > 20) taskEvents.RemoveAt(taskEvents.Count - 1);
+                    StateHasChanged();
+                }
+            }
+        }
+        catch (Exception ex)
+        {
+            Logger.LogError(ex, "WebSocket subscription error");
+        }
+    }
+
+    public async ValueTask DisposeAsync()
+    {
+        if (ws != null)
+        {
+            wsCts?.Cancel();
+            ws.Dispose();
+        }
+    }
     private bool loading = false;
     private DateTime lastUpdated = DateTime.Now;
 

management-portal/src/Portal/Portal.csproj

@@ -24,5 +24,7 @@
     <PackageReference Include="OpenTelemetry.Extensions.Hosting" Version="1.9.0" />
     <PackageReference Include="OpenTelemetry.Instrumentation.AspNetCore" Version="1.9.0" />
     <PackageReference Include="Azure.Monitor.OpenTelemetry.AspNetCore" Version="1.2.0" />
+  <PackageReference Include="HotChocolate.AspNetCore" Version="13.0.6" />
+  <PackageReference Include="HotChocolate.Data" Version="13.0.6" />
   </ItemGroup>
 </Project>

management-portal/src/Portal/Program.cs

@@ -22,7 +22,7 @@
     });
 }
 
-// Add authentication for production
+// Add authentication and authorization only in Production
 if (builder.Environment.IsProduction())
 {
     // Configure authentication to use HTTPS URLs
@@ -39,36 +39,37 @@
             }
         };
     });
-    
+
     builder.Services.AddAuthentication(OpenIdConnectDefaults.AuthenticationScheme)
         .AddMicrosoftIdentityWebApp(builder.Configuration.GetSection("AzureAd"));
-    
+
     builder.Services.AddAuthorization(options =>
     {
         // Require authentication by default
         options.FallbackPolicy = options.DefaultPolicy;
-        
+
         // Add role-based authorization
         options.AddPolicy("PlatformAdmin", policy =>
             policy.RequireRole("platform.admin"));
-        
+
         options.AddPolicy("Authenticated", policy =>
             policy.RequireAuthenticatedUser());
     });
-    
+
     builder.Services.AddControllersWithViews(options =>
     {
         var policy = new AuthorizationPolicyBuilder()
             .RequireAuthenticatedUser()
             .Build();
         options.Filters.Add(new AuthorizeFilter(policy));
     }).AddDapr();
-    
+
     builder.Services.AddRazorPages()
         .AddMicrosoftIdentityUI();
 }
 else
 {
+    // Development: No authentication/authorization
     builder.Services.AddRazorPages();
     builder.Services.AddControllers().AddDapr();
 }
@@ -88,41 +89,19 @@
     builder.Services.AddApplicationInsightsTelemetry();
 }
 
-// Configure GraphQL client
-builder.Services.AddHttpClient("GraphQL", (sp, client) =>
-{
-    var cfg = sp.GetRequiredService<IConfiguration>();
-    var baseUrl = cfg["DAB_GRAPHQL_URL"] ?? "";
-    if (!string.IsNullOrWhiteSpace(baseUrl))
-    {
-        client.BaseAddress = new Uri(baseUrl);
-    }
-});
+// Configure HotChocolate GraphQL server
+builder.Services.AddGraphQLServer()
+    .AddQueryType<Stamps.ManagementPortal.GraphQL.Query>()
+    .AddSubscriptionType<Stamps.ManagementPortal.GraphQL.Subscription>();
 
-// Configure data service with Dapr capabilities
-var dabGraphQLUrl = builder.Configuration["DAB_GRAPHQL_URL"];
-var useGraphQL = !string.IsNullOrWhiteSpace(dabGraphQLUrl);
-var useDapr = !string.IsNullOrWhiteSpace(Environment.GetEnvironmentVariable("DAPR_HTTP_PORT"));
+// Add HotChocolate in-memory subscription support
+builder.Services.AddInMemorySubscriptions();
 
-Console.WriteLine($"Service Configuration - UseGraphQL: {useGraphQL}, UseDapr: {useDapr}, DAB_URL: '{dabGraphQLUrl}'");
-
-if (useGraphQL && useDapr)
-{
-    // Use Dapr-enabled data service for enhanced debugging and resilience
-    builder.Services.AddScoped<Stamps.ManagementPortal.Services.GraphQLDataService>();
-    builder.Services.AddScoped<Stamps.ManagementPortal.Services.IDataService, Stamps.ManagementPortal.Services.DaprDataService>();
-}
-else if (useGraphQL)
-{
-    // Use direct GraphQL service
-    builder.Services.AddScoped<Stamps.ManagementPortal.Services.IDataService, Stamps.ManagementPortal.Services.GraphQLDataService>();
-}
-else
-{
-    // Use in-memory service for development
-    Console.WriteLine("Using InMemoryDataService for development");
-    builder.Services.AddScoped<Stamps.ManagementPortal.Services.IDataService, Stamps.ManagementPortal.Services.InMemoryDataService>();
-}
+// Register TaskEventPublisher
+builder.Services.AddSingleton<Stamps.ManagementPortal.Services.ITaskEventPublisher, Stamps.ManagementPortal.Services.TaskEventPublisher>();
+// Use in-memory service for development
+Console.WriteLine("Using InMemoryDataService for development");
+builder.Services.AddScoped<Stamps.ManagementPortal.Services.IDataService, Stamps.ManagementPortal.Services.InMemoryDataService>();
 
 // Configure Azure Infrastructure Service
 builder.Services.AddScoped<Stamps.ManagementPortal.Services.IAzureInfrastructureService, Stamps.ManagementPortal.Services.AzureInfrastructureService>();
@@ -135,6 +114,9 @@
 
 var app = builder.Build();
 
+// Map HotChocolate GraphQL endpoint
+app.MapGraphQL("/graphql");
+
 // Configure the HTTP request pipeline
 if (!app.Environment.IsDevelopment())
 {
@@ -148,12 +130,16 @@
     app.UseForwardedHeaders();
 }
 
+
 app.UseHttpsRedirection();
 app.UseStaticFiles();
 
 app.UseRouting();
 
-// Add authentication middleware for production
+// Enable WebSockets for GraphQL subscriptions
+app.UseWebSockets();
+
+// Add authentication middleware for production only
 if (app.Environment.IsProduction())
 {
     app.UseAuthentication();