FastAPI Project Release

This repository contains the Kubernetes manifests, Helm charts, and Argo CD configurations for deploying the FastAPI application.

Documentation

Detailed documentation is available in the docs/ directory:

• Release Strategy - Comprehensive guide to the release strategy
• Quick Start Guide - Quick start guide for new team members
• Troubleshooting - Solutions to common issues

Repository Structure

.
├── charts/                    # Helm charts
│   └── fastapi/              # FastAPI application Helm chart
│       ├── Chart.yaml        # Chart metadata
│       ├── values.yaml       # Default values
│       └── templates/        # Helm templates
│           ├── _helpers.tpl
│           ├── backend-deployment.yaml
│           ├── configmap.yaml
│           ├── frontend-deployment.yaml
│           ├── ingress.yaml
│           ├── postgres-statefulset.yaml
│           ├── services.yaml
│           └── db-init-script-configmap.yaml  # Database initialization and migrations
├── config/                   # Environment-specific configurations
│   ├── argocd/              # Argo CD Application manifests
│   │   ├── staging.yaml     # Staging environment
│   │   └── production.yaml  # Production environment
│   └── helm/                # Environment-specific Helm values
│       ├── values.yaml      # Default values (development)
│       ├── staging.yaml     # Staging environment
│       └── production.yaml  # Production environment
├── scripts/                  # Deployment and maintenance scripts
│   ├── deploy-dev.sh        # Development deployment script
│   ├── deploy-prod.sh       # Production deployment script
│   ├── cleanup.sh           # Environment cleanup script
│   ├── setup-argocd.sh      # ArgoCD setup script
│   └── setup-argocd-integration.sh # ArgoCD CI/CD integration script
└── .github/                 # GitHub Actions workflows
    └── workflows/
        ├── helm-deploy.yml  # Deployment workflow
        ├── helm-test.yml    # Helm chart testing workflow
        ├── pr-automation.yml # PR automation workflow with branch deletion on merge
        ├── helm-argocd-test.yml # ArgoCD configuration testing workflow
        └── argocd-integration.yml # ArgoCD integration workflow

Prerequisites

The project uses several tools that will be automatically checked and installed as needed. To begin:

make init

This command will: 1. Detect your operating system (macOS, Linux, or Windows) 2. Install Bun (JavaScript/TypeScript runtime) if not present 3. Check for and help you install other required tools: - Git (Version control) - Docker (Container runtime) - Kubectl (Kubernetes CLI) - k3d (Local Kubernetes) - Helm (Kubernetes package manager)

The initialization process is platform-aware and will provide appropriate installation instructions for your system.

For macOS users with Homebrew, you can install all required tools with:

brew install git docker kubectl k3d helm

You'll also need: - Kubernetes cluster - Argo CD installed - GitHub Container Registry access

Release Strategy

This project follows a streamlined release strategy with feature/fix branches that merge directly into the main branch:

1. Development Workflow:
2. Create feature/fix branches from main (feat/* or fix/*)
3. Push changes to GitHub to automatically create a PR
4. PR triggers tests and validation workflows

5. After review and approval, merge to main

6. Deployment Process:

7. Main branch changes trigger deployment to staging
8. After validation in staging, promote to production

9. ArgoCD manages the deployment process

10. Environments:

11. Staging: Pre-production environment for validation
12. Production: Live environment

Environment Overview

Development

• Branch: main
• Values: config/helm/values.yaml
• Features:
• Debug mode enabled
• Minimal resources
• Local development optimized

Staging

• Branch: stg
• Values: config/helm/staging.yaml
• Features:
• Debugging enabled
• Moderate resource limits
• Automated deployments
• Single replica per service

Production

• Branch: main
• Values: config/helm/production.yaml
• Features:
• Debugging disabled
• High resource limits
• Multiple replicas
• Autoscaling enabled
• Enhanced security
• TLS enabled

Deployment Methods

Using Scripts

The repository includes several utility scripts to manage deployments:

# Deploy to development environment
./scripts/deploy-dev.sh

# Deploy to production environment
./scripts/deploy-prod.sh

# Clean up environments
./scripts/cleanup.sh dev    # Clean development environment
./scripts/cleanup.sh prod   # Clean production environment
./scripts/cleanup.sh all    # Clean all environments

Using Docker (Platform-Agnostic Setup)

For a consistent setup experience across different platforms (Linux, macOS, Windows), you can use the Docker-based setup:

# Set up a local k3d cluster using Docker
make setup-k3d-docker

This method uses a Docker container that includes all the necessary tools (k3d, kubectl, Helm) and runs the setup script inside the container. This approach ensures that the setup process is consistent regardless of the host operating system.

Requirements: - Docker - Docker Compose

The Docker-based setup automatically: 1. Builds a container with all required tools 2. Sets up a local k3d cluster 3. Installs ArgoCD 4. Configures the necessary components

Using GitHub Actions

The project uses GitHub Actions for CI/CD with the following workflows:

1. PR Automation (pr-automation.yml)
2. Triggers on pushes to feature/ and fix/ branches
3. Automatically creates a PR if one doesn't exist
4. Adds appropriate labels and descriptions

5. Deletes branches automatically after PR is merged

6. ArgoCD Configuration Tests (helm-argocd-test.yml)

7. Triggers on PR creation and updates affecting ArgoCD configurations
8. Validates ArgoCD application manifests
9. Prepares deployment manifests for testing

10. Focuses specifically on ArgoCD-related configurations

11. Helm Chart Test (helm-test.yml)

12. Triggers on pull requests and pushes to main
13. Validates Helm charts across all environments
14. Runs comprehensive chart-testing

15. Tests chart installation in a Kind cluster

16. Helm Chart Deploy (helm-deploy.yml)

17. Deploys to development, staging, and production environments
18. Supports manual triggering with environment selection
19. Includes validation and verification steps

20. Manages environment-specific configurations

21. ArgoCD Integration (argocd-integration.yml)

22. Manually triggered workflow for ArgoCD integration
23. Configures ArgoCD applications for different environments
24. Manages deployment synchronization
25. Provides deployment status and URLs

Deployment Process

1. Images are built and pushed to GitHub Container Registry (ghcr.io/datascientest-fastapi-project-group-25)
2. CI pipeline updates image tags in the appropriate values file
3. Argo CD detects changes and syncs the application

Initial Setup

1. Install Argo CD:

   kubectl create namespace argocd
   kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/stable/manifests/install.yaml
   

2. Configure GitHub Container Registry credentials:

   kubectl create secret docker-registry ghcr-secret \
     --docker-server=ghcr.io \
     --docker-username=<github-username> \
     --docker-password=<github-pat> \
     --namespace=fastapi-helm
   

3. Set up ArgoCD API key for CI/CD integration and store it as a GitHub secret:

   # Run the setup script to configure ArgoCD, generate an API key, and store it as a GitHub secret
   ./scripts/setup-argocd-github.sh
   

4. Apply Argo CD applications:

   # For staging
   kubectl apply -f config/argocd/staging.yaml
   
   # For production
   kubectl apply -f config/argocd/production.yaml
   

ArgoCD Integration

The repository includes scripts and workflows for ArgoCD integration:

1. Manual Setup:
2. Use ./scripts/setup-argocd-github.sh to install and configure ArgoCD
3. Generate an API key for CI/CD integration

4. Automatically store the API key and server URL as GitHub secrets (ARGOCD_AUTH_TOKEN and ARGOCD_SERVER)

5. CI/CD Integration:

6. The argocd-integration.yml workflow configures ArgoCD applications
7. Main branch changes trigger deployment to staging

8. After validation, changes can be promoted to production

9. PR Testing:

10. When a PR is created, the helm-argocd-test.yml workflow validates Helm charts and ArgoCD configurations
11. The workflow prepares deployment manifests for testing
12. These manifests can be used for manual testing or review

Configuration

Image Tags

• Development: dev-latest or dev-[commit-sha]
• Staging: staging-latest or staging-[commit-sha]
• Production: production-latest or production-[commit-sha]

Resource Configurations

Development

resources:
  limits:
    cpu: 200m
    memory: 256Mi
  requests:
    cpu: 100m
    memory: 128Mi

Staging

resources:
  limits:
    cpu: 500m
    memory: 512Mi
  requests:
    cpu: 200m
    memory: 256Mi

Production

resources:
  limits:
    cpu: 1000m
    memory: 1024Mi
  requests:
    cpu: 500m
    memory: 512Mi

Security Considerations

• All secrets should be managed through AWS Secrets Manager
• Debug mode is disabled in production
• Network policies restrict pod communication
• TLS is enabled for production ingress
• Pods run as non-root users
• Resource limits are enforced
• HPA ensures proper scaling

Monitoring

• Kubernetes metrics
• Application health checks
• Resource utilization
• Autoscaling behavior
• Deployment status through Argo CD UI

Contributing

1. Create a new branch from the target environment branch
2. Make changes to the appropriate values file
3. Create a pull request
4. After review and approval, changes will be deployed automatically

Support

For issues or questions, please contact DataScientest Group 25: - GitHub: datascientest-fastapi-project-group-25