Merge pull request #3790 from Northeastern-Electric-Racing/infrastructure

Infrastructure

Author: chpy04

.dockerignore

@@ -1,6 +1,90 @@
+# Dependencies
 **/node_modules
+.yarn/
+.pnp.*
+
+# Build outputs
 **/dist
+**/build
+
+# Tests
 **/tests
 **/*.test.ts
-.vscode
+**/*.test.js
+**/*.spec.ts
+**/*.spec.js
+system-tests/
+coverage/
+__tests__/
+
+# AWS & Infrastructure
+infrastructure/
+.elasticbeanstalk/
+.ebextensions/
+Dockerrun.aws.json
+*.tf
+*.tfvars
+*.tfstate
+*.tfstate.*
+ECR_DEPLOYMENT.md
+TERRAFORM_CHANGES.md
+
+# Git
+.git/
+.gitignore
+.gitattributes
+.github/
+
+# IDE
+.vscode/
+.idea/
+*.swp
+*.swo
+*~
+.DS_Store
+
+# Documentation
+README.md
+*.md
+LICENSE
+
+# Environment files
+.env
+.env.*
+*.env
+
+# Logs
+*.log
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+
+# Lock files (keep package.json though)
+package-lock.json
 yarn.lock
+.yarnrc.yml
+
+# Prettier
+.prettierrc*
+.prettierignore
+
+# TypeScript config (keep for build)
+# tsconfig.json - commented out, may need this
+
+# Docker files
+.dockerignore
+docker-compose*.yml
+docker-compose*.yaml
+Dockerfile.*
+
+# Temporary files
+tmp/
+temp/
+*.tmp
+*.bak
+*.backup
+
+# Containerization helpers
+containerization/
+devContainerization/
+scripts/

.ebextensions/01_healthcheck.config

@@ -0,0 +1,16 @@
+option_settings:
+  # Relax health check settings for debugging
+  aws:elasticbeanstalk:environment:process:default:
+    HealthCheckInterval: 30
+    HealthCheckTimeout: 10
+    HealthyThresholdCount: 2
+    UnhealthyThresholdCount: 10
+    
+  # Ignore health check failures during deployment
+  aws:elasticbeanstalk:command:
+    IgnoreHealthCheck: true
+    Timeout: 900
+    
+  # Enhanced health reporting settings
+  aws:elasticbeanstalk:healthreporting:system:
+    HealthCheckSuccessThreshold: Ok

.ebextensions/02_cloudwatch_agent.config

@@ -0,0 +1,63 @@
+files:
+  "/opt/aws/amazon-cloudwatch-agent/etc/amazon-cloudwatch-agent.json":
+    mode: "000644"
+    owner: root
+    group: root
+    content: |
+      {
+        "agent": {
+          "metrics_collection_interval": 60,
+          "run_as_user": "root"
+        },
+        "metrics": {
+          "namespace": "CWAgent",
+          "metrics_collected": {
+            "mem": {
+              "measurement": [
+                {
+                  "name": "mem_used_percent",
+                  "rename": "MemoryUtilization",
+                  "unit": "Percent"
+                }
+              ],
+              "metrics_collection_interval": 60
+            },
+            "disk": {
+              "measurement": [
+                {
+                  "name": "used_percent",
+                  "rename": "DiskUtilization",
+                  "unit": "Percent"
+                }
+              ],
+              "metrics_collection_interval": 60,
+              "resources": [
+                "*"
+              ]
+            }
+          },
+          "append_dimensions": {
+            "AutoScalingGroupName": "${aws:AutoScalingGroupName}",
+            "InstanceId": "${aws:InstanceId}"
+          }
+        }
+      }
+
+commands:
+  01_install_cloudwatch_agent:
+    command: |
+      if ! command -v amazon-cloudwatch-agent-ctl &> /dev/null; then
+        wget -q https://s3.amazonaws.com/amazoncloudwatch-agent/amazon_linux/amd64/latest/amazon-cloudwatch-agent.rpm
+        rpm -U ./amazon-cloudwatch-agent.rpm
+        rm -f ./amazon-cloudwatch-agent.rpm
+      fi
+    test: "[ ! -f /opt/aws/amazon-cloudwatch-agent/bin/amazon-cloudwatch-agent-ctl ]"
+
+  02_stop_cloudwatch_agent:
+    command: |
+      /opt/aws/amazon-cloudwatch-agent/bin/amazon-cloudwatch-agent-ctl \
+        -a fetch-config \
+        -m ec2 \
+        -c file:/opt/aws/amazon-cloudwatch-agent/etc/amazon-cloudwatch-agent.json \
+        -s
+    ignoreErrors: true

.ebignore

@@ -0,0 +1,108 @@
+# Dockerfiles (use pre-built images from ECR)
+Dockerfile
+Dockerfile.*
+
+# Docker Compose
+docker-compose*.yml
+docker-compose*.yaml
+
+# Terraform
+infrastructure/
+*.tf
+*.tfvars
+*.tfstate
+*.tfstate.*
+
+# Containerization helpers
+containerization/
+devContainerization/
+
+# Git
+.git/
+.gitignore
+.gitattributes
+
+# Documentation
+README.md
+*.md
+CHANGELOG.md
+LICENSE
+TERRAFORM_CHANGES.md
+ECR_DEPLOYMENT.md
+
+# IDE and Editor
+.vscode/
+.idea/
+*.swp
+*.swo
+*~
+.DS_Store
+
+# Node
+node_modules/
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+.yarn/
+.pnp.*
+
+# Build artifacts
+dist/
+build/
+*.log
+
+# Tests
+__tests__/
+*.test.js
+*.test.ts
+*.spec.js
+*.spec.ts
+test/
+tests/
+system-tests/
+coverage/
+
+# CI/CD
+.github/
+
+# Environment files (secrets should be in Terraform)
+.env
+.env.*
+*.env
+
+# Elastic Beanstalk files that shouldn't be re-deployed
+.elasticbeanstalk/*
+!.elasticbeanstalk/*.cfg.yml
+!.elasticbeanstalk/*.global.yml
+
+# Source code (we deploy pre-built containers)
+src/
+
+# Package manager files
+package-lock.json
+yarn.lock
+.yarnrc.yml
+
+# TypeScript
+tsconfig.json
+tsconfig.*.json
+
+# Prettier
+.prettierrc*
+.prettierignore
+
+# Backup files
+*.bak
+*.backup
+*.old
+
+# Temporary files
+tmp/
+temp/
+*.tmp
+
+# Scripts
+scripts/
+
+# eb-deploy directory (if it exists)
+eb-deploy/

.github/workflows/deploy-prod.yml

@@ -0,0 +1,102 @@
+name: Deploy to Production
+
+on:
+  push:
+    branches:
+      - multitenancy
+
+jobs:
+  deploy:
+    runs-on: ubuntu-latest
+    timeout-minutes: 30
+    
+    steps:
+      - name: Checkout source code
+        uses: actions/checkout@v3
+
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v1
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: us-east-1
+
+      - name: Login to Amazon ECR
+        id: login-ecr
+        uses: aws-actions/amazon-ecr-login@v1
+
+      - name: Set up Docker Buildx (for multi-platform builds)
+        uses: docker/setup-buildx-action@v2
+
+      - name: Build, tag, and push image to Amazon ECR
+        env:
+          ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}
+          ECR_REPOSITORY: finishline-production
+          IMAGE_TAG: ${{ github.sha }}
+        run: |
+          echo "Building Docker image for AMD64 architecture..."
+          
+          # Build for AMD64 architecture (t3.small instances are AMD64)
+          docker buildx build \
+            --platform linux/amd64 \
+            --tag $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG \
+            --tag $ECR_REGISTRY/$ECR_REPOSITORY:latest \
+            --push \
+            .
+          
+          echo "✅ Image pushed successfully"
+          echo "Image: $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG"
+
+      - name: Update Dockerrun.aws.json
+        env:
+          ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}
+          ECR_REPOSITORY: finishline-production
+          IMAGE_TAG: ${{ github.sha }}
+        run: |
+          # Create a deployment-specific Dockerrun.aws.json with the commit SHA
+          cat > Dockerrun.aws.json <<EOF
+          {
+            "AWSEBDockerrunVersion": "1",
+            "Image": {
+              "Name": "$ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG",
+              "Update": "true"
+            },
+            "Ports": [
+              {
+                "ContainerPort": 3001,
+                "HostPort": 3001
+              }
+            ]
+          }
+          EOF
+          
+          echo "✅ Dockerrun.aws.json updated with image tag: $IMAGE_TAG"
+
+      - name: Create deployment package
+        run: |
+          # Include .ebextensions for health check configuration
+          zip -r deploy.zip Dockerrun.aws.json .ebextensions/ .ebignore
+          
+          echo "✅ Deployment package created"
+
+      - name: Deploy to Elastic Beanstalk
+        uses: einaregilsson/beanstalk-deploy@v21
+        with:
+          aws_access_key: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws_secret_key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          application_name: finishline-production
+          environment_name: finishline-production-env
+          version_label: ${{ github.sha }}
+          region: us-east-1
+          deployment_package: deploy.zip
+          wait_for_deployment: true
+          wait_for_environment_recovery: 300
+
+      - name: Verify deployment
+        run: |
+          echo "🎉 Deployment completed successfully!"
+          echo ""
+          echo "Deployment Details:"
+          echo "  Image: ${{ steps.login-ecr.outputs.registry }}/finishline-production:${{ github.sha }}"
+          echo "  Version: ${{ github.sha }}"
+          echo "  Environment: finishline-production-env"