romusters-code
diff --git a/‎.gitignore‎
Lines changed: 1 addition & 1 deletion b/‎.gitignore‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎infra/README.md‎
Lines changed: 14 additions & 36 deletions b/‎infra/README.md‎
Lines changed: 14 additions & 36 deletions
diff --git a/‎infra/azure/README.md‎
Lines changed: 50 additions & 0 deletions b/‎infra/azure/README.md‎
Lines changed: 50 additions & 0 deletions
diff --git a/‎infra/containers.tf‎ ‎infra/azure/containers.tf‎infra/containers.tf renamed to infra/azure/containers.tf b/‎infra/containers.tf‎ ‎infra/azure/containers.tf‎infra/containers.tf renamed to infra/azure/containers.tf
diff --git a/‎infra/functions.tf‎ ‎infra/azure/functions.tf‎infra/functions.tf renamed to infra/azure/functions.tf b/‎infra/functions.tf‎ ‎infra/azure/functions.tf‎infra/functions.tf renamed to infra/azure/functions.tf
diff --git a/‎infra/main.tf‎ ‎infra/azure/main.tf‎infra/main.tf renamed to infra/azure/main.tf b/‎infra/main.tf‎ ‎infra/azure/main.tf‎infra/main.tf renamed to infra/azure/main.tf
diff --git a/‎infra/storage.tf‎ ‎infra/azure/storage.tf‎infra/storage.tf renamed to infra/azure/storage.tf b/‎infra/storage.tf‎ ‎infra/azure/storage.tf‎infra/storage.tf renamed to infra/azure/storage.tf
diff --git a/‎infra/gcp/main.tf‎
Lines changed: 103 additions & 0 deletions b/‎infra/gcp/main.tf‎
Lines changed: 103 additions & 0 deletions
@@ -1,6 +1,6 @@
 poetry.lock
 ~
-
+.terraform
 # Byte-compiled / optimized / DLL files
 __pycache__/
 *.py[cod]
 
@@ -1,50 +1,28 @@
-# Introduction
+# Google
 
-Terraform is infrastructure as code tool. The infrastructure we are making here contains a Docker registry and a Function app amongst other resources.
-The Function App uses a Docker container which needs to be available first, so we build and push it in the next section. We might also choose to create a DevOps pipeline to do this for us.
-Build and push Docker container so that it can be used in function app.
+To deploy the infra on Google, first authenticate:
 
-## How to run
+`gcloud auth application-default login`
 
-### Docker
+Set the project id:
 
-Build: 
+`gcloud config set project <project_id>`
 
-`docker build -f Dockerfile -t embedding_service:latest . `
+Enable gcloud service 'artifactregistry.googleapis.com':
 
+`gcloud services enable artifactregistry.googleapis.com`
 
-Login: 
+`terraform init`
 
-`az acr login --name EmbeddingContainerRegistry `
+`terraform plan`
 
-Tag: 
-
-`docker tag embedding_service:latest embeddingcontainerregistry.azurecr.io/embedding_service:latest`
-
-Push: 
-
-`docker push embeddingcontainerregistry.azurecr.io/embedding_service:latest`
-
-### Terraform
-
-Login:
-
-`az login`
-
-Navigate to the infra folder:
-
-`cd infra`
-
-Init:
-
-`terraform init` 
-
-Plan:
+`terraform apply`
 
-`terraform plan` 
+## Push Docker container
 
 
-Apply:
+`gcloud auth configure-docker europe-west4-docker.pkg.dev`
 
-`terraform apply`
+## Github Actions
 
+The infrastructure can also be deployed using Github Actions
@@ -0,0 +1,50 @@
+# Introduction
+
+Terraform is infrastructure as code tool. The infrastructure we are making here contains a Docker registry and a Function app amongst other resources.
+The Function App uses a Docker container which needs to be available first, so we build and push it in the next section. We might also choose to create a DevOps pipeline to do this for us.
+Build and push Docker container so that it can be used in function app.
+
+## How to run
+
+### Docker
+
+Build: 
+
+`docker build -f Dockerfile -t embedding_service:latest . `
+
+
+Login: 
+
+`az acr login --name EmbeddingContainerRegistry `
+
+Tag: 
+
+`docker tag embedding_service:latest embeddingcontainerregistry.azurecr.io/embedding_service:latest`
+
+Push: 
+
+`docker push embeddingcontainerregistry.azurecr.io/embedding_service:latest`
+
+### Terraform
+
+Login:
+
+`az login`
+
+Navigate to the infra folder:
+
+`cd infra`
+
+Init:
+
+`terraform init` 
+
+Plan:
+
+`terraform plan` 
+
+
+Apply:
+
+`terraform apply`
+
@@ -0,0 +1,103 @@
+variable "project_id" {
+  description = "project id"
+  type        = string
+  default     = "fastapi-449213"
+}
+
+variable "project" {
+  description = "project"
+  type        = string
+  default     = "fastapi"
+}
+
+
+variable "region" {
+  description = "The GCP region"
+  type        = string
+  default     = "europe-west4"
+}
+
+
+provider "google" {
+  project = var.project_id
+  region  = var.region
+}
+
+
+# Enable necessary APIs
+resource "google_project_service" "container_registry" {
+  for_each = toset([
+    "container.googleapis.com",
+    "run.googleapis.com",
+    "artifactregistry.googleapis.com"
+  ])
+  project = var.project_id
+  service = each.key
+}
+
+resource "google_project_service" "artifact_registry_api" {
+  service = "artifactregistry.googleapis.com"
+  project = var.project_id
+}
+
+# Container Registry: Images are stored in Artifact Registry
+resource "google_artifact_registry_repository" "container_registry" {
+  repository_id = "fastapi-docker-repo"
+  format        = "DOCKER"
+  location      = var.region
+  description   = "Docker repository for FastAPI images"
+}
+
+# IAM Binding for Artifact Registry
+resource "google_artifact_registry_repository_iam_binding" "artifact_registry_binding" {
+  repository = google_artifact_registry_repository.container_registry.name
+  role       = "roles/artifactregistry.writer"
+  members    = ["serviceAccount:${google_service_account.cloud_run_service_account.email}"]
+}
+
+# Service Account for Cloud Run
+resource "google_service_account" "cloud_run_service_account" {
+  account_id   = "cloud-run-service-account"
+  display_name = "Cloud Run Service Account"
+}
+
+# Grant necessary roles to the Service Account
+resource "google_project_iam_binding" "cloud_run_iam" {
+  project = var.project_id
+  role    = "roles/run.admin"
+  members = ["serviceAccount:${google_service_account.cloud_run_service_account.email}"]
+}
+
+# Deploy FastAPI Docker app to Cloud Run
+resource "google_cloud_run_service" "fastapi_service" {
+  name     = "fastapi-service"
+  location = var.region
+
+  template {
+    spec {
+      containers {
+        image = "${google_artifact_registry_repository.container_registry.location}-docker.pkg.dev/${var.project_id}/${google_artifact_registry_repository.container_registry.name}/fastapi:latest"
+        resources {
+          limits = {
+            memory = "512Mi"
+            cpu    = "1"
+          }
+        }
+      }
+      service_account_name = google_service_account.cloud_run_service_account.email
+    }
+  }
+
+  traffic {
+    percent         = 100
+    latest_revision = true
+  }
+}
+
+# Grant permissions to Cloud Run Invoker
+resource "google_cloud_run_service_iam_binding" "invoker_permission" {
+  service = google_cloud_run_service.fastapi_service.name
+  location = var.region
+  role    = "roles/run.invoker"
+  members = ["allUsers"] # Allows public access; modify as needed
+}
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`poetry.lock`
`2`	`2`	`~`
`3`		`-`
	`3`	`+.terraform`
`4`	`4`	`# Byte-compiled / optimized / DLL files`
`5`	`5`	`__pycache__/`
`6`	`6`	`*.py[cod]`