Create a docker image that can be used to deploy CIVIFORM to aws and …

…azure (#406)

Co-authored-by: dkatzz <[email protected]>

.github/workflows/push_deployment_env_image.yaml

@@ -0,0 +1,46 @@
+name: build_push_development_env_image
+
+on:
+  push:
+    branches:
+      - main
+  # Setting this enables manually triggering workflow in the GitHub UI
+  # see https://docs.github.com/en/actions/managing-workflow-runs/manually-running-a-workflow
+  workflow_dispatch: {}
+
+permissions: read-all
+
+# Build and push the deployment env image.
+jobs:
+  build_deployment_env:
+    runs-on: ubuntu-latest
+
+    concurrency:
+      group: build-${{ github.workflow }}-${{ github.ref }}
+      cancel-in-progress: true
+    name: Build deployment env
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+      - name: Login to Docker Hub
+        uses: docker/login-action@v3
+        with:
+          username: ${{ secrets.DOCKER_HUB_USERNAME }}
+          password: ${{ secrets.DOCKER_HUB_ACCESS_TOKEN }}
+      - id: file_changes
+        uses: tj-actions/changed-files@v45
+        with:
+          json: 'true'
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+      - name: Run build
+        id: build_and_push_deployment_env
+        env:
+          DOCKER_BUILDKIT: 1
+          PLATFORM: 'linux/amd64'
+          DOCKER_HUB_ACCESS_TOKEN: ${{ secrets.DOCKER_HUB_ACCESS_TOKEN }}
+          DOCKER_HUB_USERNAME: ${{ secrets.DOCKER_HUB_USERNAME }}
+        if: contains(toJSON(steps.file_changes.outputs.all_changed_files), 'cloud/aws/deployment/')
+        run: |
+          cd $GITHUB_WORKSPACE/cloud/aws/deployment
+          ./build-deployment

cloud/aws/deployment/build-deployment

@@ -0,0 +1,25 @@
+#! /usr/bin/env bash
+
+# Builds the deployment environment Docker image
+
+set -e
+set +x
+
+readonly SHORT_SHA="$(git rev-parse --short HEAD)"
+readonly DATE_IN_UNIX_SECONDS="$(date +%s)"
+readonly SNAPSHOT_TAG="SNAPSHOT-${SHORT_SHA}-${DATE_IN_UNIX_SECONDS}"
+readonly IMAGE="deployment-env"
+
+PLATFORM_ARG=()
+if [[ -n "${PLATFORM}" ]]; then
+  PLATFORM_ARG=(--platform "${PLATFORM}")
+fi
+readonly PLATFORM_ARG
+
+echo "start ${IMAGE} build"
+docker buildx create --use
+docker buildx build --push \
+  "${PLATFORM_ARG[@]}" \
+  -t "docker.io/civiform/${IMAGE}:latest" \
+  -t "docker.io/civiform/${IMAGE}:${SNAPSHOT_TAG}" \
+  -f development.Dockerfile .

cloud/aws/deployment/development.Dockerfile

@@ -0,0 +1,42 @@
+FROM mcr.microsoft.com/devcontainers/base:ubuntu
+
+RUN wget -O- https://apt.releases.hashicorp.com/gpg | gpg --dearmor | tee /usr/share/keyrings/hashicorp-archive-keyring.gpg
+RUN echo "deb [signed-by=/usr/share/keyrings/hashicorp-archive-keyring.gpg] https://apt.releases.hashicorp.com $(lsb_release -cs) main" | tee /etc/apt/sources.list.d/hashicorp.list
+
+# Install tool dependencies
+RUN apt-get update && apt-get install -y \
+    terraform \
+    python3-pip \
+    curl \
+    unzip \
+    python3.10-venv \
+    default-jre \
+    && rm -rf /var/lib/apt/lists/* \
+    && rm -rf /var/lib/apt/lists.d/* \
+    && apt-get autoremove \
+    && apt-get clean \
+    && apt-get autoclean
+
+# Install AWS CLI
+RUN	curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"
+RUN unzip awscliv2.zip && ./aws/install
+
+# Install Azure CLI
+RUN	curl -sL https://aka.ms/InstallAzureCLIDeb | bash
+
+# Install Docker-In-Docker
+# Following the guide found here:
+# https://github.com/microsoft/vscode-dev-containers/blob/main/script-library/docs/docker-in-docker.md
+COPY library-scripts/*.sh /tmp/library-scripts/
+ENV DOCKER_BUILDKIT=1
+RUN apt-get update && /bin/bash /tmp/library-scripts/docker-in-docker-debian.sh
+ENTRYPOINT ["/usr/local/share/docker-init.sh"]
+VOLUME [ "/var/lib/docker" ]
+
+# Start the a shell in the container, this image needs to be started with the following options
+# --init --privileged -it
+CMD ["bash"]
+
+# Alternatively we could make the image sleep forever and then the user can connect into the
+# running container.
+# CMD ["sleep", "infinity"]