CAPT-1703 Migrate production environment to AKS

.github/workflows/build_and_deploy.yml

@@ -136,3 +136,59 @@ jobs:
           SLACK_TITLE: Failure deploying release to test
           SLACK_MESSAGE: Failure deploying release to test - Docker tag ${{ needs.build.outputs.docker-image-tag }}
           SLACK_WEBHOOK: ${{ secrets.SLACK_WEBHOOK_URL }}
+
+  deploy_production:
+    name: Deploy to production environment
+    concurrency: deploy_production
+    runs-on: ubuntu-latest
+    if: github.ref == 'refs/heads/master' && github.event_name == 'push'
+    needs: [build]
+    environment:
+      name: production-aks
+      url: ${{ steps.deploy.outputs.environment_url }}
+    outputs:
+      environment_url: ${{ steps.deploy.outputs.environment_url }}
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - uses: azure/login@v2
+        with:
+          creds: ${{ secrets.AZURE_CREDENTIALS }}
+
+      - uses: ./.github/actions/deploy-environment
+        id: deploy
+        with:
+          environment: production-aks
+          docker-image: ${{ needs.build.outputs.docker-image-tag }}
+          azure-credentials: ${{ secrets.AZURE_CREDENTIALS }}
+
+      - name: Run migrations
+        shell: bash
+        run: |
+          make ci production-aks get-cluster-credentials
+          kubectl exec -n srtl-production deployment/claim-additional-payments-for-teaching-production-worker -- sh -c "DISABLE_DATABASE_ENVIRONMENT_CHECK=1 bin/prepare-database"
+
+      - name: Install Ruby
+        uses: ruby/setup-ruby@v1
+        with:
+          bundler-cache: true
+
+      - name: Run smoke tests
+        shell: bash
+        run: bundle exec rspec spec/smoke -t smoke:true -b
+        env:
+          RAILS_ENV: test
+          SMOKE_TEST_APP_HOST: ${{ env.APP_URL }}
+          BASIC_AUTH_USERNAME: ${{ secrets.BASIC_AUTH_USERNAME }}
+          BASIC_AUTH_PASSWORD: ${{ secrets.BASIC_AUTH_PASSWORD }}
+
+      - name: Notify on failure
+        if: failure()
+        uses: rtCamp/action-slack-notify@master
+        env:
+          SLACK_COLOR: failure
+          SLACK_TITLE: Failure deploying release to production
+          SLACK_MESSAGE: Failure deploying release to production - Docker tag ${{ needs.build.outputs.docker-image-tag }}
+          SLACK_WEBHOOK: ${{ secrets.SLACK_WEBHOOK_URL }}

terraform/application/application.tf

@@ -58,4 +58,6 @@ module "worker_application" {
 
   docker_image = var.docker_image
   command      = var.worker_command
+
+  replicas     = var.worker_replicas
 }

terraform/application/config/production.tfvars.json

@@ -0,0 +1,11 @@
+{
+  "cluster": "production",
+  "namespace": "srtl-production",
+  "config": "production",
+  "environment": "production",
+  "canonical_hostname": "claim-additional-teaching-payment.service.gov.uk",
+  "web_replicas": 2,
+  "worker_replicas": 2,
+  "startup_command": ["/bin/sh", "-c", "bin/rails server -b 0.0.0.0"],
+  "worker_command": ["/bin/sh", "-c", "bin/bundle exec bin/delayed_job run -n 1"]
+}

terraform/application/config/production_Terrafile

@@ -0,0 +1,3 @@
+aks:
+    source:  "https://github.com/DFE-Digital/terraform-modules"
+    version: "stable"

terraform/application/config/production_app_env.yml

@@ -0,0 +1 @@
+---

terraform/application/config/review.tfvars.json

@@ -5,5 +5,5 @@
   "deploy_azure_backing_services": false,
   "enable_postgres_ssl": false,
   "startup_command": ["/bin/sh", "-c", "bin/rails server -b 0.0.0.0"],
-  "worker_command": ["/bin/sh", "-c", "bin/bundle exec bin/delayed_job run -n 4"]
+  "worker_command": ["/bin/sh", "-c", "bin/bundle exec bin/delayed_job run -n 1"]
 }

terraform/application/variables.tf

@@ -65,6 +65,11 @@ variable "web_replicas" {
   default = 1
 }
 
+variable "worker_replicas" {
+  description = "Number of replicas of the worker"
+  default     = 1
+}
+
 locals {
   postgres_ssl_mode = var.enable_postgres_ssl ? "require" : "disable"
   canonical_hostname = var.canonical_hostname != null ? var.canonical_hostname : "${var.service_name}-${var.environment}-web.test.teacherservices.cloud"