feat: deploy application on ecs

Author: nikhilleo10

README.md

@@ -1,4 +1,4 @@
-## Initialize local environment
+<!-- ## Initialize local environment
 ```
 ./scripts/initialize-env.sh
 ```
@@ -16,4 +16,63 @@ alembic revision -m 'initialize all models'
 ## Upgrade migrations
 ```
 alembic upgrade head
-``` 
+``` 
+
+## Deploy service on AWS ECS
+```
+./scripts/setup-ecs.sh develop
+```
+The `setup-ecs.sh` script deploys the fastapi application on AWS ECS, this script internally uses AWS Copilot to deploy the service. The script requires one argument to successfully deploy the service, the argument that we pass is the environment name, the script creates and deploys an environment and deploys the service on that environment.  -->
+
+# FastAPI Template
+
+This repository provides a template for creating and deploying a FastAPI project. Follow the steps below to set up the local environment, run the project, manage database migrations, and deploy the service on AWS ECS.
+
+## Getting Started
+
+### 1. Initialize Local Environment
+
+To set up your local environment, run the following script:
+
+```
+./scripts/initialize-env.sh
+```
+
+This script installs the necessary dependencies and prepares the environment for running the FastAPI application on your local machine.
+
+### 2. Run the Project
+Start the project locally with the following command:
+
+```
+./scripts/local_server.sh
+```
+
+This script upgrades the database migrations using Alembic and starts the FastAPI server using Uvicorn. The server is hosted on 0.0.0.0 and port 8000, making it accessible locally.
+
+### 3. Database Migrations
+Create new database migrations when you make changes to your models. Use the following command:
+```
+alembic revision -m 'brief description of changes'
+```
+
+This command initializes a new migration script based on the changes made to your models. Provide a brief description of the changes in the migration message.
+
+Apply the database migrations with the following command:
+```
+alembic upgrade head
+```
+This command updates the database schema to reflect the latest changes defined in the migration scripts
+
+### 4. Deploy Service on AWS ECS
+To deploy the FastAPI application on AWS ECS, use the following script:
+
+```
+./scripts/setup-ecs.sh develop
+```
+The setup-ecs.sh script leverages AWS Copilot to deploy the service. Provide the environment name as an argument (e.g., develop). The script creates and deploys an environment, then deploys the FastAPI service on that environment.
+
+Note: Ensure you have AWS credentials configured and AWS Copilot installed for successful deployment.
+
+#### New to AWS Copilot?
+If you are new to AWS Copilot or you want to learn more about AWS Copilot, please refer to [this helpful article](https://www.wednesday.is/writing-tutorials/how-to-use-copilot-to-deploy-projects-on-ecs) that guides you through the process of setting up AWS Copilot locally as well as also helps you understand how you can publish and update an application using 4 simple steps.
+

alembic/env.py

@@ -12,12 +12,24 @@
 
 print("==" * 50, "\n\n\n", "OS ENVIRONMENT", os.environ, "\n\n\n", "==" * 50)
 
-print("Connecting local server..\n")
-HOST = os.environ["DB_HOSTNAME"]
-PORT = os.environ["DB_PORT"]
-DBNAME = os.environ["DB_NAME"]
-USERNAME = os.environ["DB_USERNAME"]
-PASSWORD = os.environ["DB_PASSWORD"]
+if "PYTHON_FASTAPI_TEMPLATE_CLUSTER_SECRET" in os.environ:
+    print("Connecting to database on RDS..\n")
+    dbSecretJSON = os.environ["PYTHON_FASTAPI_TEMPLATE_CLUSTER_SECRET"]
+    dbSecretParsed = json.loads(dbSecretJSON)
+
+    HOST = dbSecretParsed["host"]
+    PORT = dbSecretParsed["port"]
+    DBNAME = dbSecretParsed["dbname"]
+    USERNAME = dbSecretParsed["username"]
+    PASSWORD = dbSecretParsed["password"]
+
+else:
+    print("Connecting local database..\n")
+    HOST = os.environ["DB_HOSTNAME"]
+    PORT = os.environ["DB_PORT"]
+    DBNAME = os.environ["DB_NAME"]
+    USERNAME = os.environ["DB_USERNAME"]
+    PASSWORD = os.environ["DB_PASSWORD"]
 
 # this is the Alembic Config object, which provides
 # access to the values within the .ini file in use.

config/db.py

@@ -1,3 +1,4 @@
+import json
 import os
 import sys
 
@@ -27,8 +28,21 @@
         poolclass=StaticPool,
     )
 
+elif "PYTHON_FASTAPI_TEMPLATE_CLUSTER_SECRET" in os.environ:
+    print("Connecting to database on RDS..\n")
+    dbSecretJSON = os.environ["PYTHON_FASTAPI_TEMPLATE_CLUSTER_SECRET"]
+    dbSecretParsed = json.loads(dbSecretJSON)
+
+    HOST = dbSecretParsed["host"]
+    PORT = dbSecretParsed["port"]
+    DBNAME = dbSecretParsed["dbname"]
+    USERNAME = dbSecretParsed["username"]
+    PASSWORD = dbSecretParsed["password"]
+
+    engine = create_engine(f"mysql+pymysql://{USERNAME}:{PASSWORD}@{HOST}/{DBNAME}")
+
 else:
-    print("Connecting local server..\n")
+    print("Connecting local database..\n")
     HOST = os.environ["DB_HOSTNAME"]
     PORT = os.environ["DB_PORT"]
     DBNAME = os.environ["DB_NAME"]

copilot/.workspace

@@ -0,0 +1 @@
+application: python-fastapi-template

copilot/environments/addons/mysql_rds_template.yml

@@ -0,0 +1,129 @@
+Parameters:
+  App:
+    Type: String
+    Description: Your application's name.
+  Env:
+    Type: String
+    Description: The environment name your service, job, or workflow is being deployed to.
+  Name:
+    Type: String
+    Description: The name of the service, job, or workflow being deployed.
+    Default: python_fastapi_template
+  # Customize your Aurora Serverless cluster by setting the default value of the following parameters.
+  pythonFastApiTemplateclusterDBName:
+    Type: String
+    Description: The name of the initial database to be created in the DB cluster.
+    Default: python_fastapi_template_db
+    # Cannot have special characters
+    # Naming constraints: https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/CHAP_Limits.html#RDS_Limits.Constraints
+  pythonFastApiTemplateclusterDBAutoPauseSeconds:
+    Type: Number
+    Description: The duration in seconds before the cluster pauses.
+    Default: 1000
+Mappings:
+  pythonFastApiTemplateclusterEnvScalingConfigurationMap:
+    prod:
+      "DBMinCapacity": 1 # AllowedValues: [1, 2, 4, 8, 16, 32, 64, 128, 256]
+      "DBMaxCapacity": 8 # AllowedValues: [1, 2, 4, 8, 16, 32, 64, 128, 256]
+    All:
+      "DBMinCapacity": 1 # AllowedValues: [1, 2, 4, 8, 16, 32, 64, 128, 256]
+      "DBMaxCapacity": 8 # AllowedValues: [1, 2, 4, 8, 16, 32, 64, 128, 256]
+
+Resources:
+  pythonFastApiTemplateclusterDBSubnetGroup:
+    Type: 'AWS::RDS::DBSubnetGroup'
+    Properties:
+      DBSubnetGroupDescription: Group of Copilot private subnets for Aurora cluster.
+      SubnetIds:
+        !Split [',', { 'Fn::ImportValue': !Sub '${App}-${Env}-PrivateSubnets' }]
+  pythonFastApiTemplateclusterSecurityGroup:
+    Metadata:
+      'aws:copilot:description': 'A security group for your workload to access the DB cluster pythonFastApiTemplatecluster'
+    Type: 'AWS::EC2::SecurityGroup'
+    Properties:
+      GroupDescription: !Sub 'The Security Group for ${Name} to access DB cluster pythonFastApiTemplatecluster.'
+      VpcId:
+        Fn::ImportValue:
+          !Sub '${App}-${Env}-VpcId'
+      Tags:
+        - Key: Name
+          Value: !Sub 'copilot-${App}-${Env}-${Name}-Aurora'
+  pythonFastApiTemplateclusterDBClusterSecurityGroup:
+    Metadata:
+      'aws:copilot:description': 'A security group for your DB cluster pythonFastApiTemplatecluster'
+    Type: AWS::EC2::SecurityGroup
+    Properties:
+      GroupDescription: The Security Group for the database cluster.
+      SecurityGroupIngress:
+        - ToPort: 3306
+          FromPort: 3306
+          IpProtocol: tcp
+          SourceSecurityGroupId:
+            Fn::ImportValue:
+              !Sub '${App}-${Env}-EnvironmentSecurityGroup'
+          Description: Allow incoming connections from any IP address.
+      VpcId:
+        Fn::ImportValue:
+          !Sub '${App}-${Env}-VpcId'
+      Tags:
+        - Key: Name
+          Value: !Sub 'copilot-${App}-${Env}-${Name}-Aurora'
+  pythonFastApiTemplateclusterAuroraSecret:
+    Metadata:
+      'aws:copilot:description': 'A Secrets Manager secret to store your DB credentials'
+    Type: AWS::SecretsManager::Secret
+    Properties:
+      Description: !Sub Aurora main user secret for ${AWS::StackName}
+      GenerateSecretString:
+        SecretStringTemplate: '{"username": "admin"}'
+        GenerateStringKey: "password"
+        ExcludePunctuation: true
+        IncludeSpace: false
+        PasswordLength: 16
+  pythonFastApiTemplateclusterDBClusterParameterGroup:
+    Metadata:
+      'aws:copilot:description': 'A DB parameter group for engine configuration values'
+    Type: 'AWS::RDS::DBClusterParameterGroup'
+    Properties:
+      Description: !Ref 'AWS::StackName'
+      Family: 'aurora-mysql5.7'
+      Parameters:
+        character_set_client: 'utf8'
+  pythonFastApiTemplateclusterDBCluster:
+    Metadata:
+      'aws:copilot:description': 'The pythonFastApiTemplatecluster Aurora Serverless database cluster'
+    Type: 'AWS::RDS::DBCluster'
+    Properties:
+      MasterUsername:
+        !Join [ "",  [ '{{resolve:secretsmanager:', !Ref pythonFastApiTemplateclusterAuroraSecret, ":SecretString:username}}" ]]
+      MasterUserPassword:
+        !Join [ "",  [ '{{resolve:secretsmanager:', !Ref pythonFastApiTemplateclusterAuroraSecret, ":SecretString:password}}" ]]
+      DatabaseName: !Ref pythonFastApiTemplateclusterDBName
+      Engine: 'aurora-mysql'
+      EngineVersion: '5.7.mysql_aurora.2.07.1'
+      EngineMode: serverless
+      DBClusterParameterGroupName: !Ref pythonFastApiTemplateclusterDBClusterParameterGroup
+      DBSubnetGroupName: !Ref pythonFastApiTemplateclusterDBSubnetGroup
+      VpcSecurityGroupIds:
+        - !Ref pythonFastApiTemplateclusterDBClusterSecurityGroup
+      ScalingConfiguration:
+        AutoPause: true
+        # Replace "All" below with "!Ref Env" to set different autoscaling limits per environment.
+        MinCapacity: !FindInMap [pythonFastApiTemplateclusterEnvScalingConfigurationMap, All, DBMinCapacity]
+        MaxCapacity: !FindInMap [pythonFastApiTemplateclusterEnvScalingConfigurationMap, All, DBMaxCapacity]
+        SecondsUntilAutoPause: !Ref pythonFastApiTemplateclusterDBAutoPauseSeconds
+  pythonFastApiTemplateclusterSecretAuroraClusterAttachment:
+    Type: AWS::SecretsManager::SecretTargetAttachment
+    Properties:
+      SecretId: !Ref pythonFastApiTemplateclusterAuroraSecret
+      TargetId: !Ref pythonFastApiTemplateclusterDBCluster
+      TargetType: AWS::RDS::DBCluster
+Outputs:
+  pythonFastApiTemplateclusterSecret: # injected as pythonFastApiTemplateCLUSTER_SECRET environment variable by Copilot.
+    Description: "The JSON secret that holds the database username and password. Fields are 'host', 'port', 'dbname', 'username', 'password', 'dbClusterIdentifier' and 'engine'"
+    Value: !Ref pythonFastApiTemplateclusterAuroraSecret
+    Export:
+      Name: pythonFastApiTemplateclusterSecret
+  pythonFastApiTemplateclusterSecurityGroup:
+    Description: "The security group to attach to the workload."
+    Value: !Ref pythonFastApiTemplateclusterSecurityGroup

copilot/environments/develop/manifest.yml

@@ -0,0 +1,21 @@
+# The manifest for the "develop" environment.
+# Read the full specification for the "Environment" type at:
+#  https://aws.github.io/copilot-cli/docs/manifest/environment/
+
+# Your environment name will be used in naming your resources like VPC, cluster, etc.
+name: develop
+type: Environment
+
+# Import your own VPC and subnets or configure how they should be created.
+# network:
+#   vpc:
+#     id:
+
+# Configure the load balancers in your environment, once created.
+# http:
+#   public:
+#   private:
+
+# Configure observability for your environment resources.
+observability:
+  container_insights: false

copilot/python-fastapi-template-develop-svc/manifest.yml

@@ -0,0 +1,46 @@
+# The manifest for the "python-fastapi-template-develop-svc" service.
+# Read the full specification for the "Load Balanced Web Service" type at:
+#  https://aws.github.io/copilot-cli/docs/manifest/lb-web-service/
+
+# Your service name will be used in naming your resources like log groups, ECS services, etc.
+name: python-fastapi-template-develop-svc
+type: Load Balanced Web Service
+# Distribute traffic to your service.
+http:
+  # Requests to this path will be forwarded to your service.
+  # To match all requests you can use the "/" path.
+  path: '/'
+  # You can specify a custom health check path. The default is "/".
+  # healthcheck: '/'
+# Configuration for your containers and service.
+image:
+  # Docker build arguments. For additional overrides: https://aws.github.io/copilot-cli/docs/manifest/lb-web-service/#image-build
+  build: Dockerfile
+  # Port exposed through your container to route traffic to it.
+  port: 8000
+cpu: 256 # Number of CPU units for the task.
+memory: 512 # Amount of memory in MiB used by the task.
+count: 1 # Number of tasks that should be running in your service.
+exec: true # Enable running commands in your container.
+network:
+  connect: true # Enable Service Connect for intra-environment traffic between services.
+secrets:
+  PYTHON_FASTAPI_TEMPLATE_CLUSTER_SECRET:
+    from_cfn: pythonFastApiTemplateclusterSecret
+# storage:
+# readonly_fs: true       # Limit to read-only access to mounted root filesystems.
+
+# Optional fields for more advanced use-cases.
+#
+#variables:                    # Pass environment variables as key value pairs.
+#  LOG_LEVEL: info
+
+#secrets:                      # Pass secrets from AWS Systems Manager (SSM) Parameter Store.
+#  GITHUB_TOKEN: GITHUB_TOKEN  # The key is the name of the environment variable, the value is the name of the SSM parameter.
+
+# You can override any of the values defined above by environment.
+#environments:
+#  test:
+#    count: 2               # Number of tasks to run for the "test" environment.
+#    deployment:            # The deployment strategy for the "test" environment.
+#       rolling: 'recreate' # Stops existing tasks before new ones are started for faster deployments.