Assignment 3 - Jake Tonani (Redo) by npcjake · Pull Request #41 · IntelliTect-Samples/EWU-CSCD396-2026-Spring

npcjake · 2026-05-22T17:47:53Z

Assignment 3 - Jake Tonani

Azure Resource Group

https://portal.azure.com/#@ewueagles.onmicrosoft.com/resource/subscriptions/d7dc33ae-d588-44a6-bda7-3e08dbd66d6f/resourceGroups/rg-assignment3/overview

GitHub Repo

https://github.com/npcjake/EWU-CSCD396-2026-Spring

Checklist

1. Azure Function Bound to Service Bus

Managed Identity enabled on the Function App (identity { type = "SystemAssigned" } in Terraform)
Storage Account created for messages (ewua3jake26msg)
Function App identity granted Storage Blob Data Contributor on the messages storage account
Function App identity granted Azure Service Bus Data Receiver on the Service Bus namespace
The function (Assignment3/function-app/src/functions/serviceBusHandler.js) triggers on the messages queue and writes each message as a JSON blob to the messages container

2. Container App Writes to Service Bus

System-assigned Managed Identity added to the Container App via Terraform
Container App identity granted Azure Service Bus Data Sender on the Service Bus namespace
The web app (Assignment3/container-app/server.js) has a text box and submit button that sends messages to the Service Bus queue using DefaultAzureCredential
Live URL: https://ca-assign3-jake.lemonisland-77590730.eastus.azurecontainerapps.io

3. CI/CD Workflow Triggering

Application code deployment (.github/workflows/app-deploy.yml):

Triggers on push to main when files change under Assignment3/container-app/** or Assignment3/function-app/**
Builds Docker image → pushes to ACR → updates Container App
Zips function code → deploys to Function App
Does NOT run when only Terraform files change

Infrastructure deployment (.github/workflows/terraform-deploy.yml):

Triggers on push to main when files change under Terraform/**
Runs terraform apply to update infrastructure
Does NOT deploy application code at the same time

Automatic app redeployment after Terraform:

After terraform apply completes, the deploy-apps job in terraform-deploy.yml calls app-deploy.yml via workflow_call
This ensures app code is always redeployed with any new infrastructure configuration

4. Access

jcurry9@ewu.edu has Contributor access at the subscription level

- Add Service Bus namespace and queue to Terraform - Add Azure Function with Service Bus trigger that writes to blob storage - Add Container App web UI with message form to send to Service Bus - Enable managed identities with RBAC for both Function App and Container App - Add Azure Container Registry for container image hosting - Create app-deploy.yml workflow for application deployments - Update terraform-deploy.yml to trigger app deployment after infra changes - Add deployment documentation to Assignment3/readme.md

npcjake · 2026-05-22T21:21:15Z

need to fix same issue from assingment 2 with tf

npcjake · 2026-05-22T23:12:44Z

@philspokas should be good!

- Add environment: production so OIDC subject matches Azure federated credential - Add pull_request trigger so Terraform Plan runs as a check on PRs Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

npcjake and others added 14 commits May 12, 2026 23:03

Merge branch 'IntelliTect-Samples:main' into main

eb2d012

Configure Terraform to deploy Assignment 3 resources to rg-assignment3

ecb283e

Fix OIDC auth for Terraform in app-deploy workflow

9efcb66

Fix Terraform storage container and logic app config

a140704

Remove Logic App (no WS1 quota on student subscription)

ae7ad37

Add Terraform setup step to app-deploy workflow

dbda884

Fix npm dev deps and container app provisioning race in deploy

55363c7

Fix function app resource group lookup in deploy workflow

e638249

Switch to az functionapp deploy and update Node.js to 20

8082053

Remove WEBSITE_RUN_FROM_PACKAGE to fix zip deployment

9408cbf

Use Azure Functions action for function app deployment

0e80b16

Remove pull_request trigger from Terraform workflow

36e6369

Only run Terraform Plan on manual dispatch, not on every push

986c361

philspokas self-requested a review May 22, 2026 20:17

add @azure/functions missing dependency

5b372b0

npcjake had a problem deploying to production May 23, 2026 15:15 — with GitHub Actions Failure

npcjake had a problem deploying to production May 23, 2026 15:16 — with GitHub Actions Failure

npcjake had a problem deploying to production May 23, 2026 15:17 — with GitHub Actions Failure

npcjake had a problem deploying to production May 23, 2026 15:18 — with GitHub Actions Failure

npcjake had a problem deploying to production May 23, 2026 15:19 — with GitHub Actions Failure

Add pull_request trigger and fix OIDC auth for Terraform Plan

62c6e84

- Add environment: production so OIDC subject matches Azure federated credential - Add pull_request trigger so Terraform Plan runs as a check on PRs Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

npcjake force-pushed the Assignment3 branch from d72d7fb to 62c6e84 Compare May 23, 2026 15:20

npcjake had a problem deploying to production May 23, 2026 15:20 — with GitHub Actions Failure

philspokas closed this Jun 3, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Assignment 3 - Jake Tonani (Redo)#41

Assignment 3 - Jake Tonani (Redo)#41
npcjake wants to merge 16 commits into
IntelliTect-Samples:mainfrom
npcjake:Assignment3

npcjake commented May 22, 2026 •

edited

Loading

Uh oh!

npcjake commented May 22, 2026

Uh oh!

npcjake commented May 22, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Uh oh!

Conversation

npcjake commented May 22, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!