Skip to content

feat: Add cloud deployment with Pulumi, Docker, and Kubernetes #4

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Cordycepsers merged 6 commits into from
Aug 27, 2025
Merged

feat: Add cloud deployment with Pulumi, Docker, and Kubernetes #4

Cordycepsers merged 6 commits into from
Aug 27, 2025

Conversation

@google-labs-jules
Copy link
Contributor

@google-labs-jules google-labs-jules bot commented Aug 27, 2025

This change adds all the necessary files and documentation to deploy the application to a Google Cloud VM running k3s, managed by Pulumi. It includes Pulumi infrastructure-as-code, Dockerfiles for containerization, and Kubernetes manifests for orchestration.

@google-labs-jules
feat: Add cloud deployment with Pulumi, Docker, and Kubernetes
2c44390 
This commit introduces a complete cloud deployment solution for the application on Google Cloud Platform (GCP).

The key additions are:
- A Pulumi script (`__main__.py`) to provision a GCP Compute Engine instance (`e2-standard-2`) with Docker and k3s installed via a startup script. It also configures the necessary firewall rules.
- Dockerfiles for both the backend (`Dockerfile.backend`) and frontend (`Dockerfile.frontend`) to containerize the application components.
- A Kubernetes manifest file (`k8s.yml`) that defines the deployments, services, and an ingress resource for routing traffic to the frontend and backend.
- Updated documentation (`README.md`) with a new section explaining the entire cloud deployment process, from infrastructure provisioning to application deployment.

This setup provides a scalable and reproducible environment for hosting the application.
@vercel
Copy link

vercel bot commented Aug 27, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Preview Comments Updated (UTC)
proposal-master Ready Ready Preview Comment Aug 27, 2025 3:00pm

@google-labs-jules
fix(deploy): Harden and fix deployment configurations
e1b4c88 
This commit introduces several improvements to the security and robustness of the cloud deployment configuration.

Key changes:
- **Kubernetes Manifests (`k8s.yml`):**
  - Fixed a routing issue in the Ingress configuration by replacing the incorrect `stripPrefix` middleware with a standard `rewrite-target`.
  - Added `livenessProbe` and `readinessProbe` to the frontend and backend deployments to improve reliability and automated recovery.
  - Added `securityContext` to pods to enforce running as non-root users and dropping all Linux capabilities, following security best practices.
- **Pulumi Script (`__main__.py`):**
  - Now creates a dedicated GCP Service Account for the Compute Engine instance instead of using the default one.
  - The new service account is granted a minimal set of permissions (for logging, monitoring, and GCR access), adhering to the principle of least privilege.
@Cordycepsers Cordycepsers requested a review from Copilot August 27, 2025 14:21
Copilot AI reviewed Aug 27, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR adds comprehensive cloud deployment capabilities to the Proposal Master application, enabling deployment to Google Cloud Platform using modern DevOps practices. The implementation includes infrastructure-as-code with Pulumi, containerization with Docker, and orchestration with Kubernetes.

  • Infrastructure provisioning using Pulumi to create a GCP VM with k3s Kubernetes
  • Containerization of both frontend and backend components with optimized Dockerfiles
  • Complete Kubernetes manifests for production-ready deployment with proper security configurations

Reviewed Changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated 5 comments.

Show a summary per file
File Description
__main__.py Pulumi infrastructure code to provision GCP VM with k3s, service accounts, and firewall rules
k8s.yml Kubernetes manifests defining namespace, deployments, services, and ingress for both frontend and backend
Dockerfile.backend Multi-stage Docker build for the Python FastAPI backend application
Dockerfile.frontend Multi-stage Docker build for the React frontend with Nginx serving
README.md Comprehensive documentation for cloud deployment process and prerequisites

Cordycepsers and others added 4 commits August 27, 2025 16:59
@Cordycepsers
Update k8s.yml
189662f 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@Cordycepsers
Update __main__.py
d5c2c3f 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@Cordycepsers
Update README.md
7a13943 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@Cordycepsers
Update __main__.py
88b2b15 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@Cordycepsers Cordycepsers marked this pull request as ready for review August 27, 2025 14:59
@Cordycepsers Cordycepsers merged commit 56dad47 into main Aug 27, 2025
2 checks passed
@Cordycepsers Cordycepsers deleted the feat/cloud-deployment-gcp branch August 27, 2025 15:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Cordycepsers