Skip to content

Latest commit

 

History

History
 
 

HOL-Continuous_Deployment

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
media
media
 
 
README.md
README.md
 
 

README.md

HOL - Continuous Deployment with Release Management in Visual Studio Team Services

In this lab, you have an application called PartsUnlimited, committed to a Git repository in Visual Studio Team Services (VSTS) and a Continuous Integration build that builds the app and runs unit tests whenever code is pushed to the master branch. Please refer to the HOL - Parts Unlimited WebSite Continuous Integration with Visual Studio Team Services in order to see how the CI build was set up. Now you want to set up Release Management (a feature of Visual Studio Team Services) to be able continuously deploy the application to an Azure Web App. Initially the app will be deployed to a dev deployment slot. The staging slot will require and approver before the app is deployed into it. Once an approver approves the staging slot, the app will be deployed to the production site.

Pre-requisites:

  • An active Visual Studio Team Services account

  • Visual Studio 2017

  • Project Admin rights to the Visual Studio Team Services account

  • An active Azure account to host the PartsUnlimited Website as a Web App

    Note: In order to use deployment slots, you'll need to configure the Web App to use Standard or Premium App Service Plan mode. You cannot create deployment slots for Basic or Free Azure Web Apps. To learn more about deployment slots, see this article.

  • You have completed the HOL - Parts Unlimited Website Continuous Integration with Visual Studio Team Services

  • An organizational account that is a co-administrator on your Azure account

    Note: This is required because deploying ARM Templates to Azure requires an organizational account or a Service Principal. MSA Account and certificate-based connections are not supported. For this HOL, you will use an organizational account.

Tasks Overview:

1. Complete the HOL - Parts Unlimited Website Continuous Integration with Visual Studio Team Services. This will walk through creating a Visual Studio Team Services account, committing the PartsUnlimited source code and setting up the Continuous Integration (CI) build.

2. Modify the CI Build to include ARM Templates The source code already defines the infrastructure required by the application in code (Infrastructure as Code). The code is a json file based on the Azure Resource Manager (ARM) template schema. You will use the template to deploy or update the infrastructure as part of the release.

3. Create a Service Endpoint in Visual Studio Team Services to an Azure Account. In this step you'll download your Azure publish settings file and create Service Endpoint in Visual Studio Team Services for your Azure account. This will enable you to configure deployment of the PartsUnlimited Website to Azure as an Azure Web Application from Builds or Releases.

4. Create a Release Pipeline for the Parts Unlimited Website. In this step, you will create a Release definition for the PartsUnlimited Website. You'll use the CI build output as the input artefact for the Release and then define how the release moves through environments with approvals in between.

5. Trigger a Release. Once the Release Definition is set up, you will trigger a release and see the pipeline in action.

HOL:

Task 1: Complete HOL - Parts Unlimited Website Continuous Integration with Visual Studio Team Services

Make sure you've completed HOL - Parts Unlimited Website Continuous Integration with Visual Studio Team Services.

Task 2: Modify the CI Build to include the ARM Templates

In order to deploy to Azure, you're going to specify the infrastructure that the PartsUnlimited Website requires. For example, the site requires an Azure SQL Database and an Azure Web App. Rather than create these by hand, you are going to use the Azure Resource Manager (ARM) templates that describe this infrastructure in a json file. This is good practice, since you're describing infrastructure as code.

The task that will deploy the ARM template will create the resource group if it does not exist. If the resource group does exist, then the template is used to update the existing resources.

Note: The infrastructure described in the ARM templates for this HOL will create resources that are not free. It creates an Azure Web App with 3 deployment slots. Deployment slots are only available on Standard or Premium App Service Plans. They are not available on Free or Basic plans. Once you've completed this lab, you probably want to delete the resource group in order to minimize charges to your Azure account.

Step 1. Log into your VSTS account and click on the BUILD hub.

Step 2. Click the HOL Build that you configured in the Continuous Integration HOL, and click "Edit".

Step 3. Click "+ Add build step..." and add a new "Publish Build Artifacts". Configure it as follows:

  • For Path to Publish, click the "..." button and browse to the env/Templates folder
  • For Artifact Name, enter "ARMTemplates"
  • For Artifact Type, select "Server"

Step 4. Save the updated build definition and queue a new build by clicking the "Queue new build" button. Accept the defaults and click OK.

Note: The build process may take a while, but there is no need to await its completion before proceeding. Come back and do the last step after task 3.

Step 5. When the build has completed, verify that there are 2 folders: drop and ARMTemplates.

  • The drop folder should contain a single file: PartsUnlimitedWebsite.zip (click "Explore" to view the contents)

  • The ARMTemplates folder should contain a number of environment template and parameters JSON files.

Task 3: Create a Service Link from Visual Studio Team Services to an Azure Account

In order to interact with Azure, you'll need to create a Service Endpoint in VSTS. This Endpoint includes the authentication information required to deploy to Azure.

Note: Deploying ARM Templates to Azure from Release Management requires an organizational account or a Service Principal. MSA Accounts and certificate-based connections are not supported. For this HOL, you will use an organizational account, but you can create a Service Principal if you wish to.

Step 1. Create an organizational account in Azure

  1. Create a user in the Azure Active Directory from the old Azure portal (https://manage.windowsazure.com). If you do not have a custom domain, then use the onmicrosoft.com domain (the default domain). The user should be something like testuser@myazure.onmicrosoft.com

  2. After adding the account, the following two things need to be done to use the account during a VSTS release:

  • Add the Active Directory account to the co-administrators in the subscription. Go to the Settings hub (click on the Gear icon in the left-hand main menu) and then click on administrators and add the account as a co-admin.
  • Login to the portal with this Active Directory account (e.g. testuser@myazure.onmicrosoft.com, and change the password. Initially a temporary password is created and that needs to be changed at the first login.

Step 2. Create an Azure Service Endpoint in Visual Studio Team Services

  1. Log in to your VSTS account.

  2. Open the project administration page by clicking the gear icon in the upper right.

  3. Click on the Services tab

  4. Click on "New Service Endpoint" and select Azure Resource Manager from the list

  5. Fill out the form below to create a Service Pincipal. Click on "Verify connection" button to check that all details were filed in correctly and then click on "OK" button.

  6. You should see a new Service Endpoint. You can close the project administration page.

Task 4: Create a Release Definition

Now that you have an Azure Service Endpoint to deploy to, and a package to deploy (from your CI build), you can create a Release Definition. The Release Definition defines how your application moves through various Environments, including Tasks to update infrastructure, deploy your application, run scripts and run tests. You can also configure incoming or outgoing approvals for each Environment.

An Environment is simply a logical grouping of tasks - it may or may not correspond to a set of machines. For this Release Definition, you will create 3 Environments: Dev, Staging and Production.

The infrastructure required for all 3 environments is described in an ARM Template. The ARM Template will be invoked during the deployment in the Dev Environment before deploying the website to Dev. It will not be necessary to run any infrastructure tasks during Staging or Production deployments in this case.

Update 09/05 The task Azure Resource Group Deployment version 2, works just with agent queue Hosted VS2017

Step 1. Create a Release Definition to Deploy Infrastructure and Deploy to Dev

  1. In VSTS, click on Releases. Then click on the "+ New definition" button to create a new definition. This will launch a wizard prompting you to select a deployment template. Click on "Empty" to start with an empty release and click "Next". For this lab you can simply use the defaults on the next page of the wizard and click "Create".

  2. The template has created a single Environment (called Environment 1).

  3. Enter "PartsUnlimited" into the name field at the top to name this Release Definition.

  4. Before completing the "Azure Web App Deployment" task, you'll need to configure the source package. Click on the "Artifacts" link.

  5. If build definition did not get linked automatically then click on "Link to an artifact source" link, otherwise check that it has the correct settings.

  6. You'll now link this Release Definition to the CI build. Select the Project and Build from the drop downs and click "Link".

    Note: It is possible to Link other package sources, but you only need the CI build for this Release.

  7. Click on the Environments link to go back to the Environments page.

  8. Click the name label "Environment 1" and change the name to "Dev".

  9. Click on the "+ Add tasks" button to add a task for this environment. In the "Deploy" group, click the "Add" button next to "Azure Resource Group Deployment" to add the task. Close the "Task catalogue" dialog.

  10. Click on the "Azure Resource Group Deployment" task. Configure it as follows:

    • Azure Connection Type: Azure Resource Manager

    • Azure RM Subscription: select the Azure subscription endpoint that you created in Task 2

    • Action: select "Create or Update Resource Group"

    • Resource Group: enter $(ResourceGroupName) into the box, you will create a variable named this shortly.

    • Location: select an Azure location

    • Template: click the "..." button and browse to the FullEnvironmentSetupMerged.json file in the ARMTemplates folder.

    • Template Parameters: click the "..." button and browse to the FullEnvironmentSetupMerged.param.json file in the ARMTemplates folder.

    • Override Template Parameters: Enter the following in a single line (shown split here for convenience):

       -WebsiteName $(WebsiteName) -PartsUnlimitedServerName $(ServerName) -PartsUnlimitedHostingPlanName $(HostingPlan) -CdnStorageAccountName $(StorageAccountName) -CdnStorageContainerName $(ContainerName) -CdnStorageAccountNameForDev $(StorageAccountName)-dev -CdnStorageContainerNameForDev $(ContainerName)-dev -CdnStorageAccountNameForStaging $(StorageAccountName)-stage -CdnStorageContainerNameForStaging $(ContainerName)-stage -PartsUnlimitedServerAdminLoginPassword (ConvertTo-SecureString -String '$(AdminPassword)' -AsPlainText -Force) -PartsUnlimitedServerAdminLoginPasswordForTest (ConvertTo-SecureString -String '$(AdminTestPassword)' -AsPlainText -Force)

      You will shortly define the values for each parameter, like $(ServerName), in the Environment variables.

      Note: If you open the FullEnvironmentSetupMerged.param.json file, you will see empty placeholders for these parameters. You could hard code values in the file instead of specifying them as "overrides". Either way is valid. If you do specify values in the params file remember that in order to change values, you would have to edit the file, commit and create a new build in order for the Release to have access the new values.

    • Make sure the Output -> Resource Group parameter is empty. It is not required for this release.

  11. Click on the ellipsis (...) button next to the Environment and select "Configure variables..."

  12. Create the following variables, adding values too.

    • WebsiteName - Name of the website in Azure

    • ServerName - Prefix for the name of the database servers. Will have -dev or -stage added for dev/staging

    • HostingPlan - Name of the hosting plan for the website

    • StorageAccountName - Storage account name prefix. Will have -dev or -stage added for dev/staging

    • ContainerName - Container name prefix. Will have -dev or -stage added for dev/staging

    • AdminPassword - Admin password for production database server

    • AdminTestPassword - Admin password for dev and staging database servers

    • ResourceGroupName - Name of the Resource Group.

      Note: Use unique values for your variables by adding something custom at the end like your initials. Example for WebsiteName : pudncorejstr

      Note: You can hide passwords and other sensitive fields by clicking the padlock icon to the right of the value text box.

  13. Save the definition.

Step 2. Test the ARM Template Deployment

Before moving on, it is a good idea to test the template so far.

  1. Click on "+ Release" in the toolbar and select "Create Release" to start a new release.

  2. Select the latest build from the drop-down, and then select "Dev" as the target environment. Click "Create" to start the release.

  3. Click the "Release-x" link to open the release.

  4. Click on the Logs link to open and monitor the deployment logs.

  5. You should see a successful release after a few minutes.

  6. If you log into the Azure Portal, you will see the Resource Group has been created.

Step 3. Add Web Deployment Tasks to Deploy the Web App

Now that the infrastructure deployment is configured, you can add a task to deploy the web app to Dev.

  1. Click on the Dev environment in the Release Definition. Then click "+ Add tasks".

  2. Select the "Deploy" group in the left and click the add button next to "Azure App Service Deployment" to add the task. Close the task selector dialog.NOTE: The screenshot is out of date the and "AzureRM Web App Deployment" task is no longer available. Choose the "Azure App Service Deployment" task instead.

  3. Click on the "Azure App Service Deployment" Task.

  4. Select the Azure Service Endpoint you created earlier in the AzureRM Subscription drop down.

  5. For Web App Name, enter the $(WebsiteName) to use a variable. You defined this variable earlier when deploying the ARM Template. You will shortly "promote" it to a Release variable so that it can be used in all Environments in the Release.

  6. Check the Deploy to Slot check box

  7. Enter $(ResourceGroupName) into the Resource Group Box.

  8. Enter "dev" for the Slot. This will deploy the site to the "dev" deployment slot. This allows you to deploy the site to an Azure deployment slot without affecting the Production site.

  9. Tick "Take App Offline". This stops the website for deployment period and takes it back online afterwards. This is required because sites receive requests all the time causing files to lock down (i.e. making them unmodifiable).

  10. Click the ellipsis (...) button, next to the Package box, to set the Web Deploy Package location. Browse to the PartsUnlimitedWebsite.zip file and click OK.

  11. Clear the "Additional Arguments" parameter. The ARM template you deployed has already configured all the slot-specific app settings and connection strings.

  12. The Task should look like this:

    Note: It is a good practice to run smoke tests to validate the website after deployment, or to run load tests. The code-base you are using does not have any such tests defined. You can also run quick cloud-performance tests to validate that the site is up and running. For more information on quick load tests, see this video from around the 6 minute mark.

  13. Promote the WebSite Environment variables to a Release Variables

    • Click on the "Dev" environment, click the ellipsis (...) button select "Configure Variables".
    • Make a note of the WebsiteName and ResourceGroupName variables' values and delete them from this list. Click OK.
    • Click on "Variables" to open the Release variables. These are "global" variables that any Environment can use.
    • Enter "WebsiteName" for the name and enter the value for the Website in Azure. Enter "ResourceGroupName" for the name and enter the value for the Resource group in Azure.

  14. Click Save to save the Release Definition.

Step 4. Test the Dev Environment

You will shortly clone the Dev Environment into both Staging and Prod environments. However, before you do that it's a good idea to test that the Dev Environment is correctly configured by creating a new Release.

  1. Click on the "+ Release" button and select Create Release.

  2. You can enter a Release Description if you want to.

  3. Select the latest build from the HOL Build drop down and click on "Create".

  4. Click the Release link to open the Release.

  5. Click on the Logs link to open the deployment logs.

  6. Once the deployment completes, you can check that the site was in fact deployed successfully by navigating to the site url.

    Since you deployed to the dev slot, you will need to navigate to http://{siteName}-dev.azurewebsites.net where siteName is the name of your Web App in Azure.

    By default you will only receive email notifications on failed release. This can be changed in settings for each environment. Click the ellipsis (...) on the Dev Environment card and select "Assign approvers..". Navigate to "General tab" and set the desired behavior.

Step 5. Clone the Dev environment to Staging and Production

Now that you have verified that the Dev Environment is configured correctly, you can clone it to Staging and Production.

  1. Click on the PartsUnlimited link and then the Edit link to open the Release Definition.

    Note: It is possible to change the definition for a Release without changing the Release Definition (i.e. the Release is an instance of the Release Definition that you can edit). You want to make sure that you are editing the Release Definition, not a Release.

  2. Click the ellipsis (...) on the Dev Environment card and select "Clone environment".

  3. In the Dev Environment, you did not define any approvers. For Staging, however, you should configure approvers. In "Pre-deployment approval" section choose people who will approve deployments to staging environment and click "Create".

  4. A new Environment is created. Enter "Staging" for the name.

  5. Delete the "Azure Resource Group Deployment" task. This is not required in this Environment since the ARM template deployed the infrastructure for all 3 environments.

  6. Click the ellipsis (...) on the Staging Environment card and select "Configure variables".

  7. Delete all the variables. These are used by the "Azure Resource Group Deployment" task which you just deleted, so they are not necessary in this Environment.

  8. On the Azure Web App Deployment task, set the Slot to staging.

    Note: If you had environment-specific variables, you would be able to set Staging-specific values. It is not necessary in this case.

  9. When we cloned dev to staging we set one person for staging's pre-approvals. We can adjust it even further by clicking ellipsis (...) on the Staging Environment card and select "Assign approvers...". For this HOL, you can be both incoming and the outgoing approver.

  10. In this case, you want to pause the deployment coming in. This ensures that if someone is testing in the Staging environment, they don't suddenly get a new build unexpectedly.

  11. Configure approvers for the Staging environment

    Pre-deployment approvers must approve a deployment coming into the environment. The deployment will stop and wait before executing any tasks in the environment until approval is granted.
    Post-deployment approvers approve deployments so that the next Environment can begin. They act as sign-off for the current environment.
    Approvers can be individuals or groups.

  12. Clone the Staging environment to Production.

    • Untick "Deploy to Slot" (i.e. the site will be deployed to the production slot).
    • Update the approvers - again, you can be both approvers.

  13. Save the Release Definition.

Step 6. Configure Continuous Deployment for this Release Definition

  1. Click on the Triggers link of the Release Definition.

  2. For "Release trigger" pick "Continuous Deployment" and set trigger to the build definition created before.

    Selecting the build as the trigger means that any time the artifact build completes, a new release will automatically start using the latest build.

  3. Set "Environment triggers" to the following settings:

    • Deployment to "Dev" environment should be triggered after release is created.
    • Deployment to "Staging" can be triggered on successful deployment to "Dev".
    • Deployment to "Production" can be triggered on successful deployment to "Staging".

    Note: Since the incoming build for this release is a CI build, you probably don't want to deploy the build all the way to Production. Setting the Release to stop at Dev means that you will need to create a new Release with Production as the target environment if you want to deploy to Production. This is of course configurable according to your own preference.

Task 5: Create a Release

Now that you have configured the Release Pipeline, you are ready to trigger a complete release.

  1. Click on "+ Release" to create a new Release.

  2. Select the latest build, click Create.

    Note: You can adjust whether to deploy this release to a particular environment.

  3. Once the Dev stage has completed deployment, you will see a notification that an approval is pending (you will also have received an email notification if you ticked "Send an email notification to the approver whom the approval is pending on" option in settings for this environment). Check the dev slot of the PartsUnlimited site in Azure to ensure that the Dev environment is good, and then click Approve.

  4. You can also see pending approvals in the overview pane:

  5. Optionally enter a comment and click the Approve button.

  6. This will trigger the release into the Staging environment.

    Note: You can reassign the approval if required.

  7. Once the Staging deployment has completed, you will need to approve that staging is OK.

  8. This will then trigger the pre-approval for Production. Once you've approved that, deployment into the Production environment will begin.

  9. To see all your releases and where they are in their respective pipelines, click on All Releases and then click the Overview link.

Congratulations!

You've completed this HOL!

Note: Deployment of schemas and data is beyond the scope of this HOL. It is recommended that you investigate SQL Server Data Tools (SSDT) for managing database schema deployments.

Further Reading

  1. Release Management for Visual Studio Team Services
  2. Cloud Load Testing in Visual Studio Team Services
  3. User Telemetry and Application Performance Monitoring with Application Insights
  4. Testing in Production with Azure Websites - PartsUnlimited