app-service-sql-github-actions.md

title	description	author	ms.devlang	ms.topic	ms.date	ms.author	ms.custom
Tutorial: Use GitHub Actions to deploy to an App Service custom container and connect to a database	Learn how to deploy an ASP.NET core app to Azure and to Azure SQL Database with GitHub Actions	cephalin	csharp	tutorial	01/09/2023	jukullam	github-actions-azure

Tutorial: Use GitHub Actions to deploy to an App Service custom container and connect to a database

This tutorial walks you through setting up a GitHub Actions workflow to deploy a containerized ASP.NET Core application with an Azure SQL Database backend. When you're finished, you have an ASP.NET app running in Azure and connected to SQL Database. You'll first create Azure resources with an ARM template GitHub Actions workflow.

In this tutorial, you learn how to:

[!div class="checklist"]

• Use a GitHub Actions workflow to add resources to Azure with a Azure Resource Manager template (ARM template)
• Use a GitHub Actions workflow to build a container with the latest web app changes

[!INCLUDE quickstarts-free-trial-note]

Prerequisites

To complete this tutorial, you'll need:

• An Azure account with an active subscription. Create an account for free.
• A GitHub account. If you don't have one, sign up for free.
  • A GitHub repository to store your Resource Manager templates and your workflow files. To create one, see Creating a new repository.

Download the sample

Fork the sample project in the Azure Samples repo.

https://github.com/Azure-Samples/dotnetcore-containerized-sqldb-ghactions/

Create the resource group

Open the Azure Cloud Shell at https://shell.azure.com. You can alternately use the Azure CLI if you've installed it locally. (For more information on Cloud Shell, see the Cloud Shell Overview.)

    az group create --name {resource-group-name} --location {resource-group-location}

Generate deployment credentials

[!INCLUDE include]

Configure the GitHub secret for authentication

[!INCLUDE include]

Add a SQL Server secret

Create a new secret in your repository for SQL_SERVER_ADMIN_PASSWORD. This secret can be any password that meets the Azure standards for password security. You won't be able to access this password again so save it separately.

Create Azure resources

The create Azure resources workflow runs an ARM template to deploy resources to Azure. The workflow:

• Checks out source code with the Checkout action.
• Logs into Azure with the Azure Login action and gathers environment and Azure resource information.
• Deploys resources with the Azure Resource Manager Deploy action.

To run the create Azure resources workflow:

1. Open the azuredeploy.yaml file in .github/workflows within your repository.

2. Update the value of AZURE_RESOURCE_GROUP to your resource group name.

3. Update the values of WEB_APP_NAME and SQL_SERVER_NAME to your web app name and sql server name.

4. Go to Actions and select Run workflow.

   :::image type="content" source="media/github-actions-workflows/github-actions-run-workflow.png" alt-text="Run the GitHub Actions workflow to add resources.":::

5. Verify that your action ran successfully by checking for a green checkmark on the Actions page.

   :::image type="content" source="media/github-actions-workflows/create-resources-success.png" alt-text="Successful run of create resources. ":::

Add container registry and SQL secrets

1. In the Azure portal, open your newly created Azure Container Registry in your resource group.

2. Go to Access keys and copy the username and password values.

3. Create new GitHub secrets for ACR_USERNAME and ACR_PASSWORD password in your repository.

4. In the Azure portal, open your Azure SQL database. Open Connection strings and copy the value.

5. Create a new secret for SQL_CONNECTION_STRING. Replace {your_password} with your SQL_SERVER_ADMIN_PASSWORD.

Build, push, and deploy your image

The build, push, and deploy workflow builds a container with the latest app changes, pushes the container to Azure Container Registry and, updates the web application staging slot to point to the latest container pushed. The workflow containers a build and deploy job:

• The build job checks out source code with the Checkout action. The job then uses the Docker login action and a custom script to authenticate with Azure Container Registry, build a container image, and deploy it to Azure Container Registry.
• The deployment job logs into Azure with the Azure Login action and gathers environment and Azure resource information. The job then updates Web App Settings with the Azure App Service Settings action and deploys to an App Service staging slot with the Azure Web Deploy action. Last, the job runs a custom script to update the SQL database and swaps staging slot to production.

To run the build, push, and deploy workflow:

1. Open your build-deploy.yaml file in .github/workflows within your repository.

2. Verify that the environment variables for AZURE_RESOURCE_GROUP and WEB_APP_NAME match the ones in azuredeploy.yaml.

3. Update the ACR_LOGIN_SERVER value for your Azure Container Registry login server.

Next steps

[!div class="nextstepaction"] Learn about Azure and GitHub integration