Udostępnij za pośrednictwem


Azure Functions – CI / CD DevOps Pipeline

In earlier parts of our Function Azure blog post series, we outlined the implementation of different artifacts of our research project on communication between the VSTS and LaunchDarkly with the Azure Function extensions.

In this one we will present how we have implemented continuous integration and deployment of our Azure Functions in Azure using Visual Studio Team Services.

Visual Studio solution and source control

Before we start talking about pipelines, a reminder of the composition of our Visual Studio solution.

clip_image002

Our solution consists of 4 projects

  1. The Azure Function Projects that contain the C# code and helpers of the Azure Function (see building vsts extensions with feature flags for details).
  2. The Unit Tests projects that tests some methods in the Azure Function project (see azure functions prepare for continuous delivery for details.)
  3. The Azure ARM resource project that contain the ARM template for the provisioning of our Azure Function environment (see azure function provisioning and configuring our azure function infrastructure for details.)
  4. The Integration tests that contain the Postman Json collection and environment files (see azure function integration tests automation for details.)

The code of this solution is maintained, stored and versioned in this GitHub repository.

CI / CD DevOps pipeline in VSTS

Requirements

Before we create the build and release pipeline we need some requirements

  • An Azure subscription
  • An Azure Resource Manager (ARM) service endpoint in the VSTS Team Project connecting to the before mentioned Azure subscription

clip_image002

  • A LaunchDarkly account with an existing project used for integration testing

Build definition

Continuous integration (CI)

CI is the first DevOps practice.

image

Build steps

The build definition for our Azure Function deployment performs the following steps:

  • Build the C# solution code
  • Run unit tests
  • Publish the artifacts for the release

The build definition tasks are:

clip_image002[1]

This build contains 4 main phases:

  1. Restore Nuget packages of the solution and build the Visual Studio Solution with msbuild
  2. Run unit tests and publish the results
  3. Create a zip file that contains the output of the Azure Function Project
    clip_image004
  4. In the last steps the build publishes 3 artifacts: the zip file containing the Azure Function project, the ARM template and postman Json files

When the build is successful we get the following results:

  • Summary tab with tests results:
    clip_image006
  • Tests tab with detailed unit tests results
    clip_image008
  • Artifacts tab that contain our 3 published artifacts:
    clip_image010 clip_image012

With the build created and tested successfully we can proceed to the setup of our release definition.

Release definition

To maintain consistency with the pipeline of our VSTS extensions (see a really cool feature we noticed on vsts new release definition editor) we named the release environments with the same names:

  • Early Adopters: Evaluation environment for our Azure Functions, called by our early adopter’s extension.
  • Users: Production environment of our Azure Functions, called by our production extension.
    clip_image002[1]

For each environment, the release process is:

  • Update (or create) and configure the complete Azure environment infrastructure. This environment is composed of 2 slots: principal (named ‘production’) for the released Azure Function App and one sub slot for running integration tests
  • Deploy the Azure Function App in the integration tests slot
  • Run the integration tests
  • If the integration tests are successful, then release the Azure Function App to the principal slot

The advantage of deploying to the sub slot first is that the code will not be deployed to the principal slot, if the integration tests fail.

Here’s the release environment:

clip_image004

Œ?Ž? [1] Create or update of the Azure Function Infrastructure

clip_image002[1] This task creates or update Azure resources using the ARM Templates (see azure function provisioning and configuring our azure function infrastructure)

[2] Configure App Settings and Deploy to the “Integration Tests” sub slot

clip_image002[3] Run the UpdateAppSettings.ps1 script (see azure function provisioning and configuring our azure function infrastructure) to update the “Integration Tests” Azure Function slot’s application settings
clip_image004[6] Deploy the Azure Function App code (the Zip produced by the build) in the “Integration tests” sub slot

[3] Run integration tests

clip_image002[5] Install Newman from package.json
clip_image004[1] Replace all tokens in data-tests.json with environment variables that contain the integration tests environment values(see azure function integration ests automation)
clip_image006 Run integration tests by executing the package.json script command : npm run testapi (see azure function integration tests automation).Tests will use the LaunchDarkly integration tests project created in requirementsThe test results will be exported in Junit Xml files.
clip_image008[1] Publish integration test results to VSTS.This task is configured to always publish test results even if the previous task of test execution failed.

[4] Configure App Settings and Deploy in Main slot (called production in Azure)

clip_image002[7] Execute the UpdateAppSettings.ps1 (see azure function provisioning and configuring our azure function infrastructure) script to update the Azure Function Application Settings for the ‘production’ slot
clip_image004[3] Swap the content from “Integration Tests” slot to the ‘production’ Slot

Early adopters and User environments are composed by the same task workflow. Different values between the environments are managed in the Release environment’s variables.

Environments Variables

To manage the environment’s variables, use the “Process variables”:

clip_image002[9]

The pipeline Security

To prevent unauthorized deployments to Production and add a level of security, we configured Approvals in the “Users” environment

clip_image004[5]

Release run

When the release is successful we get the following result:

clip_image006[7]

The Tests tab with the published test results from the integration tests/

clip_image008[3]

We can drill into the logs on the timeline for Newman integration test results.

clip_image010[1]

When an integration test fails, the logs will highlight the failure, and the “Publish Test Results” task will still run to publish the results to VSTS, as is shown below:

clip_image012

Resultant Azure architecture

If the release went well, our Azure architecture described in the ARM Template will exist in our portal, with one Resource group for each environment.

clip_image014

The Azure Function App

The Azure Function App contains the Azure functions developed in our Visual Studio Solution and one sub slot named “Integration Tests”

clip_image016

The Configuration of the Application Settings by slots

clip_image018 clip_image020

So, we managed to deploy our Azure Functions in a DevOps pipeline with:

  • Continuous integration
  • Running unit tests
  • Provisioning and Configuring Azure Infrastructure
  • Running Integration tests
  • Deploying the Azure Function App

What’s Next …

We’re approaching the end of our series of Azure Function posts. In the next and final post, we’re going to look at another pivotal DevOps practice - monitoring.

THANK YOU REVIEWERS: Niel Zeeman, Hamid Shahid

Comments

  • Anonymous
    October 25, 2017
    (This comment has been deleted per user request)
    • Anonymous
      May 23, 2018
      I would go with complete deployments if possible. It will, next to provision what is new, also remove everything that exists in your resource group that might be either (i) no longer needed or (ii) added manually. In the second case, things might break if people keep doing manual interventions, but they should learn not to: always work from source control.If you (your team) is not the only one operating in a resource group or manual interventions are impossible to prevent, you can fall back on incremental deployments.
  • Anonymous
    May 20, 2018
    Is this guidance still valid? I just wanted to check before basing any CD pipeline work from it.
    • Anonymous
      May 23, 2018
      The approach is still valid in my opinion, although details have changed since this article was written. For example in the interface.