zerfl
diff --git a/‎.devcontainer/Dockerfile
Lines changed: 8 additions & 0 deletions b/‎.devcontainer/Dockerfile
Lines changed: 8 additions & 0 deletions
diff --git a/‎.devcontainer/devcontainer.json
Lines changed: 61 additions & 0 deletions b/‎.devcontainer/devcontainer.json
Lines changed: 61 additions & 0 deletions
diff --git a/‎.devcontainer/docker-compose.yaml
Lines changed: 34 additions & 0 deletions b/‎.devcontainer/docker-compose.yaml
Lines changed: 34 additions & 0 deletions
diff --git a/‎.env.sample
Lines changed: 28 additions & 0 deletions b/‎.env.sample
Lines changed: 28 additions & 0 deletions
diff --git a/‎.github/CODE_OF_CONDUCT.md
Lines changed: 10 additions & 0 deletions b/‎.github/CODE_OF_CONDUCT.md
Lines changed: 10 additions & 0 deletions
diff --git a/‎.github/ISSUE_TEMPLATE.md
Lines changed: 9 additions & 0 deletions b/‎.github/ISSUE_TEMPLATE.md
Lines changed: 9 additions & 0 deletions
diff --git a/‎.github/PULL_REQUEST_TEMPLATE.md
Lines changed: 36 additions & 0 deletions b/‎.github/PULL_REQUEST_TEMPLATE.md
Lines changed: 36 additions & 0 deletions
diff --git a/‎.github/dependabot.yaml
Lines changed: 22 additions & 0 deletions b/‎.github/dependabot.yaml
Lines changed: 22 additions & 0 deletions
diff --git a/‎.github/workflows/bicep-audit.yaml
Lines changed: 34 additions & 0 deletions b/‎.github/workflows/bicep-audit.yaml
Lines changed: 34 additions & 0 deletions
diff --git a/‎.github/workflows/bicep-validation.yaml
Lines changed: 39 additions & 0 deletions b/‎.github/workflows/bicep-validation.yaml
Lines changed: 39 additions & 0 deletions
@@ -0,0 +1,8 @@
+ARG IMAGE=bullseye
+FROM mcr.microsoft.com/devcontainers/${IMAGE}
+
+ENV PYTHONUNBUFFERED 1
+
+RUN apt-get update && export DEBIAN_FRONTEND=noninteractive \
+    && apt-get -y install --no-install-recommends postgresql-client \
+     && apt-get clean -y && rm -rf /var/lib/apt/lists/*
@@ -0,0 +1,61 @@
+// For format details, see https://aka.ms/devcontainer.json. For config options, see the README at:
+// https://github.com/microsoft/vscode-dev-containers/tree/v0.245.0/containers/python-3
+{
+	"name": "RAG on database",
+	"dockerComposeFile": "docker-compose.yaml",
+	"service": "app",
+	"workspaceFolder": "/workspace",
+	"forwardPorts": [5432],
+	"portsAttributes": {
+		"5432": {"label": "PostgreSQL port", "onAutoForward": "silent"},
+		"8000": {"label": "Backend port", "onAutoForward": "openBrowser"},
+		"5173": {"label": "Frontend port", "onAutoForward": "openBrowser"}
+	},
+    "features": {
+        "ghcr.io/devcontainers/features/node:1": {
+            "version": "18",
+            "nodeGypDependencies": false
+        },
+        "ghcr.io/azure/azure-dev/azd:latest": {},
+        // Required for azd to package the app to ACA
+        "ghcr.io/devcontainers/features/docker-in-docker:2": {}
+    },
+	// Configure tool-specific properties.
+	"customizations": {
+		// Configure properties specific to VS Code.
+		"vscode": {
+			// Add the IDs of extensions you want installed when the container is created.
+			"extensions": [
+				"ms-python.python",
+				"ms-python.vscode-pylance",
+				"charliermarsh.ruff",
+				"ms-python.black-formatter",
+				"mtxr.sqltools",
+				"mtxr.sqltools-driver-pg",
+				"ms-vscode.vscode-node-azure-pack",
+                "esbenp.prettier-vscode"
+			],
+			// Set *default* container specific settings.json values on container create.
+			"settings": {
+				"python.defaultInterpreterPath": "/usr/local/bin/python",
+				"python.testing.unittestEnabled": false,
+				"python.testing.pytestEnabled": false,
+				"[python]": {
+					"editor.formatOnSave": true,
+					"editor.codeActionsOnSave": {
+						"source.fixAll": "explicit"
+					},
+					"editor.defaultFormatter": "ms-python.black-formatter"
+				},
+				"files.exclude": {
+					".ruff_cache": true,
+					".pytest_cache": true
+				}
+			}
+		}
+	},
+	// Use 'postCreateCommand' to run commands after the container is created.
+	"postCreateCommand": "pip install -r requirements-dev.txt && pip install -e src && cp .env.sample .env && python ./src/fastapi_app/setup_postgres_database.py && python ./src/fastapi_app/setup_postgres_seeddata.py",
+	// Comment out to connect as root instead. More info: https://aka.ms/vscode-remote/containers/non-root.
+	"remoteUser": "vscode"
+}
@@ -0,0 +1,34 @@
+version: "3"
+
+services:
+  app:
+    build:
+      context: ..
+      dockerfile: .devcontainer/Dockerfile
+      args:
+        IMAGE: python:3.11
+
+    volumes:
+      - ..:/workspace:cached
+
+    # Overrides default command so things don't shut down after the process ends.
+    command: sleep infinity
+
+    # Runs app on the same network as the database container, allows "forwardPorts" in devcontainer.json function.
+    network_mode: service:db
+
+  db:
+    image: pgvector/pgvector:pg16
+    restart: unless-stopped
+    volumes:
+      - postgres-data:/var/lib/postgresql/data
+    environment:
+      POSTGRES_DB: postgres
+      POSTGRES_USER: admin
+      POSTGRES_PASSWORD: LocalPasswordOnly
+
+    # Add "forwardPorts": ["5432"] to **devcontainer.json** to forward PostgreSQL locally.
+    # (Adding the "ports" property to this file will not forward from a Codespace.)
+
+volumes:
+  postgres-data:
@@ -0,0 +1,28 @@
+# Use these values to connect to the local database from within the devcontainer
+POSTGRES_HOST=localhost
+POSTGRES_USERNAME=admin
+POSTGRES_PASSWORD=LocalPasswordOnly
+POSTGRES_DATABASE=postgres
+POSTGRES_SSL=disable
+
+# OPENAI_CHAT_HOST can be either azure, openai, or ollama:
+OPENAI_CHAT_HOST=azure
+# OPENAI_EMBED_HOST can be either azure or openai:
+OPENAI_EMBED_HOST=azure
+# Needed for Azure:
+# You also need to `azd auth login` if running this locally
+AZURE_OPENAI_ENDPOINT=https://YOUR-AZURE-OPENAI-SERVICE-NAME.openai.azure.com
+AZURE_OPENAI_VERSION=2024-03-01-preview
+AZURE_OPENAI_CHAT_DEPLOYMENT=YOUR-AZURE-DEPLOYMENT-NAME
+AZURE_OPENAI_CHAT_MODEL=gpt-35-turbo
+AZURE_OPENAI_EMBED_DEPLOYMENT=embed
+AZURE_OPENAI_EMBED_MODEL=text-embedding-ada-002
+AZURE_OPENAI_EMBED_MODEL_DIMENSIONS=1536
+# Needed for OpenAI.com:
+OPENAICOM_KEY=YOUR-OPENAI-API-KEY
+OPENAICOM_CHAT_MODEL=gpt-3.5-turbo
+OPENAICOM_EMBED_MODEL=text-embedding-ada-002
+OPENAICOM_EMBED_MODEL_DIMENSIONS=1536
+# Needed for Ollama:
+OLLAMA_ENDPOINT=http://host.docker.internal:11434/v1
+OLLAMA_CHAT_MODEL=phi3:3.8b
@@ -0,0 +1,10 @@
+# Microsoft Open Source Code of Conduct
+
+This project has adopted the [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/).
+
+Resources:
+
+- [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/)
+- [Microsoft Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/)
+- Contact [opencode@microsoft.com](mailto:opencode@microsoft.com) with questions or concerns
+
@@ -0,0 +1,9 @@
+### Description
+
+What is wrong or what would you like to see improved?
+
+
+### Environment
+
+Describe your OS and dev environment (Codespaces, Dev Container, etc):
+
@@ -0,0 +1,36 @@
+## Purpose
+
+<!-- Describe the intention of the changes being proposed. What problem does it solve or functionality does it add? -->
+
+
+## Does this introduce a breaking change?
+
+When developers merge from main and run the server, azd up, or azd deploy, will this produce an error?
+If you're not sure, try it out on an old environment.
+
+```
+[ ] Yes
+[ ] No
+```
+
+## Type of change
+
+```
+[ ] Bugfix
+[ ] Feature
+[ ] Code style update (formatting, local variables)
+[ ] Refactoring (no functional changes, no api changes)
+[ ] Documentation content changes
+[ ] Other... Please describe:
+```
+
+## Code quality checklist
+
+See [CONTRIBUTING.md](https://github.com/Azure-Samples/rag-postgres-openai-python/blob/main/CONTRIBUTING.md#submit-pr) for more details.
+
+- [ ] The current tests all pass (`python -m pytest`).
+- [ ] I added tests that prove my fix is effective or that my feature works
+- [ ] I ran `python -m pytest --cov` to verify 100% coverage of added lines
+- [ ] I ran `python -m mypy` to check for type errors
+- [ ] I either used the pre-commit hooks or ran `ruff` and `black` manually on my code.
+
@@ -0,0 +1,22 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for all configuration options:
+# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
+
+version: 2
+updates:
+
+  - package-ecosystem: "pip"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "npm"
+    directory: "/app/frontend"
+    schedule:
+      interval: "weekly"
@@ -0,0 +1,34 @@
+name: Analyze AZD Template for Security Issues
+on:
+  push:
+    branches: [ main ]
+    paths:
+      - "infra/**"
+  pull_request:
+    branches: [ main ]
+    paths:
+      - "infra/**"
+  workflow_dispatch:
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    permissions:
+      security-events: write
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Run Microsoft Security DevOps Analysis
+        uses: microsoft/security-devops-action@preview
+        id: msdo
+        continue-on-error: true
+        with:
+          tools: templateanalyzer
+
+      - name: Upload alerts to Security tab
+        uses: github/codeql-action/upload-sarif@v3
+        if: github.repository_owner == 'Azure-Samples'
+        with:
+
+          sarif_file: ${{ steps.msdo.outputs.sarifFile }}
@@ -0,0 +1,39 @@
+name: Validate AZD template
+on:
+  push:
+    branches: [ main ]
+    paths:
+      - "infra/**"
+  pull_request:
+    branches: [ main ]
+    paths:
+      - "infra/**"
+  workflow_dispatch:
+
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    permissions:
+      security-events: write
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Build Bicep for linting
+        uses: azure/CLI@v1
+        with:
+          inlineScript: az config set bicep.use_binary_from_path=false && az bicep build -f infra/main.bicep --stdout
+
+      - name: Run Microsoft Security DevOps Analysis
+        uses: microsoft/security-devops-action@v1
+        id: msdo
+        continue-on-error: true
+        with:
+          tools: templateanalyzer
+
+      - name: Upload alerts to Security tab
+        uses: github/codeql-action/upload-sarif@v3
+        if: github.repository == 'Azure-Samples/langfuse-on-azure'
+        with:
+          sarif_file: ${{ steps.msdo.outputs.sarifFile }}