Another fix

Author: ljfp

.github/workflows/deploy.yml

@@ -2,54 +2,64 @@ name: Deploy to EC2
 
 on:
   push:
-    branches:
-      - main
+    branches: [main]
   workflow_dispatch:
 
 jobs:
   deploy:
     runs-on: ubuntu-latest
-
+    env:
+      APP_DIR: ${{ secrets.EC2_APP_DIR }}
+      PYTHON_BIN: ${{ secrets.EC2_PYTHON_BIN }}
+      SERVICE_NAME: ${{ secrets.EC2_SERVICE_NAME }}
+      UVICORN_PORT: ${{ secrets.EC2_UVICORN_PORT }}
     steps:
       - name: Checkout repository
         uses: actions/checkout@v4
 
-      - name: Export deployment settings
-        run: |
-          echo "EC2_HOST=${{ secrets.EC2_HOST }}" >> "$GITHUB_ENV"
-          echo "EC2_USER=${{ secrets.EC2_USER }}" >> "$GITHUB_ENV"
-          if [ -n "${{ vars.DEPLOY_PORT }}" ]; then
-            echo "PORT=${{ vars.DEPLOY_PORT }}" >> "$GITHUB_ENV"
-          else
-            echo "PORT=80" >> "$GITHUB_ENV"
-          fi
-
-      - name: Set up SSH key
-        uses: webfactory/ssh-agent@v0.8.0
+      - name: Start SSH agent
+        uses: webfactory/ssh-agent@v0.9.0
         with:
           ssh-private-key: ${{ secrets.EC2_SSH_KEY }}
 
       - name: Add EC2 host to known_hosts
         run: |
           mkdir -p ~/.ssh
-          ssh-keyscan -H "$EC2_HOST" >> ~/.ssh/known_hosts
+          ssh-keyscan -H "${{ secrets.EC2_HOST }}" >> ~/.ssh/known_hosts
+
+      - name: Ensure remote application directory exists
+        env:
+          REMOTE_APP_DIR: ${{ env.APP_DIR }}
+        run: |
+          set -euo pipefail
+          APP_DIR="${REMOTE_APP_DIR:-/home/ubuntu/nasa-sky-explorer}"
+          ssh "${{ secrets.EC2_USER }}@${{ secrets.EC2_HOST }}" "mkdir -p ${APP_DIR}"
 
-      - name: Sync project to EC2
+      - name: Sync repository to EC2
+        env:
+          REMOTE_APP_DIR: ${{ env.APP_DIR }}
         run: |
+          set -euo pipefail
+          APP_DIR="${REMOTE_APP_DIR:-/home/ubuntu/nasa-sky-explorer}"
           rsync -az --delete \
-            --exclude '.git' \
-            --exclude '.github' \
-            --exclude '.venv' \
-            --exclude '__pycache__' \
-            --exclude '*.pyc' \
-            --exclude '.ruff_cache' \
-            ./ "$EC2_USER@$EC2_HOST:/home/$EC2_USER/nasa-sky-app"
-
-      - name: Execute remote deployment
+            --exclude ".git" \
+            --exclude ".github/" \
+            --exclude ".venv/" \
+            --exclude "logs/" \
+            ./ "${{ secrets.EC2_USER }}@${{ secrets.EC2_HOST }}:${APP_DIR}/"
+
+      - name: Install Python dependencies and restart the service
+        env:
+          REMOTE_APP_DIR: ${{ env.APP_DIR }}
+          REMOTE_PYTHON_BIN: ${{ env.PYTHON_BIN }}
+          REMOTE_SERVICE: ${{ env.SERVICE_NAME }}
+          REMOTE_PORT: ${{ env.UVICORN_PORT }}
         run: |
-          ssh "$EC2_USER@$EC2_HOST" "
-            set -euo pipefail
-            cd ~/nasa-sky-app
-            chmod +x deploy/deploy.sh
-            APP_ROOT=/opt/nasa-sky-app SERVICE_NAME=nasa-sky-app PORT=${PORT:-80} ./deploy/deploy.sh
-          "
+          set -euo pipefail
+          APP_DIR="${REMOTE_APP_DIR:-/home/ubuntu/nasa-sky-explorer}"
+          PYTHON_BIN="${REMOTE_PYTHON_BIN:-/usr/bin/python3}"
+          SERVICE_NAME="${REMOTE_SERVICE:-nasaspaceapps}"
+          UVICORN_PORT="${REMOTE_PORT:-8000}"
+
+          ssh "${{ secrets.EC2_USER }}@${{ secrets.EC2_HOST }}" \
+            "cd '${APP_DIR}' && APP_DIR='${APP_DIR}' PYTHON_BIN='${PYTHON_BIN}' SERVICE_NAME='${SERVICE_NAME}' UVICORN_PORT='${UVICORN_PORT}' bash deploy/remote_deploy.sh"

README.md

@@ -38,38 +38,51 @@ NASASpaceAppsChallenge2025/
 ├── src/
 │   ├── __init__.py
 │   └── server.py         # FastAPI application serving the HTML page
-└── web/
-    └── index.html        # Static HTML served at the root route
-└── deploy/
-   └── deploy.sh         # Helper script to install and run the service via systemd
+├── web/
+│   ├── index.html        # Landing page served at the root route
+│   └── aladin.html       # Secondary page under /aladin
+├── deploy/
+│   └── remote_deploy.sh  # Remote helper script invoked by the CI workflow
+└── .github/
+    └── workflows/
+        └── deploy.yml    # Continuous deployment pipeline for EC2
 ```
 
 Feel free to build on this foundation for richer APIs or interfaces.
 
-## Deployment script
+## Continuous deployment to EC2
 
-The `deploy/deploy.sh` script provisions the application on a Linux host using `systemd`. It:
+Every push to `main` triggers the GitHub Actions workflow in `.github/workflows/deploy.yml`. The
+pipeline performs the following steps:
 
-- Syncs the repository into `/opt/nasa-sky-app/app` (configurable with `APP_ROOT`).
-- Ensures `/opt/nasa-sky-app` exists with the proper ownership, then syncs code and creates a
-   virtual environment for dependencies.
-- Generates a `systemd` unit that runs Uvicorn on port `80` by default.
-- Enables and restarts the service.
+1. Checks out the latest code.
+2. Copies the repository to your EC2 instance via `rsync` (preserving any existing `.venv` or
+   `logs` folders).
+3. Runs `deploy/remote_deploy.sh` on the instance to create/refresh a virtual environment, install
+   dependencies, and restart the application via `systemd` when available. If a systemd service is
+   not present, it falls back to launching Uvicorn in the background with `nohup`.
 
-Run it directly on the target server after cloning or syncing the repository:
+### Required GitHub secrets
 
-```bash
-chmod +x deploy/deploy.sh
-APP_ROOT=/opt/nasa-sky-app SERVICE_NAME=nasa-sky-app ./deploy/deploy.sh
-```
+Create the following secrets at **Settings → Secrets and variables → Actions**:
+
+- `EC2_HOST` – Public DNS name or IP address of the instance.
+- `EC2_USER` – SSH user (for example, `ubuntu`).
+- `EC2_SSH_KEY` – Private SSH key allowed to log in as `EC2_USER`.
+
+### Optional overrides
 
-Override `SERVICE_USER`, `SERVICE_GROUP`, `PORT`, or `PYTHON_BIN` to fit your environment. When the
-port is below `1024` (the default `80`), the generated unit grants
-`CAP_NET_BIND_SERVICE` so the application can bind to the port without running as root.
+You can customise the deployment without editing the workflow by providing additional (optional)
+secrets:
 
-### GitHub Actions deployment
+- `EC2_APP_DIR` – Absolute path where the repo should live (defaults to `/home/ubuntu/nasa-sky-explorer`).
+- `EC2_PYTHON_BIN` – Python interpreter used to build the virtual environment (defaults to
+  `/usr/bin/python3`).
+- `EC2_SERVICE_NAME` – Name of the `systemd` service to restart (defaults to `nasaspaceapps`).
+- `EC2_UVICORN_PORT` – Port exposed by Uvicorn when no `systemd` unit is available (defaults to
+  `8000`).
 
-A workflow at `.github/workflows/deploy.yml` uses the repository secrets `EC2_HOST`, `EC2_USER`,
-and `EC2_SSH_KEY` to sync the codebase to an Ubuntu 24.04 EC2 instance and execute the deployment
-script remotely. It runs on every push to `main` (and can be triggered manually). Optional
-repository variable `DEPLOY_PORT` lets you override the port without editing the workflow.
+Ensure the EC2 machine has `git`, `rsync`, `python3`, and `pip` installed. If you prefer a managed
+service, create a `systemd` unit named after `EC2_SERVICE_NAME` that executes
+`/home/ubuntu/nasa-sky-explorer/.venv/bin/uvicorn src.server:app --host 0.0.0.0 --port 8000`
+and the workflow will restart it after each deployment.

deploy/deploy.sh

@@ -0,0 +1,35 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+APP_DIR="${APP_DIR:-$(pwd)}"
+PYTHON_BIN="${PYTHON_BIN:-/usr/bin/python3}"
+SERVICE_NAME="${SERVICE_NAME:-nasaspaceapps}"
+UVICORN_PORT="${UVICORN_PORT:-8000}"
+
+if [ ! -d ".venv" ]; then
+  "${PYTHON_BIN}" -m venv .venv
+fi
+
+# shellcheck source=/dev/null
+source .venv/bin/activate
+pip install --upgrade pip wheel
+pip install -r requirements.txt
+
+deactivate || true
+
+LOG_DIR="${APP_DIR}/logs"
+mkdir -p "${LOG_DIR}"
+
+if command -v systemctl >/dev/null 2>&1; then
+  sudo systemctl daemon-reload || true
+  if sudo systemctl list-unit-files | grep -q "^${SERVICE_NAME}\.service"; then
+    sudo systemctl restart "${SERVICE_NAME}.service"
+    exit 0
+  fi
+fi
+
+echo "systemd unit ${SERVICE_NAME}.service not found or unavailable. Relaunching Uvicorn with nohup."
+
+pkill -f "uvicorn src.server:app" || true
+nohup "${APP_DIR}/.venv/bin/uvicorn" src.server:app --host 0.0.0.0 --port "${UVICORN_PORT}" \
+  >"${LOG_DIR}/uvicorn.log" 2>&1 &