Promote staging->production: BuildKit CI, Compact JSON logging, consolidated compose + latest app code

ci: re-enable BuildKit (runner now has buildx plugin)
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
2026-06-18 19:14:59 +03:00 · 2026-06-18 18:09:35 +03:00 · 2026-06-18 18:02:29 +03:00 · 2026-06-18 17:58:00 +03:00 · 2026-06-18 17:36:59 +03:00 · 2026-06-18 16:29:07 +03:00
8 changed files with 55 additions and 29 deletions
@@ -1,13 +1,19 @@
-name: Build and Push Docker Images Staging
+name: Build and Push Docker Images

+# Branch-driven deploys — no yaml edits to switch environment:
+#   merge into `staging`    -> tag :staging    (staging Watchtower deploys)
+#   merge into `production` -> tag :production (production Watchtower deploys)
+# `main` is the day-to-day work branch and deploys nothing.
 on:
  push:
    branches:
      - staging
+      - production

 env:
  GIT_HOST: git.easysoft.ro
  REGISTRY_HOST: registry.easysoft.ro
+  DOCKER_BUILDKIT: "1"
  API_IMAGE: apps/myai-api
  CV_MATCHER_API_IMAGE: apps/myai-cv-matcher-api
  RAG_API_IMAGE: apps/myai-rag-api
@@ -16,18 +22,19 @@ env:
  CV_CLEANUP_JOB_IMAGE: apps/myai-cv-cleanup-job
  CV_SEARCH_JOB_IMAGE: apps/myai-cv-search-job
  PAGE_FETCHER_API_IMAGE: apps/myai-page-fetcher-api
-  IMAGE_TAG: staging
+  IMAGE_TAG: ${{ github.ref_name }}        # branch name == image tag (staging | production)

 jobs:
  build:
    runs-on: host

    steps:
-      - name: Checkout repository
+      - name: Checkout the pushed commit
        env:
          TOKEN: ${{ secrets.REPO_TOKEN }}
        run: |
          git clone "http://gelu:${TOKEN}@${GIT_HOST}:3000/${GITHUB_REPOSITORY}.git" .
+          git checkout "${{ github.sha }}"

      - name: Login to registry
        run: |
@@ -97,4 +104,9 @@ jobs:

      - name: Push Page Fetcher API image
        run: |
-          docker push "${REGISTRY_HOST}/${PAGE_FETCHER_API_IMAGE}:${IMAGE_TAG}"
+          docker push "${REGISTRY_HOST}/${PAGE_FETCHER_API_IMAGE}:${IMAGE_TAG}"
+
+      - name: Reclaim disk space (keep recent build cache)
+        if: always()
+        run: |
+          docker image prune -f   # dangling only (keep base images)
@@ -376,3 +376,6 @@ files/

 /docker-compose/.env.production
 /docker-compose/.env.staging
+
+# local infra access notes (secrets) — never commit
+ACCESS.md
@@ -34,11 +34,15 @@ This applies to both the staging and production repos as appropriate.
 - .NET 10, ASP.NET Core, Worker Service
 - Entity Framework Core + SQL Server (multi-schema)
 - Refit for typed HTTP clients between services
- Serilog (JSON structured logging, Console + File + Email sinks)
+- Serilog — Compact JSON logs to stdout (+ optional email sink); see Observability
 - MailKit for SMTP (used exclusively in `email-api`)
 - Docker Compose for local and production deployment
 - Watchtower for automatic container updates in production

+## Observability (central stack on monitoring host 10.0.0.156)
+- **Logs**: every service uses `ConfigureJsonSerilog(ServiceName, appVersion)` (startup-helpers) → Serilog **Compact JSON** to stdout, enriched `Application`/`Environment`/`AppVersion`. The host's Grafana **Alloy** agent ships stdout → **Loki**; view/query in Grafana. No file sink; optional email sink only if `SerilogEmail:*` is configured.
+- **No app metrics/traces** — these are simple/minimal services, so (unlike easyDent) they don't expose Prometheus metrics or OTLP traces. Container/host metrics still come from the host's cAdvisor/node_exporter.
+
 ## Project taxonomy

 | Category | Naming | Contains | EF dependency |
@@ -23,6 +23,7 @@
    <PackageVersion Include="Serilog.AspNetCore" Version="10.0.0" />
    <PackageVersion Include="Serilog.Enrichers.Environment" Version="3.0.1" />
    <PackageVersion Include="Serilog.Sinks.Console" Version="6.1.1" />
+    <PackageVersion Include="Serilog.Formatting.Compact" Version="3.0.0" />
    <PackageVersion Include="Serilog.Sinks.Email" Version="4.2.1" />
    <PackageVersion Include="Serilog.Sinks.File" Version="7.0.0" />
    <!-- Swagger -->
@@ -39,11 +39,10 @@ public static class StartupExtensions
                .ReadFrom.Configuration(context.Configuration)
                .ReadFrom.Services(services)
                .Enrich.FromLogContext()
-                .Enrich.WithMachineName()
-                .Enrich.WithEnvironmentName()
-                .Enrich.WithProperty("Service", serviceName)
+                .Enrich.WithProperty("Application", serviceName)
+                .Enrich.WithProperty("Environment", context.HostingEnvironment.EnvironmentName)
                .Enrich.WithProperty("AppVersion", appVersion)
-                .WriteTo.Console(new Serilog.Formatting.Json.JsonFormatter());
+                .WriteTo.Console(new Serilog.Formatting.Compact.CompactJsonFormatter());

            AddEmailSinkIfConfigured(configuration, context.Configuration, serviceName);
        });
@@ -57,11 +56,10 @@ public static class StartupExtensions
                .ReadFrom.Configuration(builder.Configuration)
                .ReadFrom.Services(services)
                .Enrich.FromLogContext()
-                .Enrich.WithMachineName()
-                .Enrich.WithEnvironmentName()
-                .Enrich.WithProperty("Service", serviceName)
+                .Enrich.WithProperty("Application", serviceName)
+                .Enrich.WithProperty("Environment", builder.Environment.EnvironmentName)
                .Enrich.WithProperty("AppVersion", appVersion)
-                .WriteTo.Console(new Serilog.Formatting.Json.JsonFormatter());
+                .WriteTo.Console(new Serilog.Formatting.Compact.CompactJsonFormatter());

            AddEmailSinkIfConfigured(configuration, builder.Configuration, serviceName);
        });
@@ -17,6 +17,7 @@
    <PackageReference Include="DotNetEnv" />
    <PackageReference Include="Serilog.AspNetCore" />
    <PackageReference Include="Serilog.Enrichers.Environment" />
+    <PackageReference Include="Serilog.Formatting.Compact" />
    <PackageReference Include="Serilog.Sinks.Email" />
    <PackageReference Include="Serilog.Sinks.File" />
    <PackageReference Include="Swashbuckle.AspNetCore" />
@@ -1,20 +1,27 @@
-# Introduction 
-TODO: Give a short introduction of your project. Let this section explain the objectives or the motivation behind this project. 
+# myAi

-# Getting Started
-TODO: Guide users through getting your code up and running on their own system. In this section you can talk about:
-1.	Installation process
-2.	Software dependencies
-3.	Latest releases
-4.	API references
+The **myai.ro** platform — a set of .NET microservices (CV matching, RAG, email, CV search, page
+fetching, …) behind a web frontend + API. Part of the easySoft platform.

-# Build and Test
-TODO: Describe and show how to build your code and run the tests. 
+## Layout
+Multiple services (`*-api`, `*-job`) + `web`, sharing a common bootstrap in
+`startup-helpers/` (Serilog, Swagger, `.env`/Key Vault loading, middleware). See **CLAUDE.md**
+for the full service map, dependency chain, and conventions.

-# Contribute
-TODO: Explain how other users and developers can contribute to make your code better. 
+## Run locally
+```bash
+docker compose up --build      # or run individual services with: dotnet run --project <svc>
+```

-If you want to learn more about creating good readme files then refer the following [guidelines](https://docs.microsoft.com/en-us/azure/devops/repos/git/create-a-readme?view=azure-devops). You can also seek inspiration from the below readme files:
- [ASP.NET Core](https://github.com/aspnet/Home)
- [Visual Studio Code](https://github.com/Microsoft/vscode)
- [Chakra Core](https://github.com/Microsoft/ChakraCore)
+## Deploy
+CI builds `registry.easysoft.ro/apps/myai-*:{staging,production}`; Watchtower rolls them out to
+the **staging (`10.0.0.183`)** + **production (`10.0.0.248`)** Portainer stacks. Edge Caddy serves
+**myai.ro** (prod) / **myai.easysoft.ro** (staging).
+
+## Logging
+Every service: `ConfigureJsonSerilog(name, version)` → Serilog **Compact JSON** to stdout → Grafana
+**Alloy** → **Loki**. No app metrics/traces (simple services).
+
+---
+See **CLAUDE.md** for the detailed solution guide and **ACCESS.md** (local, gitignored) for
+infrastructure access.
Author	SHA1	Message	Date
claude	9a33dc019a	Promote staging->production: BuildKit CI, Compact JSON logging, consolidated compose + latest app code Build and Push Docker Images / build (push) Successful in 3m23s Details	2026-06-18 19:14:59 +03:00
claude	62654978af	ci: re-enable BuildKit (runner now has buildx plugin) Build and Push Docker Images / build (push) Successful in 43m53s Details Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-18 18:09:35 +03:00
claude	7da084c174	ci: revert DOCKER_BUILDKIT (runner job env has no buildx plugin -> build failed) Keep the cache win (no base-image nuke); back to the legacy builder which the job context supports. BuildKit needs buildx installed in the runner before it can be used. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-18 18:02:29 +03:00
claude	27f4cfe21e	ci: enable BuildKit + let its GC manage the layer cache DOCKER_BUILDKIT=1 (explicit) so the restore layer is cached across builds; drop the explicit 'docker builder prune' (it was wiping that cache) and rely on BuildKit's own GC + 86GB headroom. Cleanup keeps dangling-image removal only. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-18 17:58:00 +03:00
claude	903fbcd143	ci: preserve Docker build cache (faster runner) Stop wiping the layer cache + base images after every build (the host has 86GB free). Keep base images (prune dangling only) and ~2 weeks of build cache, so the cache-friendly Dockerfiles (COPY *.csproj + restore before source) actually benefit -> warm rebuilds skip restore and base-image pulls. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-18 17:36:59 +03:00
claude	c5e1b7f687	ci: branch-driven deploys (staging/production branches), build the pushed commit main = day-to-day work (no deploy). Merge into staging -> :staging, into production -> :production; IMAGE_TAG = branch name. Also fixes the checkout to build the PUSHED commit (git checkout $GITHUB_SHA) instead of always cloning the default branch. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-18 16:29:07 +03:00
claude	9b33876c11	docs: replace template README with a proper one (intro, run, deploy, logging) Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-18 16:04:23 +03:00
claude	2d5572725d	docs: add Observability section to CLAUDE.md (Compact JSON logs->Loki); gitignore ACCESS.md Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-18 15:46:46 +03:00
claude	da1f90449e	Merge observability/compact-json: standardize Serilog to Compact JSON (Application/Environment/AppVersion enrichment)	2026-06-18 10:59:13 +03:00
claude	2192c3f4c5	Logs: Compact JSON + aligned enrichment in shared StartupExtensions CompactJsonFormatter in both ConfigureJsonSerilog overloads; rename Service->Application, EnvironmentName->Environment (keep AppVersion). Applies to all myAi services. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-17 11:03:55 +03:00
claude	492859f17f	ci: prune images + build cache after build (prevent runner disk exhaustion) Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-16 22:51:31 +03:00
claude	1920885835	Merge main into production: PR #55 — Fix CV keyword extraction prompt Build and Push Docker Images Staging / build (push) Successful in 52s Details	2026-06-09 16:41:03 +03:00
claude	a3567ce8e9	Merge pull request 'Fix CV keyword extraction — derive from candidate CV, not matched job' (#55 ) from feature/fix-keyword-extraction-prompt into main Build and Push Docker Images Staging / build (push) Successful in 2m23s Details Merge PR #55: Fix CV keyword extraction — derive from candidate CV, not matched job	2026-06-09 13:40:10 +00:00
claude	eb83d28ed5	Merge staging into production: PR #54 — Fix hardcoded user-facing strings Build and Push Docker Images Staging / build (push) Successful in 10m36s Details	2026-06-08 22:34:35 +03:00
claude	b6d9aea3bc	Merge branch 'main' into production Build and Push Docker Images Staging / build (push) Successful in 1m5s Details	2026-06-08 22:10:26 +03:00
claude	2b9132a3a9	Merge branch 'main' into production Build and Push Docker Images Staging / build (push) Failing after 14s Details	2026-06-08 22:08:32 +03:00
claude	e5bf56cc4d	Merge branch 'main' into production Build and Push Docker Images Staging / build (push) Successful in 42s Details	2026-06-08 21:48:24 +03:00
claude	8f58708cd9	Revert "Suppress environment prefix in email subjects on Production" Build and Push Docker Images Staging / build (push) Successful in 1m35s Details This reverts commit `06dd0140d6`.	2026-06-08 21:45:45 +03:00
claude	06dd0140d6	Suppress environment prefix in email subjects on Production [ENV_NAME] prefix is now only prepended in non-production environments (Development, Staging, etc.). Production emails get a clean subject line. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-06-08 21:45:29 +03:00
claude	0aee7c4ed6	Changes Build and Push Docker Images Staging / build (push) Successful in 45s Details	2026-06-08 21:31:35 +03:00
claude	cd661fe613	Merge pull request 'Staging to Production' (#51 ) from main into production Merge staging to production	2026-06-08 18:28:46 +00:00