/symphony-f2

CI/CD for IaC on multiple orchestrators

Primary LanguageShellMIT LicenseMIT

Symphony

Symphony is a framework and set of patterns and best practices for developing, testing, and deploying infrastructure on Azure using Infrastructure as Code (IAC.) It includes modern DevOps practices for IAC such as Main and Pull Request workflows, IaC Code Validation & Linting, Automated Testing, Security Scanning, Multi-environment deployments, modules dependencies and more.

It is an enterprise-level CI/CD multi-orchestrator, multi-IaC framework that encapsulates those best practices and guidelines for developing, testing, and deploying infrastructure as code to host large-scale solutions and get your production ready in no time.

Symphony supports the following IAC tools:

  • Terraform
  • Bicep

Symphony supports the following Build Orchestrators:

  • Azure DevOps
  • GitHub

Why use Symphony

Symphony offers the workflows needed to implement IaC automation. Symphony provides multi-environment support and can be used on both public and non-public clouds. With the easily pluggable and integrable workflow design to integrate more tools with no need to update the workflow or change the CI/CD pipeline. Symphony offers all these features and more.

Feature Description
Security Scanning Symphony helps preventing credential leaking in the IAC code by running security scanners in the workflows.
Linting & Validation Symphony ensures no invalid IaC code early and reduces the development iteration loop.
IaC Modules Dependency Symphony offers a clear structure to organize modules based on dependency, while allowing for the flexibility of automatically passing outputs from one module to the next.
Modules & End to end testing Symphony provides samples to write, execute, and report on module tests and end to end tests for the IaC modules.
Multi Environment support Symphony offers a clear pattern to store different IaC modules configurations per environment allowing the workflows can swap configs based on target environment

Getting Started

Follow step-by-step instructions in the Getting Started Document

Symphony Workflows

A mature workflow for IAC not only automates the deployment of the IAC resources but also incorporates engineering fundamentals, resources validation, dependency management, test execution, security scanning, and more. Symphony offers multiple workflows to ensure engineering excellence at every stage of the IaC process. Find more in the Symphony Workflows Document.

Symphony Environment

An environment in Symphony is represented by a set of configuration files, each representing the input values for the IAC modules used, and a set of credentials used to authenticate to the cloud-related environment subscription at which resources are deployed. Find more about it in the Symphony Environments Document

Symphony Testing

Symphony offers samples to write and execute both modules and end-to-end tests for the IaC module code and how the tests are integrated into the symphony workflows. Find more in the Symphony Testing Document

Contributing

Contributions to the project are welcome! Please follow Contributing Guide.

License

This project is under an MIT License.

Trademarks

This project may contain trademarks or logos for projects, products, or services. Authorized use of Microsoft trademarks or logos is subject to and must follow Microsoft's Trademark & Brand Guidelines. Use of Microsoft trademarks or logos in modified versions of this project must not cause confusion or imply Microsoft sponsorship. Any use of third-party trademarks or logos is subject to those third-party's policies.