Everyone figured static sites were dead simple—drag, drop to Netlify or Vercel, done. No fuss, no infra headaches. But here’s the twist: this hands-on deploy to a custom Azure Ubuntu VM with Azure DevOps, Terraform, Ansible, and Nginx flips the script. It hands you full control, enterprise muscle for a humble finance page, and proves IaC isn’t just buzz for monoliths.
Look, market’s buzzing with serverless hype. Static hosts grew 40% last year per BuiltWith data. Yet devs crave ownership—custom Nginx tweaks, persistent VMs. This setup changes that game. It’s not hype; it’s deployable proof.
Why Bother with This Stack Over Netlify?
Netlify’s free tier? Sure, for blogs. But finance sites demand compliance, custom caching, maybe WAF later. Azure gives SLAs, billing predictability. Cost? This VM idles at $15/month—cheaper than overkill CDNs for low traffic.
And data point: Azure’s market share in IaaS hit 23% Q2 2024, per Synergy Research. DevOps pros (that’s 60% of us, Stack Overflow says) want pipelines that scale to apps, not just Jamstack toys.
The repo’s a GitHub import: simple index.html finance page. Pulled into Azure Repos. Clean.
Terraform script? Provisions resource group, VNet, NSG (ports 22/80), static public IP, Ubuntu 22.04 VM. Output: vm_public_ip = “20.124.184.86”. Static IP’s non-negotiable—dynamics reboot and ghost your pipeline.
Ansible playbook installs Nginx, starts it, then the clutch move:
sudo chown -R azureuser:azureuser /var/www/html sudo chmod -R 755 /var/www/html
Nginx defaults root-owned dir. Pipeline’s azureuser can’t touch it. Boom, failure.
That Permissions Error Everyone Skips
First pipeline bombed:
rm: cannot remove ‘/var/www/html/index.nginx-debian.html’: Permission denied Failed to clean the target folder. Command rm -rf ‘/var/www/html’/* exited with code 1.
Even post-chown in Ansible—legacy VM from prior run. Manual SSH fix, rerun. Green lights.
YAML’s elegant. Triggers on main push, SelfHostedPool, CopyFilesOverSSH task wipes /var/www/html, dumps site files. Then SSH ls verifies.
trigger:
branches:
include:
- main
pool:
name: SelfHostedPool
stages:
- stage: Deploy
jobs:
- job: DeployJob
steps:
- checkout: self
- task: CopyFilesOverSSH@0
inputs:
sshEndpoint: 'ubuntu-nginx-ssh'
sourceFolder: '$(Build.SourcesDirectory)'
contents: '**'
targetFolder: '/var/www/html'
cleanTargetFolder: true
- task: SSH@0
inputs:
sshEndpoint: 'ubuntu-nginx-ssh'
runOptions: 'inline'
inline: 'ls /var/www/html'
SSH Service Connection: Project Settings > New > SSH. Host: IP, Port 22, azureuser creds. No green badge? Normal. Pipeline proves it.
Site live: http://20.124.184.86. Magic.
But here’s my edge insight—overlooked in the original: this mirrors GitHub Actions’ rise in 2019. Back then, Azure DevOps lagged in YAML simplicity. Now? It’s neck-and-neck, but Azure wins on hybrid clouds. Prediction: by 2025, 30% static deploys shift to IaC like this, per Gartner IaC adoption curves. No PR spin; it’s market math.
Corporate hype? Nah, this tut calls its own shots—exposes the rm -rf gotcha head-on. Refreshing.
Does This Scale Beyond Static Sites?
Absolutely. Swap Ansible for Docker, add databases—boom, full-stack CI/CD. Devs report 70% faster iterations with such pipelines (JetBrains survey). But watch costs: VM + pipeline minutes add up. Optimize with spot instances.
Permissions fix is universal. Any SSH-deploy? Chown first. Saved my bacon thrice this month alone.
Market dynamic: Terraform’s HCL syntax edges Pulumi in enterprise (HashiCorp’s 50% IaC mindshare). Ansible? Agentless king for config mgmt.
One punchy caveat. Self-hosted agents? Secure ‘em. Exposed pipelines invite grief.
And the voice? Feels indie, battle-tested. Not vendor shill.
Why Does Azure DevOps Beat GitHub Actions Here?
GitHub’s great for OSS. Azure? Integrates ARM templates natively, variable groups for secrets. Multi-cloud friendly if you swap providers in Terraform. Actions charge per minute; Azure’s generous free tier for small teams.
Data: Azure DevOps active orgs up 25% YoY. It’s maturing.
Wander a sec—tried Vercel once for a static API mock. Fine, till custom headers needed. Back to VMs.
🧬 Related Insights
- Read more: React 19 Finally Drops: Compiler Hype Meets Reality Check
- Read more: Grep’s Funeral: Can LLMs Really Map Your Codebase?
Frequently Asked Questions
What causes permission denied in Azure DevOps SSH deploy?
Nginx’s /var/www/html defaults to root ownership. Run chown -R azureuser:azureuser /var/www/html and chmod 755 before pipelines.
How do I set up Terraform for Azure Ubuntu VM?
Use azurerm provider, define resource group, VNet, NSG (22/80), static PIP, Linux VM. terraform apply spits public IP.
Is static public IP required for Azure VM deploys?
Yes—dynamics change on reboot, breaking SSH connections in pipelines.
