first commit

Author: jonathan-vella

.github/copilot-instructions.md

@@ -0,0 +1,35 @@
+# SAIF on Azure Local - Disconnected Operations
+
+## Project Overview
+This workspace contains Kubernetes manifests and configuration for deploying the SAIF (Secure AI Foundations) application on Azure Local in disconnected operations mode.
+
+## Architecture
+- **Target Platform**: Azure Local with AKS Arc (disconnected mode)
+- **Application**: 3-tier containerized application (Web + API + SQL Server)
+- **Authentication**: SQL authentication (Microsoft Entra ID not supported in disconnected mode)
+- **Monitoring**: Local Prometheus/Grafana stack (no Azure Monitor)
+- **Container Registry**: Local Azure Container Registry for disconnected operations
+
+## Key Constraints
+- No Microsoft Entra ID support in disconnected mode
+- Supported Kubernetes versions: 1.27.7, 1.27.9, 1.28.5, 1.28.9, 1.29.2, 1.29.4
+- Static IP allocation required for logical networks
+- CLI-based management (portal limitations)
+- No Azure cloud integrations (App Insights, Key Vault, Managed Identity)
+
+## Development Guidelines
+- All diagrams must use Mermaid format
+- Kubernetes manifests should not depend on cloud services
+- Use ConfigMaps and Secrets for local configuration only
+- Health checks must work without internet connectivity
+- Container images must be pre-loaded to local registry
+
+## Deployment Strategy
+- Offline image management for container deployments
+- Local monitoring and logging (no cloud dependencies)
+- SQL Server VMs with SQL authentication
+- Static networking configuration
+
+## Reference Documentation
+- Azure Local disconnected operations: https://learn.microsoft.com/en-us/azure/azure-local/manage/disconnected-operations-overview
+- AKS Arc disconnected: https://learn.microsoft.com/en-us/azure/azure-local/manage/disconnected-operations-aks