In a nutshell: You install your work environment (WSL + VS Code + tools) and learn Git — the save and collaboration system you’ll use in ALL subsequent modules. You also set up the Hands-on Project (React + FastAPI) that you’ll build upon throughout the course.
Before doing DevOps, you need two things: a Linux environment (because 90% of servers run on Linux) and Git (because all code lives in Git).
What is a server? A server is just a computer that runs 24/7 and responds to requests from other computers. When you type google.com, your browser sends a request to a Google server, which responds with the web page. Your application’s server is the computer where your app runs and waits for user requests.
Git is like a video game save system. You can create save points (called commits), go back in time if you made a mistake, and even work on multiple versions in parallel (called branches) before merging everything together. Without Git, to keep a history of your work, you’d have to copy your folder after every change and rename it by hand — and you’d end up with folders like project_final_v2_FINAL_really_final.zip.
WSL (Windows Subsystem for Linux) lets you run real Linux inside Windows, without a heavy virtual machine.
Already on Linux or macOS? You already have a native Unix terminal. Skip the “WSL2 + Ubuntu Installation” and “VS Code + Remote WSL Installation” sections — they’re only for Windows users. Jump straight to “Installing Python, uv and Bun”.
You have two ways to do this — the result is exactly the same:
Option A — Command line: open PowerShell as administrator and type:
Fenêtre de terminal
wsl --install
Option B — From the Microsoft Store: open the Microsoft Store, search for “Ubuntu”, and click Install. It’s the same thing as the command above, just the graphical version.
In both cases, restart your PC. On reboot, Ubuntu opens and asks you for a username and password.
⚠️ During installation, make sure to check the box “Add to PATH”. Without this, the code . command won’t work in the terminal.
Install the WSL extension (search for “WSL” in the extensions)
In Ubuntu, type code . in any folder — it opens VS Code connected to WSL
Linux / macOS: just install VS Code normally, no need for the WSL extension. On macOS, open VS Code then Cmd+Shift+P → “Shell Command: Install ‘code’ command in PATH” to enable code . in the terminal.
You don’t need to learn Python or Bun for this course. We install them because the Hands-on Project needs them: Python (a programming language) for the backend, Bun (a tool to run JavaScript) for the frontend, and uv (a tool to manage Python dependencies). You’ll just copy-paste commands to install and run the app. The goal of this course is DevOps, not development. Each tool is explained in detail right below.
Before we begin, here are some terms you’ll see everywhere:
Term
Simple explanation
Application (app)
A program that does something. Our app = a task list.
Dependency (= package)
A piece of code written by someone else that your app uses. Instead of coding everything yourself, you reuse existing work. Like ready-made ingredients instead of making everything from scratch. We also call it a package because it’s code packaged up and ready to install. FastAPI is a package. Pytest is a package.
Package manager
A tool that downloads, installs, and updates packages (dependencies) automatically. You tell it “I need FastAPI” and it goes and fetches it from the Internet, installs it, and handles updates. Each language has its own: pip/uv for Python, npm/bun for JavaScript, apt for Linux.
URL
A web address. When you type instagram.com/explore in your browser’s address bar, that’s a URL. It’s the exact address of a page or resource on the Internet — like a postal address, but for a website. localhost:8000/api/tasks is also a URL, except it points to your own machine.
JSON
A text format for structuring data. It looks like this: {"name": "Jean", "age": 25}. It’s the standard format programs use to exchange information. When your browser asks a server for data, the response is often in JSON.
API
The set of “entry doors” of a program. Imagine: when you open Instagram, the app on your phone sends a request to Instagram’s server (like “give me the 20 latest posts in my feed”). The server receives the request, fetches the data, and sends back a response. The API is this system of entry doors: a list of addresses (URLs) you can call, and for each address, the server knows what to do and what to respond. Our backend exposes an API with addresses like /api/tasks (to get tasks) or /api/tasks via POST (to create one).
Framework
A set of ready-to-use tools for building a specific type of application. FastAPI is a framework for creating APIs in Python. React is a framework for creating web interfaces.
Endpoint
A specific URL in an API that performs an action. GET /api/tasks is an endpoint that returns the list of tasks.
Python is a very popular programming language. Our backend (FastAPI API) is written in Python. You just need to install it:
Fenêtre de terminal
sudoaptupdate && sudoaptinstall-ypython3
python3--version
# Python 3.x.x
Let’s break down this command — it’s the first “real” Linux command of the course, so let’s understand it:
sudo = “Super User DO”. On Linux, certain actions are reserved for the administrator (installing software, modifying system configuration…). By default, you’re a regular user — you don’t have permission to do everything. sudo before a command means “run this as administrator”. It’s exactly like on Windows when you do right-click → Run as administrator. Linux will ask for your password the first time.
apt = the package manager for Ubuntu and Debian. It’s like a command-line app store. Instead of searching for software on the Internet, downloading an .exe and installing it manually, you type apt install software_name and apt goes and fetches it, downloads it, and installs it for you. It also handles updates and uninstallation. You saw in the table above that each language has its own package manager (uv for Python, bun for JS) — apt is the one for your operating system, for installing system software (git, curl, docker, python3…). Each Linux family has its own:
Distribution
Package manager
Installation example
Ubuntu / Debian
apt
sudo apt install git
Fedora
dnf
sudo dnf install git
Arch Linux
pacman
sudo pacman -S git
Alpine
apk
apk add git
In this course we use Ubuntu (via WSL), so we use apt. If you see dnf or pacman elsewhere, it’s the same concept, just for a different distribution.
Now the full command:
sudo apt update && sudo apt install -y python3
│ │ │ │ │ │ │ │ │
│ │ │ │ │ │ │ │ └── the package to install (python3, not python2 — nobody uses that anymore)
Historically, to manage Python dependencies, we used pip (Python’s package manager — it downloads and installs dependencies) + venv (a tool that creates an isolated folder for each project, so that one project’s dependencies don’t interfere with another’s — imagine separate boxes for each recipe). It works, but it’s slow and verbose.
uv is a recent alternative that replaces pip + venv in a single tool, much faster and simpler to use. Same concept, just a better tool.
pip + venv (old way)
uv (what we use)
Create an environment
python3 -m venv venv && source venv/bin/activate
uv sync (automatic)
Install dependencies
pip install -r requirements.txt
uv sync
Add a dependency
Edit requirements.txt manually + pip install
uv add fastapi
Run a command
source venv/bin/activate && pytest
uv run pytest
In the workplace, you’ll still see a lot of pip + requirements.txt. uv is newer but gaining ground fast. The concepts are the same, only the tools change.
Fenêtre de terminal
curl-LsSfhttps://astral.sh/uv/install.sh|sh
# Restart your terminal, then:
uv--version
# uv 0.x.x
What’s this curl ... | sh command? It’s a common pattern for installing tools. Let’s break it down:
curl = a tool that downloads content from the Internet (like a browser, but in the command line)
-L = follow redirects (if the URL redirects to another one, curl follows automatically)
-s = silent (no progress bar)
-S = but still show errors (otherwise -s hides everything, even errors)
-f = fail cleanly if the server responds with an error (instead of downloading the error page)
https://astral.sh/uv/install.sh = the URL of the installation script
| sh = the pipe | sends the downloaded content to sh (the shell) which executes it as a script
In one sentence: “download the installation script and run it”.
To run JavaScript, we historically need Node.js (a program that lets you run JavaScript code outside the browser) and npm (the JavaScript package manager — like pip for Python, it installs dependencies). Bun is a recent alternative that does both in a single tool, much faster.
In a nutshell: Bun = Node.js + npm, but faster and simpler. That’s why we use it here.
Fenêtre de terminal
# Bun needs "unzip" to install — let's install that first
sudoaptinstall-yunzip
curl-fsSLhttps://bun.sh/install|bash
# Same idea as for uv: download and run the installation script
# Restart your terminal, then:
bun--version
# 1.x.x
In the workplace, you’ll often see npm install / npm run dev instead of bun install / bun run dev. It’s the same thing, just a different tool.
Before touching Git, you need to know how to navigate the terminal. When you open a terminal, you’re in a folder (by default, your home folder). Two essential commands:
/home/jean
pwd
# "Print Working Directory" = shows the folder you're currently in
# It's your compass — if you're lost, type pwd
cd~/devops-project
# "Change Directory" = move into a folder
# ~ = shortcut for your home folder (/home/jean)
cd..
# Go up one level (go to the parent folder)
# If you're in /home/jean/devops-project, cd .. brings you back to /home/jean
cd..
# One more level up: now you're in /home
cd~/devops-project
# Go back directly to the project folder (no matter where you were)
You’ll use cd and pwd constantly. More details in Module 1.
What’s frontend/backend? The backend is the invisible part — the program that runs on the server, manages data, and responds to requests. Here, it’s written in Python with FastAPI. The frontend is the visible part — the web page the user sees in their browser. Here, it’s written in JavaScript with React. The frontend calls the backend via HTTP requests (GET /api/tasks, POST /api/tasks, etc.) and displays the responses. You don’t need to understand the React or FastAPI code for this course — just know that the frontend calls the backend.
# Resolved X packages in X.Xs (the exact number may vary)
# Installed X packages in X.Xs
uvrunuvicornmain:app--reload
# INFO: Uvicorn running on http://127.0.0.1:8000
uv sync automatically creates an isolated environment and installs all the dependencies listed in the pyproject.toml file (the file that says “this project needs FastAPI, Pytest, etc.”). uv run executes a command in that environment.
What are localhost and 127.0.0.1? They’re the same thing — it’s the address of your own machine. When you type http://localhost:8000 in your browser, you’re saying “connect to myself on port 8000”. localhost is just an alias for the IP address 127.0.0.1.
What is a port? A machine can run multiple programs at the same time (a backend, a frontend, a database…). The port is a number that identifies which program you want to reach. It’s like an apartment number in a building: the IP address is the building, the port is the apartment. Here, the backend is on port 8000, the frontend will be on port 3000.
Try it in your browser: Open http://localhost:8000 — you should see a JSON message saying “L’API Task List fonctionne !” (The Task List API is working!). That’s a response sent by the backend that you’re seeing directly.
You can also open http://localhost:8000/docs — it’s an interactive page generated automatically by FastAPI. Normally a backend doesn’t have a visual interface (that’s the frontend’s job), but FastAPI generates this documentation page to help you test the endpoints without writing code. You can click on each endpoint, try “Try it out”, and see the responses.
Before committing, you need a .gitignore file at the project root. This file tells Git which files to ignore — not include them in commits.
Why it matters: Without .gitignore, you’ll commit node_modules/ (thousands of JS dependency files), .venv/ (the Python environment), and potentially .env files containing passwords. Your repo would be huge and you’d expose secrets.
The project already provides one (it was copied in step 1). Check that it’s there:
Fenêtre de terminal
cd~/devops-project
cat.gitignore
You should see something like:
__pycache__/
.venv/
node_modules/
dist/
.env
What each line means: Each line is a file or folder that Git will ignore. One line = one pattern.
Line
What Git ignores
Why ignore it
__pycache__/
Python compiled files
Regenerated automatically, useless in Git
.venv/
Python virtual environment
Each dev recreates it with uv sync
node_modules/
JavaScript dependencies
Each dev recreates them with bun install
dist/
Built frontend files
Regenerated by bun run build
.env
Environment variables
Contains secrets (passwords, API keys)
Note: in a .gitignore, each line must be the file/folder name alone, without a comment next to it. Comments go on separate lines starting with #:
# This is a comment
node_modules/
If the file doesn’t exist, create it with nano (the text editor in the terminal):
Fenêtre de terminal
nano.gitignore
Type the 5 lines from the table above (one per line), then Ctrl+O → Enter to save and Ctrl+X to quit.
Since 2021, GitHub no longer accepts regular passwords for git push. We use an SSH key — set it up now, before your first push.
An SSH key is a pair of two files: a private key (your secret, it stays on your machine) and a public key (you give it to GitHub). When you push, Git proves to GitHub that you own the private key that matches the public key — without ever sending a password. It’s like a lock (public key on GitHub) and its key (private key on your machine).
Fenêtre de terminal
# 1. Generate the key
ssh-keygen
# It will ask you 3 questions:
# "Enter file in which to save the key" → press Enter (default location)
Now that SSH authentication is configured, you can send your code to GitHub:
Fenêtre de terminal
cd~/devops-project
gitadd.
gitstatus
# Check that you do NOT see node_modules/, .venv/, .env in the list
gitcommit-m"init: projet task list (React + FastAPI)"
# No need for "git remote add origin" — the remote is already configured
# because you cloned your repo in step 1 (git clone sets up the link automatically)
gitpush
# "push" = send your commits to GitHub
# Git already knows where to send them because the repo was cloned from GitHub
Note: In the workplace, the frontend and backend are usually in separate repositories (repos), each with its own CI/CD pipeline. Here, we put them in the same repo to simplify learning.
7. The Pull Request workflow (how teams work together)
So far we’ve been pushing directly to main. In the workplace, nobody does that. We go through Pull Requests (PR) so someone reviews the code before it gets merged.
We’re going to add a real feature to the app: an endpoint to retrieve a task by its ID (GET /api/tasks/{task_id}). You don’t need to understand the Python code — just copy it, test it, and create the PR.
Step 1 — Create a branch
Fenêtre de terminal
cd~/devops-project
gitcheckout-bfeat/get-single-task
Step 2 — Add the code
Open backend/main.py in VS Code (code backend/main.py from the terminal) and add the new block. Here’s what it should look like — the existing code is commented out, the block to add is between the arrows:
# ... (the code above doesn't change)
@app.delete("/api/tasks/{task_id}")
defdelete_task(task_id: int):
# ... (this code already exists)
# ↓↓↓ ADD THIS BLOCK HERE ↓↓↓
@app.get("/api/tasks/{task_id}")
defget_task(task_id: int):
tasks =_list_tasks()
for t in tasks:
if t["id"] == task_id:
return t
raiseHTTPException(status_code=404,detail="Task not found")
# {"detail":"Task not found"} (with a 404 status code)
# Stop the server
kill%1
Step 4 — Commit and push
Fenêtre de terminal
gitaddbackend/main.py
gitcommit-m"feat: add GET endpoint to retrieve single task by ID"
gitpush-uoriginfeat/get-single-task
Step 5 — Create the PR on GitHub
Go to your GitHub repo — you’ll see a yellow banner “Compare & pull request”
Title: feat: add GET endpoint to retrieve single task by ID
Description: explain what you added and how to test it
Click Create pull request
Look at the PR, then click Merge pull request
Come back to your local machine and update:
Fenêtre de terminal
gitcheckoutmain
gitpull
This is exactly the workflow you’ll follow hundreds of times in the workplace. The difference is that in real life, a colleague reviews your PR before the merge.
Bonus: understanding the frontend (optional, just for context)
You don’t need to understand this section for the rest of the course. The frontend and backend are here as support for the DevOps modules. The function names (useEffect, addTask, etc.) are JavaScript/React — you don’t need to learn or remember them. This is just to show you how frontend and backend communicate.
The frontend (frontend/src/App.jsx) is the web page the user sees. The only thing to remember: the frontend calls the backend via HTTP requests.
Here’s what actually happens when the user interacts with the page:
What the user does
HTTP call
What it does
The page loads
GET /api/tasks
Read the task list
Click on “Add”
POST /api/tasks
Create a new task
Click on a task
PATCH /api/tasks/{id}
Update the task (check/uncheck)
Click on ”✕“
DELETE /api/tasks/{id}
Delete the task
GET, POST, PATCH, DELETE — these are the 4 HTTP “verbs”. GET = read, POST = create, PATCH = update, DELETE = delete. You’ll also see PUT which also serves to update — to keep it simple, PATCH and PUT are the same idea (modifying existing data). We use PATCH in this project.
Run the frontend and backend at the same time to see the result:
Fenêtre de terminal
# Terminal 1 — Backend
cd~/devops-project/backend
uvrunuvicornmain:app--reload
# Terminal 2 — Frontend
cd~/devops-project/frontend
bunrundev
# Open http://localhost:3000
You should see the task list. Try:
Adding a task → it appears at the bottom of the list
Clicking on a task → it gets crossed out (done)
Clicking on ✕ → it disappears
That’s the frontend ↔ backend connection. The frontend sends HTTP requests, the backend responds with JSON, and the frontend displays the result.
Q: What is Git and why do we use it?
A: Git is a versioning system. It keeps the history of all code changes. You can go back in time, work with multiple people without overwriting each other’s work, and create branches to develop features in parallel.
Q: What’s the difference between git add and git commit?
A: git add stages files (staging area), git commit saves them in the history. It’s like putting items in a box (add) then sealing and labeling the box (commit).
Q: What is a branch?
A: A parallel copy of the code. You develop on it without touching the main branch (main). When it’s ready, you merge.
Q: Difference between git pull and git fetch?
A: git fetch downloads remote changes without applying them. git pull = git fetch + git merge. Pull applies the changes directly.
Q: What is a Pull Request?
A: A request to merge code. You create a branch, work on it, and when it’s ready you open a PR on GitHub. A colleague reviews your code (code review), and if it’s good, you merge into main. It ensures code is checked before it reaches production.
Small, frequent commits. One commit = one logical change. Not “I worked for 3 days and commit everything at once”. That’s impossible to review and rollback.
Clear commit messages. “fix bug” says nothing. “fix: POST /tasks endpoint returned 500 when title was empty” says everything. The message explains why, not what (the diff shows the what).
Never commit secrets. Passwords, API keys, tokens → .env file + .gitignore. If you committed a secret by mistake, change it immediately.
A .gitignore from the very first commit. Before committing anything. It’s the first thing to do in a project.
Pull before you push.git pull before git push to avoid conflicts. Especially if you’re working with others.
When you’re stuck on an error, don’t understand a command, or a concept isn’t clear — ask an AI. That’s what all developers and DevOps engineers do every day. It’s not cheating, it’s a tool.
In DevOps, you live in the terminal. When you have an error, you’re in the terminal. When you want to understand a file, you’re in the terminal. Switching to a browser, copying the error, pasting it into ChatGPT, waiting for the response, going back to the terminal — that’s slow.
opencode is an AI assistant that runs directly in your terminal. It can:
Read your files (Dockerfile, docker-compose.yml, main.tf) and explain them
See the error you just got and explain it
Run commands for you and explain the result
Guide you step by step to solve a problem
It’s open-source and free — you launch it in your terminal and talk to it like a colleague.
Fenêtre de terminal
# Install opencode
curl-fsSLhttps://opencode.ai/install|bash
# Launch opencode in your project
cd~/devops-project
opencode
# You can now ask it questions:
# "Explain the backend Dockerfile to me"
# "Why is docker compose up failing?"
# "What's this error?"
opencode takes over the entire terminal window — you can’t type other commands in it anymore. That’s normal. To keep working, open another terminal alongside it (right-click the Ubuntu icon in the taskbar → “Ubuntu”, or in VS Code: Terminal → New Terminal).
As a general habit, get used to having multiple terminals open at the same time. That’s very common in DevOps: one terminal for the backend, one for the frontend, one for Docker commands, one for opencode… It’s like having multiple tabs in a browser.