Create all Azure resource in the same region of the resource group

tools/azd-extension/java-on-ai-azd.json

@@ -0,0 +1,39 @@
+{
+    "$schema": "https://aka.ms/azd-extension-schema",
+    "name": "java-on-ai-extension",
+    "version": "1.1.0",
+    "description": "Java on AI AZD extension with bash",
+    "publisher": "Pete Tian",
+    "commands": [
+        {
+            "name": "collecte user information",
+            "description": "Before performing any additional actions, you’ll need to store your user info as an environment variable that you can use in subsequent steps.",
+            "entryPoint": "./lab2/collect-user-info.sh"
+        },
+        {
+            "name": "Create an Azure Container Apps environment",
+            "description": "With your user information stored in environment variables, you’re ready to begin the first step in the deployment: creating an Azure Container Apps instance.",
+            "entryPoint": "./lab-2/create-aca-env.sh"
+        },
+        {
+            "name": "Create an Azure Database for MySQL instance",
+            "description": "Create an Azure Database for MySQL - Flexible Server–hosted database.",
+            "entryPoint": "./lab-2/create-mysql.sh"
+        },
+        {
+            "name": "Set up a configuration repository",
+            "description": "Set up the application configuration settings that allow your Spring Boot application to connect with the database.",
+            "entryPoint": "./lab-2/create-container-registry.sh"
+        },
+        {
+            "name": "Create the Java components",
+            "description": "Configure the config, discovery, and admin applications.",
+            "entryPoint": "./lab-2/create-java-components.sh"
+        },
+        {
+            "name": "Deploy the component applications to Azure Container Apps",
+            "description": "Deploy the workload’s component applications to Azure.",
+            "entryPoint": "./lab-2/deploy-component-apps.sh"
+        }
+    ]
+}

tools/azd-extension/lab-2/collect-user-info.sh

@@ -0,0 +1,9 @@
+#!/bin/bash
+# Before performing any additional actions, store user info as an environment variable that
+# can be used in subsequent steps.
+
+export USER_NAME=$(az account show --query user.name --output tsv)
+echo "Current user:" $USER_NAME
+
+export AAD_USER_ID=$(az ad signed-in-user show --query id --output tsv)
+echo "Object ID:" $AAD_USER_ID

tools/azd-extension/lab-2/create-aca-env.sh

@@ -0,0 +1,91 @@
+#!/bin/bash
+# This script creates an Azure Container Apps environment with a dedicated plan and a virtual network.
+# It also creates a resource group and a virtual network with a subnet for the Azure Container Apps environment.
+
+random_element() {
+  local array=("$@")
+  echo "${array[RANDOM % ${#array[@]}]}"
+}
+
+UNIQUEID=$(openssl rand -hex 3)
+
+export APPNAME=petclinic
+export RESOURCE_GROUP=$(az group list --query "[?contains(name, '$APPNAME')].{Name:name}[0]" -o tsv)
+
+if [ -z "$RESOURCE_GROUP" ]; then
+    RESOURCE_GROUP=rg-$APPNAME-$UNIQUEID
+    LOCATION=westus
+    echo "Creating resource group [$RESOURCE_GROUP] in region [$LOCATION]..."
+    az group create -g $RESOURCE_GROUP -l $LOCATION
+else
+    LOCATION=$(az group show --name $RESOURCE_GROUP --query "location" -o tsv)
+    echo "Provisioning in resource group [$RESOURCE_GROUP]..."
+fi
+
+az configure --default group=$RESOURCE_GROUP
+
+#
+# Create VNET for Azure Container Apps Environment
+#
+VIRTUAL_NETWORK_NAME=vnet-$APPNAME-$UNIQUEID
+az network vnet create \
+    --resource-group $RESOURCE_GROUP \
+    --name $VIRTUAL_NETWORK_NAME \
+    --location $LOCATION \
+    --address-prefix 10.1.0.0/16
+
+ACA_SUBNET_CIDR=10.1.0.0/27
+az network vnet subnet create \
+    --resource-group $RESOURCE_GROUP \
+    --vnet-name $VIRTUAL_NETWORK_NAME \
+    --address-prefixes $ACA_SUBNET_CIDR \
+    --name aca-subnet \
+    --delegations Microsoft.App/environments
+
+SUBNET_ID="$(az network vnet subnet show --resource-group $RESOURCE_GROUP --vnet-name $VIRTUAL_NETWORK_NAME --name aca-subnet --query "id" -o tsv)"
+echo "Subnet ID: [$SUBNET_ID]"
+
+#
+# Creating the service on an Azure Container Apps Dedicated plan using the workload profiles option.
+# This plan gives you more advanced features than the alternative Azure Container Apps Consumption plan type
+#
+export ACA_ENVIRONMENT=acalab-env-$APPNAME-$UNIQUEID
+
+# If folder ../config does not exist, create it
+if [ ! -d "../config" ]; then
+    mkdir -p ../config
+fi
+AZURE_CONFIG_FILE="../config/azure-resource.profile"
+
+# winty is to accommodate git bash on Windows
+# Otherwise, SUBNET_ID will be appended with local drive path
+# NO_PATHCOW is for git bash on Windows
+export MSYS_NO_PATHCONV=1
+
+az containerapp env create \
+    -n $ACA_ENVIRONMENT \
+    -g $RESOURCE_GROUP \
+    --location $LOCATION \
+    --enable-workload-profiles true \
+    --infrastructure-subnet-resource-id "$SUBNET_ID" \
+    --logs-destination none
+
+export ACA_ENVIRONMENT_ID=$(az containerapp env show -n $ACA_ENVIRONMENT -g $RESOURCE_GROUP --query id -o tsv)
+
+# Write variables to the azure-resource.profile
+{
+    echo "RESOURCE_GROUP=$RESOURCE_GROUP"
+    echo "LOCATION=$LOCATION"
+    echo "UNIQUEID=$UNIQUEID"
+    echo "APPNAME=$APPNAME"
+    echo "ACA_ENVIRONMENT=$ACA_ENVIRONMENT"
+    echo "ACA_ENVIRONMENT_ID=$ACA_ENVIRONMENT_ID"
+} > $AZURE_CONFIG_FILE
+
+# Verify that the azure-resource.profile file is created properly
+if [ -f $AZURE_CONFIG_FILE ]; then
+    echo "azure-resource.profile file created successfully."
+else
+    echo "Error: azure-resource.profile file not created."
+    exit 1
+fi

tools/azd-extension/lab-2/create-container-registry.sh

@@ -0,0 +1,70 @@
+#!/bin/bash
+#
+# Before deploying applications to the Azure Container Apps environment, an Azure Container Registry instance is needed that allows to build and save application container images. 
+# Allow the Container Apps environment to pull images from this new container registry.
+#
+# This script creates an Azure Container Registry (ACR) and a user managed identity for the Azure Container Apps environment.
+# The script also assigns the user managed identity to the ACR and grants it the necessary permissions to pull images from the registry.
+# The script uses the Azure CLI to create the ACR and user managed identity, and to assign the identity to the ACR.
+# The script also checks if the ACR and user managed identity already exist, and skips their creation if they do.
+# The script also exports the ACR and user managed identity names and IDs as environment variables, and appends them to the Azure configuration file.
+# The script also checks if the Azure Container Apps environment name exists, and exits with an error message if it does not.
+# The script also disables path conversion for MSYS (Git Bash) to avoid issues with file paths.
+
+
+AZURE_CONFIG_FILE="../config/azure-resource.profile"
+source $AZURE_CONFIG_FILE
+
+# Check if a container registry containing the string $APPNAME already exists
+MYACR=$(az acr list --resource-group $RESOURCE_GROUP --query "[?contains(name, '$APPNAME')].{Name:name}[0]" -o tsv)
+
+CR_UNIQUEID=$(openssl rand -hex 3)
+if [ -n "$MYACR" ]; then
+    echo "Container registry [$MYACR] already exists. Skipping creation."
+else    
+    MYACR=acr$APPNAME$CR_UNIQUEID
+    echo "Creating new container registry [$MYACR]..."
+    az acr create \
+        -n $MYACR \
+        -g $RESOURCE_GROUP \
+        --sku Basic \
+        --admin-enabled true
+fi
+
+# Check if ACA environment name containing string "acalab-env" exists
+if [ -z "$ACA_ENVIRONMENT" ]; then
+    echo "Error: ACA environment [$ACA_ENVIRONMENT] not found."
+    exit 1
+fi
+
+# Disable path conversion for MSYS (Git Bash)
+export MSYS_NO_PATHCONV=1
+
+# Create the identity that the container apps will use.
+export APPS_IDENTITY=uid-petclinic-$CR_UNIQUEID
+az identity create --resource-group $RESOURCE_GROUP --name $APPS_IDENTITY --output json
+
+APPS_IDENTITY_ID=$(az identity show --resource-group $RESOURCE_GROUP --name $APPS_IDENTITY --query id --output tsv)
+APPS_IDENTITY_SP_ID=$(az identity show --resource-group $RESOURCE_GROUP --name $APPS_IDENTITY --query principalId --output tsv)
+
+echo "Assign the user identity to your Azure Container Apps environment."
+az containerapp env identity assign -g $RESOURCE_GROUP -n $ACA_ENVIRONMENT --user-assigned $APPS_IDENTITY_ID
+
+# Grant the identity with the necessary privileges to pull images from the container registry.
+export ACR_ID=$(az acr show -n $MYACR -g $RESOURCE_GROUP --query id -o tsv)
+az role assignment create --assignee $APPS_IDENTITY_SP_ID --scope $ACR_ID --role acrpull
+
+# Export the variables
+export MYACR
+export APPS_IDENTITY
+export APPS_IDENTITY_ID
+export APPS_IDENTITY_SP_ID
+
+# Append the variables to the AZURE_CONFIG_FILE
+{
+    echo "MYACR=$MYACR"
+    echo "APPS_IDENTITY=$APPS_IDENTITY"
+    echo "APPS_IDENTITY_ID=$APPS_IDENTITY_ID"
+    echo "APPS_IDENTITY_SP_ID=$APPS_IDENTITY_SP_ID"
+    echo "ACR_ID=$ACR_ID"
+} >> $AZURE_CONFIG_FILE

tools/azd-extension/lab-2/create-java-components.sh

@@ -0,0 +1,63 @@
+#!/bin/bash
+#
+# Configure the config, discovery, and admin applications. These are available as built-in components of Azure Container Apps.
+
+AZURE_CONFIG_FILE="../config/azure-resource.profile"
+source $AZURE_CONFIG_FILE
+
+# Check if ACA environment name exists
+if [ -z "$ACA_ENVIRONMENT" ]; then
+    echo "Error: ACA environment not found."
+    exit 1
+fi
+
+JAVA_CONFIG_COMP_NAME=configserver
+az containerapp env java-component config-server-for-spring create \
+    --environment $ACA_ENVIRONMENT \
+    --resource-group $RESOURCE_GROUP \
+    --name $JAVA_CONFIG_COMP_NAME \
+    --set-configuration spring.cloud.config.server.git.uri=$GIT_URI spring.cloud.config.server.git.search-paths=$SEARCH_PATH spring.cloud.config.server.git.default-label=$LABEL
+
+# Check the Spring Cloud Config Server Java component to confirm that it was successfully created.
+CONFIG_SERVER_EXISTS=$(az containerapp env java-component config-server-for-spring show \
+    --environment $ACA_ENVIRONMENT \
+    --resource-group $RESOURCE_GROUP \
+    --name $JAVA_CONFIG_COMP_NAME --query "name" -o tsv)
+
+if [ -z "$CONFIG_SERVER_EXISTS" ]; then
+    echo "Error: Config server was not successfully created."
+    exit 1
+fi
+
+# Create the Spring Cloud Eureka Server Java component. This will create a standard Eureka endpoint within 
+# the Container Apps environment. The Spring Petclinic workload will use this for discovery services.
+JAVA_EUREKA_COMP_NAME=eureka
+az containerapp env java-component eureka-server-for-spring create \
+    --environment $ACA_ENVIRONMENT \
+    --resource-group $RESOURCE_GROUP \
+    --name $JAVA_EUREKA_COMP_NAME \
+    --set-configuration eureka.server.response-cache-update-interval-ms=10000
+
+# Create a new Spring Boot Admin application and bind it to the Eureka Server 
+JAVA_SBA_COMP_NAME=springbootadmin
+az containerapp env java-component admin-for-spring create \
+    --environment $ACA_ENVIRONMENT \
+    --resource-group $RESOURCE_GROUP \
+    --name $JAVA_SBA_COMP_NAME \
+    --bind $JAVA_EUREKA_COMP_NAME \
+    --min-replicas 1 \
+    --max-replicas 1
+
+# Append the JAVA_EUREKA_COMP_NAME and JAVA_SBA_COMP_NAME to the AZURE_CONFIG_FILE
+{
+    echo "JAVA_EUREKA_COMP_NAME=$JAVA_EUREKA_COMP_NAME"
+    echo "JAVA_SBA_COMP_NAME=$JAVA_SBA_COMP_NAME"
+} >> $AZURE_CONFIG_FILE
+
+# Verify that the variables are appended to the azure-resource.profile file
+if grep -q "JAVA_EUREKA_COMP_NAME" $AZURE_CONFIG_FILE && grep -q "JAVA_SBA_COMP_NAME" $AZURE_CONFIG_FILE; then
+    echo "Variables appended to azure-resource.profile file successfully."
+else
+    echo "Error: Variables JAVA_EUREKA_COMP_NAME JAVA_SBA_COMP_NAME not appended to azure-resource.profile file."
+    exit 1
+fi

tools/azd-extension/lab-2/create-mysql.sh

@@ -0,0 +1,58 @@
+#!/bin/bash
+
+AZURE_CONFIG_FILE="../config/azure-resource.profile"
+source $AZURE_CONFIG_FILE
+
+APPLICATION_CONFIG_FILE="../config/application-mysql.yml"
+
+# This script creates an Azure MySQL server and an Azure Container Registry (ACR) in a specified resource group.
+MYSQL_SERVER_NAME=mysql-$APPNAME-$UNIQUEID
+MYSQL_ADMIN_USERNAME=sqladmin
+MYSQL_ADMIN_PASSWORD=$(openssl rand -hex 12)
+DATABASE_NAME=petclinic
+
+az mysql flexible-server create \
+    --admin-user "$MYSQL_ADMIN_USERNAME" \
+    --admin-password "$MYSQL_ADMIN_PASSWORD" \
+    --name "$MYSQL_SERVER_NAME" \
+    --resource-group "$RESOURCE_GROUP" \
+    --public-access none \
+    --yes
+az mysql flexible-server db create \
+    --server-name $MYSQL_SERVER_NAME \
+    --resource-group $RESOURCE_GROUP \
+    -d $DATABASE_NAME
+
+#
+# Allow public access to the MySQL server
+#
+az mysql flexible-server firewall-rule create \
+    --rule-name allAzureIPs \
+    --name $MYSQL_SERVER_NAME \
+    --resource-group $RESOURCE_GROUP \
+    --start-ip-address 0.0.0.0 --end-ip-address 0.0.0.0
+
+# Set up a configuration repository
+# set up the application configuration settings that allow Spring Boot applications to connect with the database.
+echo "
+spring:
+    datasource:
+        url: jdbc:mysql://${MYSQL_SERVER_NAME}.mysql.database.azure.com:3306/$DATABASE_NAME?useSSL=true
+        username: ${MYSQL_ADMIN_USERNAME}
+        password: ${MYSQL_ADMIN_PASSWORD}
+    sql:
+        init:
+            schema-locations: classpath*:db/mysql/schema.sql
+            data-locations: classpath*:db/mysql/data.sql
+            mode: ALWAYS
+" > $APPLICATION_CONFIG_FILE
+
+export GIT_URI="https://github.com/Azure-Samples/java-on-aca.git"
+export SEARCH_PATH="config"
+export LABEL=main
+
+{
+    echo "GIT_URI=https://github.com/Azure-Samples/java-on-aca.git"
+    echo "SEARCH_PATH=config"
+    echo "LABEL=main"
+} >> $AZURE_CONFIG_FILE