Azure-Samples · petetian · Mar 7, 2025 · Mar 7, 2025 · Mar 7, 2025 · Mar 8, 2025
diff --git a/tools/azd-extension/java-on-ai-azd.json b/tools/azd-extension/java-on-ai-azd.json
@@ -0,0 +1,20 @@
+{
+    "$schema": "https://aka.ms/azd-extension-schema",
+    "name": "java-on-ai-extension",
+    "version": "1.1.0",
+    "description": "Java on AI AZD extension with bash",
+    "publisher": "Pete Tian",
+    "commands": [
+      {
+        "name": "hello",
+        "description": "My first AZD command",
+        "entryPoint": "./scripts/hello.sh"
+      },
+      {
+        "name": "goodbye",
+        "description": "My second AZD command",
+        "entryPoint": "./scripts/goodbye.sh"
+      }
+    ]
+  }
+
diff --git a/tools/azd-extension/lab-2/collect-user-info.sh b/tools/azd-extension/lab-2/collect-user-info.sh
@@ -0,0 +1,9 @@
+#!/bin/bash
+# Before performing any additional actions, store user info as an environment variable that
+# can be used in subsequent steps.
+
+export USER_NAME=$(az account show --query user.name --output tsv)
+echo "Current user:" $USER_NAME
+
+export AAD_USER_ID=$(az ad signed-in-user show --query id --output tsv)
+echo "Object ID:" $AAD_USER_ID
diff --git a/tools/azd-extension/lab-2/create-aca-env.sh b/tools/azd-extension/lab-2/create-aca-env.sh
@@ -0,0 +1,69 @@
+#!/bin/bash
+# This script creates an Azure Container Apps environment with a dedicated plan and a virtual network.
+# It also creates a resource group and a virtual network with a subnet for the Azure Container Apps environment.
+# The script uses the Azure CLI to create the resources and requires the user to be logged in to their Azure account.
+# The script also requires the user to have the Azure CLI installed and configured on their machine.
+# The script uses the `az` command to create the resources and requires the user to have the necessary permissions to create resources in their Azure account.
+# The script uses the `openssl` command to generate a random unique ID for the resource group and virtual network names.
+# The script uses the `az configure` command to set the default resource group for the Azure CLI commands.
+
+#source ../../azure-resource.profile
+
+UNIQUEID=$(openssl rand -hex 3)
+APPNAME=petclinic
+RESOURCE_GROUP=$(az group list --query "[?contains(name, 'petclinic')].{Name:name}[0]" -o tsv)
+
+if [ -z "$RESOURCE_GROUP" ]; then
+    RESOURCE_GROUP=rg-$APPNAME-$UNIQUEID
+    LOCATION=$(random_element australiaeast brazilsouth eastasia eastus2 japaneast southindia swedencentral westus)
+    echo "Creating resource group [$RESOURCE_GROUP] in region [$LOCATION]..."
+    az group create -g $RESOURCE_GROUP -l $LOCATION
+else
+    LOCATION=$(az group show --name $RESOURCE_GROUP --query "location" -o tsv)
+    echo "Provisioning in resource group [$RESOURCE_GROUP]..."
+fi
+
+az configure --default group=$RESOURCE_GROUP
+
+#
+# Create VNET for Azure Container Apps Environment
+#
+VIRTUAL_NETWORK_NAME=vnet-$APPNAME-$UNIQUEID
+az network vnet create \
+    --resource-group $RESOURCE_GROUP \
+    --name $VIRTUAL_NETWORK_NAME \
+    --location $LOCATION \
+    --address-prefix 10.1.0.0/16
+
+ACA_SUBNET_CIDR=10.1.0.0/27
+az network vnet subnet create \
+    --resource-group $RESOURCE_GROUP \
+    --vnet-name $VIRTUAL_NETWORK_NAME \
+    --address-prefixes $ACA_SUBNET_CIDR \
+    --name aca-subnet \
+    --delegations Microsoft.App/environments
+
+SUBNET_ID="$(az network vnet subnet show --resource-group $RESOURCE_GROUP --vnet-name $VIRTUAL_NETWORK_NAME --name aca-subnet --query "id" -o tsv)"
+echo "Subnet ID: [$SUBNET_ID]"
+
+#
+# Creating the service on an Azure Container Apps Dedicated plan using the workload profiles option.
+# This plan gives you more advanced features than the alternative Azure Container Apps Consumption plan type
+#
+ACA_ENVIRONMENT=acalab-env-$APPNAME-$UNIQUEID
+
+# winty is to accomodate git bash on Windows
+# Otherwise, SUBNET_ID will be appended with local drive path
+# NO_PATHCOW is for git bash on Windows
+export MSYS_NO_PATHCONV=1
+
+az containerapp env create \
+    -n $ACA_ENVIRONMENT \
+    -g $RESOURCE_GROUP \
+    --location $LOCATION \
+    --enable-workload-profiles true \
+    --infrastructure-subnet-resource-id "$SUBNET_ID" \
+    --logs-destination none
+
+ACA_ENVIRONMENT_ID=$(az containerapp env show -n $ACA_ENVIRONMENT -g $RESOURCE_GROUP --query id -o tsv)
+
diff --git a/tools/azd-extension/lab-2/create-container-registry.sh b/tools/azd-extension/lab-2/create-container-registry.sh
@@ -0,0 +1,56 @@
+#!/bin/bash
+#
+# Before deploying applications to the Azure Container Apps environment, you’ll need an Azure Container Registry instance that allows you to build and save your application container images. 
+# You’ll also need to allow your Container Apps environment to pull images from this new container registry.
+#
+# To give the Container Apps environment secure access to the container registry, we’ll create a user managed identity and assign it the required privileges to use the images stored in your Azure Container Registry.
+
+APPNAME=petclinic
+RESOURCE_GROUP=$(az group list --query "[?contains(name, 'petclinic')].{Name:name}[0]" -o tsv)
+echo "Resource group: $RESOURCE_GROUP"
+if [ -z "$RESOURCE_GROUP" ]; then
+    echo "Error: Resource group not found."
+    exit 1
+fi
+
+# Check if a container registry containing the string $APPNAME already exists
+EXISTING_ACR=$(az acr list --resource-group $RESOURCE_GROUP --query "[?contains(name, '$APPNAME')].{Name:name}[0]" -o tsv)
+
+UNIQUEID=$(openssl rand -hex 3)
+if [ -n "$EXISTING_ACR" ]; then
+    echo "Container registry [$EXISTING_ACR] already exists. Skipping creation."
+    MYACR=$EXISTING_ACR
+else    
+    MYACR=acr$APPNAME$UNIQUEID
+    az acr create \
+        -n $MYACR \
+        -g $RESOURCE_GROUP \
+        --sku Basic \
+        --admin-enabled true
+fi
+
+# Check if ACA environment name containing string "acalab-env" exists
+ACA_ENVIRONMENT=$(az containerapp env list --resource-group $RESOURCE_GROUP --query "[?contains(name, 'acalab-env')].{Name:name}[0]" -o tsv)
+
+if [ -z "$ACA_ENVIRONMENT" ]; then
+    echo "Error: ACA environment containing 'acalab-env' not found."
+    exit 1
+fi
+
+# Disable path conversion for MSYS (Git Bash)
+export MSYS_NO_PATHCONV=1
+
+# Create the identity that your container apps will use.
+APPS_IDENTITY=uid-petclinic-$UNIQUEID
+az identity create --resource-group $RESOURCE_GROUP --name $APPS_IDENTITY --output json
+
+APPS_IDENTITY_ID=$(az identity show --resource-group $RESOURCE_GROUP --name $APPS_IDENTITY --query id --output tsv)
+APPS_IDENTITY_SP_ID=$(az identity show --resource-group $RESOURCE_GROUP --name $APPS_IDENTITY --query principalId --output tsv)
+
+echo "Assign the user identity to your Azure Container Apps environment."
+az containerapp env identity assign -g $RESOURCE_GROUP -n $ACA_ENVIRONMENT --user-assigned $APPS_IDENTITY_ID
+
+# Grant the identity with the necessary privileges to pull images from the container registry.
+ACR_ID=$(az acr show -n $MYACR -g $RESOURCE_GROUP --query id -o tsv)
+az role assignment create --assignee $APPS_IDENTITY_SP_ID --scope $ACR_ID --role acrpull
+
diff --git a/tools/azd-extension/lab-2/create-java-components.sh b/tools/azd-extension/lab-2/create-java-components.sh
@@ -0,0 +1,64 @@
+#!/bin/bash
+#
+# Configure the config, discovery, and admin applications. These are available as built-in components of Azure Container Apps.
+
+APPNAME=petclinic
+RESOURCE_GROUP=$(az group list --query "[?contains(name, 'petclinic')].{Name:name}[0]" -o tsv)
+echo "Resource group: $RESOURCE_GROUP"
+if [ -z "$RESOURCE_GROUP" ]; then
+    echo "Error: Resource group not found."
+    exit 1
+fi
+
+LOCATION=$(az group show --name $RESOURCE_GROUP --query "location" -o tsv)
+
+# Create the Spring Cloud Config Server Java component. You’ll need to pass the Git repo information you defined back 
+# in the Config repo step to correctly load your configuration information.
+GIT_URI="https://github.com/Azure-Samples/java-on-aca.git"
+SEARCH_PATH="config"
+LABEL=main
+
+# Check if ACA environment name containing string "acalab-env" exists
+ACA_ENVIRONMENT=$(az containerapp env list --resource-group $RESOURCE_GROUP --query "[?contains(name, 'acalab-env')].{Name:name}[0]" -o tsv)
+
+if [ -z "$ACA_ENVIRONMENT" ]; then
+    echo "Error: ACA environment containing 'acalab-env' not found."
+    exit 1
+fi
+
+JAVA_CONFIG_COMP_NAME=configserver
+az containerapp env java-component config-server-for-spring create \
+    --environment $ACA_ENVIRONMENT \
+    --resource-group $RESOURCE_GROUP \
+    --name $JAVA_CONFIG_COMP_NAME \
+    --set-configuration spring.cloud.config.server.git.uri=$GIT_URI spring.cloud.config.server.git.search-paths=$SEARCH_PATH spring.cloud.config.server.git.default-label=$LABEL
+
+# Check the Spring Cloud Config Server Java component to confirm that it was successfully created.
+CONFIG_SERVER_EXISTS=$(az containerapp env java-component config-server-for-spring show \
+    --environment $ACA_ENVIRONMENT \
+    --resource-group $RESOURCE_GROUP \
+    --name $JAVA_CONFIG_COMP_NAME --query "name" -o tsv)
+
+if [ -z "$CONFIG_SERVER_EXISTS" ]; then
+    echo "Error: Config server was not successfully created."
+    exit 1
+fi
+
+# Create the Spring Cloud Eureka Server Java component. This will create a standard Eureka endpoint within 
+# the Container Apps environment. The Spring Petclinic workload will use this for discovery services.
+JAVA_EUREKA_COMP_NAME=eureka
+az containerapp env java-component eureka-server-for-spring create \
+    --environment $ACA_ENVIRONMENT \
+    --resource-group $RESOURCE_GROUP \
+    --name $JAVA_EUREKA_COMP_NAME \
+    --set-configuration eureka.server.response-cache-update-interval-ms=10000
+
+# Create a new Spring Boot Admin application and bind it to the Eureka Server 
+JAVA_SBA_COMP_NAME=springbootadmin
+az containerapp env java-component admin-for-spring create \
+    --environment $ACA_ENVIRONMENT \
+    --resource-group $RESOURCE_GROUP \
+    --name $JAVA_SBA_COMP_NAME \
+    --bind $JAVA_EUREKA_COMP_NAME \
+    --min-replicas 1 \
+    --max-replicas 1
diff --git a/tools/azd-extension/lab-2/create-mysql.sh b/tools/azd-extension/lab-2/create-mysql.sh
@@ -0,0 +1,33 @@
+#!/bin/bash
+
+UNIQUEID=$(openssl rand -hex 3)
+APPNAME=petclinic
+
+RESOURCE_GROUP=$(az group list --query "[?contains(name, 'petclinic')].{Name:name}[0]" -o tsv)
+
+# This script creates an Azure MySQL server and an Azure Container Registry (ACR) in a specified resource group.
+MYSQL_SERVER_NAME=mysql-$APPNAME-$UNIQUEID
+MYSQL_ADMIN_USERNAME=sqladmin
+MYSQL_ADMIN_PASSWORD="5qVYxsoyaV9qJN"
+DATABASE_NAME=petclinic
+
+az mysql flexible-server create \
+    --admin-user "$MYSQL_ADMIN_USERNAME" \
+    --admin-password "$MYSQL_ADMIN_PASSWORD" \
+    --name "$MYSQL_SERVER_NAME" \
+    --resource-group "$RESOURCE_GROUP" \
+    --public-access none \
+    --yes
+az mysql flexible-server db create \
+    --server-name $MYSQL_SERVER_NAME \
+    --resource-group $RESOURCE_GROUP \
+    -d $DATABASE_NAME
+
+#
+# Allow public access to the MySQL server
+#
+az mysql flexible-server firewall-rule create \
+    --rule-name allAzureIPs \
+    --name $MYSQL_SERVER_NAME \
+    --resource-group $RESOURCE_GROUP \
+    --start-ip-address 0.0.0.0 --end-ip-address 0.0.0.0
diff --git a/tools/azure-resource.profile b/tools/azure-resource.profile
@@ -1,13 +1,13 @@
-
 # Set all the variables with <> and keep the others unchanged
 
 # This part is for lab 2 & Lab 3
 
 # Pay attention to this, use command 'openssl rand -hex 3' to generate a unique id and put value here, don't put command here
 UNIQUEID=<unique-id>
 
+# To extract the subscription ID, use the following Azure CLI command:
+# az account show --query id --output tsv
 SUBSCRIPTION=<subscription-id>
-LOCATION=<region>
 
 APPNAME=petclinic
 RESOURCE_GROUP=rg-$APPNAME-$UNIQUEID

diff --git a/tools/create-azure-resource.sh b/tools/create-azure-resource.sh
@@ -1,31 +1,33 @@
 #!/usr/bin/env bash
 
-source ./azure-resource.profile
-source ./funcs.sh
+export HOME=/workspaces/java-on-aca
+
+source ./tools/azure-resource.profile
+source ./tools/funcs.sh
 
 # Resource Group
 
+# Random regions for MySQL server
+LOCATION=$(random_element australiaeast brazilsouth eastasia eastus2 japaneast southindia swedencentral westus)
+
 az group create -g $RESOURCE_GROUP -l $LOCATION -o table
 
 az configure --default group=$RESOURCE_GROUP
 
 # MySQL server
 
-# Random regions for MySQL server
-SQL_LOCATION=$(random_element australiaeast brazilsouth eastasia eastus2 japaneast southindia swedencentral westus)
-
 SQL_ID=$(az mysql flexible-server show --resource-group $RESOURCE_GROUP --name $MYSQL_SERVER_NAME -o tsv --query id 2>/dev/null)
 if [[ -n $SQL_ID ]]; then
     echo -e "${GREEN}INFO:${NC} MySQL server $MYSQL_SERVER_NAME already exists"
 else
-    echo -e "${YELLOW}INFO:${NC} Creating MySQL server $MYSQL_SERVER_NAME in region $SQL_LOCATION ..."
+    echo -e "${YELLOW}INFO:${NC} Creating MySQL server $MYSQL_SERVER_NAME in region $LOCATION ..."
 
     az mysql flexible-server create \
         --admin-user $MYSQL_ADMIN_USERNAME \
         --admin-password $MYSQL_ADMIN_PASSWORD \
         --name $MYSQL_SERVER_NAME \
         --resource-group $RESOURCE_GROUP \
-        --location $SQL_LOCATION \
+        --location $LOCATION \
         --public-access none \
         --yes \
         --output table
@@ -49,18 +51,16 @@ fi
 
 # Azure OpenAI Service
 
-AI_LOCATION=$(random_element australiaeast brazilsouth eastus2 japaneast southindia swedencentral westus)
-
 AI_ID=$(az cognitiveservices account show --resource-group $RESOURCE_GROUP --name $OPEN_AI_SERVICE_NAME -o tsv --query id 2>/dev/null)
 if [[ -n $ACR_ID ]]; then
     echo -e "${GREEN}INFO:${NC} OpenAI instance $OPEN_AI_SERVICE_NAME already exists"
 else
-    echo -e "${YELLOW}INFO:${NC} Creating OpenAI instance $OPEN_AI_SERVICE_NAME in region $AI_LOCATION ..."
+    echo -e "${YELLOW}INFO:${NC} Creating OpenAI instance $OPEN_AI_SERVICE_NAME in region $LOCATION ..."
 
     az cognitiveservices account create \
     --resource-group $RESOURCE_GROUP \
     --name $OPEN_AI_SERVICE_NAME \
-    --location $AI_LOCATION \
+    --location $LOCATION \
     --kind OpenAI \
     --sku s0 \
     --custom-domain $OPEN_AI_SERVICE_NAME \
@@ -122,18 +122,16 @@ fi
 
 # Azure Managed Grafana
 
-GRAFANA_LOCATION=$(random_element australiaeast brazilsouth centralindia eastasia eastus2 japaneast swedencentral westus)
-
 GRAFANA_ID=$(az grafana show --name $GRAFANA_NAME --resource-group $RESOURCE_GROUP -o tsv --query id 2>/dev/null)
 if [[ -n $GRAFANA_ID ]]; then
     echo -e "${GREEN}INFO:${NC} Grafana instance $GRAFANA_NAME already exists"
 else
-    echo -e "${YELLOW}INFO:${NC} Creating Grafana instance $GRAFANA_NAME in region $GRAFANA_LOCATION ..."
+    echo -e "${YELLOW}INFO:${NC} Creating Grafana instance $GRAFANA_NAME in region $LOCATION ..."
 
     az deployment group create \
         --resource-group $RESOURCE_GROUP \
         --template-file ../infra/bicep/modules/grafana/grafana-dashboard.bicep \
-        --parameters grafanaName=$GRAFANA_NAME location=$GRAFANA_LOCATION \
+        --parameters grafanaName=$GRAFANA_NAME location=$LOCATION \
         --output table
 fi