Create all Azure resource in the same region of the resource group #184
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,40 @@ | ||
| { | ||
| "$schema": "https://aka.ms/azd-extension-schema", | ||
| "name": "java-on-ai-extension", | ||
| "version": "1.1.0", | ||
| "description": "Java on AI AZD extension with bash", | ||
| "publisher": "Pete Tian", | ||
| "commands": [ | ||
| { | ||
| "name": "collecte user information", | ||
| "description": "Before performing any additional actions, you’ll need to store your user info as an environment variable that you can use in subsequent steps.", | ||
| "entryPoint": "./lab2/collect-user-info.sh" | ||
| }, | ||
| { | ||
| "name": "Create an Azure Container Apps environment", | ||
| "description": "With your user information stored in environment variables, you’re ready to begin the first step in the deployment: creating an Azure Container Apps instance.", | ||
| "entryPoint": "./lab-2/create-aca-env.sh" | ||
| }, | ||
| { | ||
| "name": "Create an Azure Database for MySQL instance", | ||
| "description": " create an Azure Database for MySQL - Flexible Server–hosted database.", | ||
| "entryPoint": "./lab-2/create-mysql.sh" | ||
| }, | ||
| { | ||
| "name": "Set up a configuration repository", | ||
| "description": "set up the application configuration settings that allow your Spring Boot application to connect with the database.", | ||
| "entryPoint": "./lab-2/create-container-registry.sh" | ||
| }, | ||
| { | ||
| "name": "Create the Java components", | ||
| "description": "configure the config, discovery, and admin applications.", | ||
| "entryPoint": "./lab-2/create-java-components.sh" | ||
| }, | ||
| { | ||
| "name": "Deploy the component applications to Azure Container Apps", | ||
| "description": "deploy the workload’s component applications to Azure.", | ||
| "entryPoint": "./lab-2/deploy-component-apps.sh" | ||
| } | ||
| ] | ||
| } | ||
|
|
||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,9 @@ | ||
| #!/bin/bash | ||
|
There was a problem hiding this comment. in some environment like Github codespace, we may fail to get the AAD_USER_ID, we should check if the AAD_USER_ID is valid before continue |
||
| # Before performing any additional actions, store user info as an environment variable that | ||
| # can be used in subsequent steps. | ||
|
|
||
| export USER_NAME=$(az account show --query user.name --output tsv) | ||
| echo "Current user:" $USER_NAME | ||
|
|
||
| export AAD_USER_ID=$(az ad signed-in-user show --query id --output tsv) | ||
| echo "Object ID:" $AAD_USER_ID | ||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,69 @@ | ||
| #!/bin/bash | ||
| # This script creates an Azure Container Apps environment with a dedicated plan and a virtual network. | ||
| # It also creates a resource group and a virtual network with a subnet for the Azure Container Apps environment. | ||
| # The script uses the Azure CLI to create the resources and requires the user to be logged in to their Azure account. | ||
| # The script also requires the user to have the Azure CLI installed and configured on their machine. | ||
| # The script uses the `az` command to create the resources and requires the user to have the necessary permissions to create resources in their Azure account. | ||
| # The script uses the `openssl` command to generate a random unique ID for the resource group and virtual network names. | ||
| # The script uses the `az configure` command to set the default resource group for the Azure CLI commands. | ||
|
|
||
| #source ../../azure-resource.profile | ||
|
|
||
| UNIQUEID=$(openssl rand -hex 3) | ||
| APPNAME=petclinic | ||
| RESOURCE_GROUP=$(az group list --query "[?contains(name, 'petclinic')].{Name:name}[0]" -o tsv) | ||
|
||
|
|
||
| if [ -z "$RESOURCE_GROUP" ]; then | ||
| RESOURCE_GROUP=rg-$APPNAME-$UNIQUEID | ||
|
There was a problem hiding this comment. we will have user to set the UNIQUEID in profile and import those settings first. In the current process,
|
||
| LOCATION=$(random_element australiaeast brazilsouth eastasia eastus2 japaneast southindia swedencentral westus) | ||
| echo "Creating resource group [$RESOURCE_GROUP] in region [$LOCATION]..." | ||
| az group create -g $RESOURCE_GROUP -l $LOCATION | ||
| else | ||
| LOCATION=$(az group show --name $RESOURCE_GROUP --query "location" -o tsv) | ||
| echo "Provisioning in resource group [$RESOURCE_GROUP]..." | ||
| fi | ||
|
|
||
| az configure --default group=$RESOURCE_GROUP | ||
|
There was a problem hiding this comment. we may ask user to input the subscription. az account set -s SUB or az configure --default subscription=xxx |
||
|
|
||
| # | ||
| # Create VNET for Azure Container Apps Environment | ||
| # | ||
| VIRTUAL_NETWORK_NAME=vnet-$APPNAME-$UNIQUEID | ||
| az network vnet create \ | ||
| --resource-group $RESOURCE_GROUP \ | ||
| --name $VIRTUAL_NETWORK_NAME \ | ||
| --location $LOCATION \ | ||
| --address-prefix 10.1.0.0/16 | ||
|
|
||
| ACA_SUBNET_CIDR=10.1.0.0/27 | ||
| az network vnet subnet create \ | ||
| --resource-group $RESOURCE_GROUP \ | ||
| --vnet-name $VIRTUAL_NETWORK_NAME \ | ||
| --address-prefixes $ACA_SUBNET_CIDR \ | ||
| --name aca-subnet \ | ||
| --delegations Microsoft.App/environments | ||
|
|
||
| SUBNET_ID="$(az network vnet subnet show --resource-group $RESOURCE_GROUP --vnet-name $VIRTUAL_NETWORK_NAME --name aca-subnet --query "id" -o tsv)" | ||
| echo "Subnet ID: [$SUBNET_ID]" | ||
|
|
||
| # | ||
| # Creating the service on an Azure Container Apps Dedicated plan using the workload profiles option. | ||
| # This plan gives you more advanced features than the alternative Azure Container Apps Consumption plan type | ||
| # | ||
| ACA_ENVIRONMENT=acalab-env-$APPNAME-$UNIQUEID | ||
|
|
||
| # winty is to accomodate git bash on Windows | ||
| # Otherwise, SUBNET_ID will be appended with local drive path | ||
| # NO_PATHCOW is for git bash on Windows | ||
| export MSYS_NO_PATHCONV=1 | ||
|
|
||
| az containerapp env create \ | ||
| -n $ACA_ENVIRONMENT \ | ||
| -g $RESOURCE_GROUP \ | ||
| --location $LOCATION \ | ||
| --enable-workload-profiles true \ | ||
| --infrastructure-subnet-resource-id "$SUBNET_ID" \ | ||
| --logs-destination none | ||
|
|
||
| ACA_ENVIRONMENT_ID=$(az containerapp env show -n $ACA_ENVIRONMENT -g $RESOURCE_GROUP --query id -o tsv) | ||
|
|
||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,56 @@ | ||
| #!/bin/bash | ||
| # | ||
| # Before deploying applications to the Azure Container Apps environment, you’ll need an Azure Container Registry instance that allows you to build and save your application container images. | ||
| # You’ll also need to allow your Container Apps environment to pull images from this new container registry. | ||
| # | ||
| # To give the Container Apps environment secure access to the container registry, we’ll create a user managed identity and assign it the required privileges to use the images stored in your Azure Container Registry. | ||
|
|
||
| APPNAME=petclinic | ||
| RESOURCE_GROUP=$(az group list --query "[?contains(name, 'petclinic')].{Name:name}[0]" -o tsv) | ||
|
||
| echo "Resource group: $RESOURCE_GROUP" | ||
| if [ -z "$RESOURCE_GROUP" ]; then | ||
| echo "Error: Resource group not found." | ||
| exit 1 | ||
| fi | ||
|
|
||
| # Check if a container registry containing the string $APPNAME already exists | ||
| EXISTING_ACR=$(az acr list --resource-group $RESOURCE_GROUP --query "[?contains(name, '$APPNAME')].{Name:name}[0]" -o tsv) | ||
|
|
||
| UNIQUEID=$(openssl rand -hex 3) | ||
|
||
| if [ -n "$EXISTING_ACR" ]; then | ||
| echo "Container registry [$EXISTING_ACR] already exists. Skipping creation." | ||
| MYACR=$EXISTING_ACR | ||
| else | ||
| MYACR=acr$APPNAME$UNIQUEID | ||
| az acr create \ | ||
| -n $MYACR \ | ||
| -g $RESOURCE_GROUP \ | ||
| --sku Basic \ | ||
| --admin-enabled true | ||
| fi | ||
|
|
||
| # Check if ACA environment name containing string "acalab-env" exists | ||
| ACA_ENVIRONMENT=$(az containerapp env list --resource-group $RESOURCE_GROUP --query "[?contains(name, 'acalab-env')].{Name:name}[0]" -o tsv) | ||
|
|
||
| if [ -z "$ACA_ENVIRONMENT" ]; then | ||
| echo "Error: ACA environment containing 'acalab-env' not found." | ||
| exit 1 | ||
| fi | ||
|
|
||
| # Disable path conversion for MSYS (Git Bash) | ||
| export MSYS_NO_PATHCONV=1 | ||
|
|
||
| # Create the identity that your container apps will use. | ||
| APPS_IDENTITY=uid-petclinic-$UNIQUEID | ||
| az identity create --resource-group $RESOURCE_GROUP --name $APPS_IDENTITY --output json | ||
|
|
||
| APPS_IDENTITY_ID=$(az identity show --resource-group $RESOURCE_GROUP --name $APPS_IDENTITY --query id --output tsv) | ||
| APPS_IDENTITY_SP_ID=$(az identity show --resource-group $RESOURCE_GROUP --name $APPS_IDENTITY --query principalId --output tsv) | ||
|
|
||
| echo "Assign the user identity to your Azure Container Apps environment." | ||
| az containerapp env identity assign -g $RESOURCE_GROUP -n $ACA_ENVIRONMENT --user-assigned $APPS_IDENTITY_ID | ||
|
|
||
| # Grant the identity with the necessary privileges to pull images from the container registry. | ||
| ACR_ID=$(az acr show -n $MYACR -g $RESOURCE_GROUP --query id -o tsv) | ||
| az role assignment create --assignee $APPS_IDENTITY_SP_ID --scope $ACR_ID --role acrpull | ||
|
|
||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,62 @@ | ||
| #!/bin/bash | ||
| # | ||
| # Configure the config, discovery, and admin applications. These are available as built-in components of Azure Container Apps. | ||
|
|
||
| APPNAME=petclinic | ||
| RESOURCE_GROUP=$(az group list --query "[?contains(name, 'petclinic')].{Name:name}[0]" -o tsv) | ||
| echo "Resource group: $RESOURCE_GROUP" | ||
| if [ -z "$RESOURCE_GROUP" ]; then | ||
| echo "Error: Resource group not found." | ||
| exit 1 | ||
| fi | ||
|
|
||
| # Create the Spring Cloud Config Server Java component. You’ll need to pass the Git repo information you defined back | ||
| # in the Config repo step to correctly load your configuration information. | ||
| GIT_URI="https://github.com/Azure-Samples/java-on-aca.git" | ||
| SEARCH_PATH="config" | ||
| LABEL=main | ||
|
|
||
| # Check if ACA environment name containing string "acalab-env" exists | ||
| ACA_ENVIRONMENT=$(az containerapp env list --resource-group $RESOURCE_GROUP --query "[?contains(name, 'acalab-env')].{Name:name}[0]" -o tsv) | ||
|
|
||
| if [ -z "$ACA_ENVIRONMENT" ]; then | ||
| echo "Error: ACA environment containing 'acalab-env' not found." | ||
| exit 1 | ||
| fi | ||
|
|
||
| JAVA_CONFIG_COMP_NAME=configserver | ||
| az containerapp env java-component config-server-for-spring create \ | ||
| --environment $ACA_ENVIRONMENT \ | ||
| --resource-group $RESOURCE_GROUP \ | ||
| --name $JAVA_CONFIG_COMP_NAME \ | ||
| --set-configuration spring.cloud.config.server.git.uri=$GIT_URI spring.cloud.config.server.git.search-paths=$SEARCH_PATH spring.cloud.config.server.git.default-label=$LABEL | ||
|
|
||
| # Check the Spring Cloud Config Server Java component to confirm that it was successfully created. | ||
| CONFIG_SERVER_EXISTS=$(az containerapp env java-component config-server-for-spring show \ | ||
| --environment $ACA_ENVIRONMENT \ | ||
| --resource-group $RESOURCE_GROUP \ | ||
| --name $JAVA_CONFIG_COMP_NAME --query "name" -o tsv) | ||
|
|
||
| if [ -z "$CONFIG_SERVER_EXISTS" ]; then | ||
| echo "Error: Config server was not successfully created." | ||
| exit 1 | ||
| fi | ||
|
|
||
| # Create the Spring Cloud Eureka Server Java component. This will create a standard Eureka endpoint within | ||
| # the Container Apps environment. The Spring Petclinic workload will use this for discovery services. | ||
| JAVA_EUREKA_COMP_NAME=eureka | ||
| az containerapp env java-component eureka-server-for-spring create \ | ||
| --environment $ACA_ENVIRONMENT \ | ||
| --resource-group $RESOURCE_GROUP \ | ||
| --name $JAVA_EUREKA_COMP_NAME \ | ||
| --set-configuration eureka.server.response-cache-update-interval-ms=10000 | ||
|
|
||
| # Create a new Spring Boot Admin application and bind it to the Eureka Server | ||
| JAVA_SBA_COMP_NAME=springbootadmin | ||
| az containerapp env java-component admin-for-spring create \ | ||
| --environment $ACA_ENVIRONMENT \ | ||
| --resource-group $RESOURCE_GROUP \ | ||
| --name $JAVA_SBA_COMP_NAME \ | ||
| --bind $JAVA_EUREKA_COMP_NAME \ | ||
| --min-replicas 1 \ | ||
| --max-replicas 1 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,33 @@ | ||
| #!/bin/bash | ||
|
|
||
| UNIQUEID=$(openssl rand -hex 3) | ||
| APPNAME=petclinic | ||
|
|
||
| RESOURCE_GROUP=$(az group list --query "[?contains(name, 'petclinic')].{Name:name}[0]" -o tsv) | ||
|
|
||
| # This script creates an Azure MySQL server and an Azure Container Registry (ACR) in a specified resource group. | ||
| MYSQL_SERVER_NAME=mysql-$APPNAME-$UNIQUEID | ||
| MYSQL_ADMIN_USERNAME=sqladmin | ||
| MYSQL_ADMIN_PASSWORD="5qVYxsoyaV9qJN" | ||
| DATABASE_NAME=petclinic | ||
|
|
||
| az mysql flexible-server create \ | ||
| --admin-user "$MYSQL_ADMIN_USERNAME" \ | ||
| --admin-password "$MYSQL_ADMIN_PASSWORD" \ | ||
| --name "$MYSQL_SERVER_NAME" \ | ||
| --resource-group "$RESOURCE_GROUP" \ | ||
| --public-access none \ | ||
| --yes | ||
| az mysql flexible-server db create \ | ||
| --server-name $MYSQL_SERVER_NAME \ | ||
| --resource-group $RESOURCE_GROUP \ | ||
| -d $DATABASE_NAME | ||
|
|
||
| # | ||
| # Allow public access to the MySQL server | ||
| # | ||
| az mysql flexible-server firewall-rule create \ | ||
| --rule-name allAzureIPs \ | ||
| --name $MYSQL_SERVER_NAME \ | ||
| --resource-group $RESOURCE_GROUP \ | ||
| --start-ip-address 0.0.0.0 --end-ip-address 0.0.0.0 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,22 @@ | ||
| #!/bin/bash | ||
|
|
||
| # Get the application code from public upstream repo, and then build the applications. | ||
| cd ../../../spring-petclinic-microservices | ||
| git submodule update --init | ||
| mvn clean package -DskipTests | ||
|
|
||
| # Build the Docker image using the Dockerfile | ||
|
|
||
| DOCKERFILE="../tools/Dockerfile" | ||
| if [ ! -f $DOCKERFILE ]; then | ||
| echo "Dockerfile not found at $DOCKERFILE" | ||
| exit 1 | ||
| fi | ||
|
|
||
| docker build -t petclinic-admin-server:latest -f $DOCKERFILE ./spring-petclinic-admin-server | ||
| docker build -t petclinic-api-gateway:latest -f $DOCKERFILE ./spring-petclinic-api-gateway | ||
| docker build -t petclinic-config-server:latest -f $DOCKERFILE ./spring-petclinic-config-server | ||
| docker build -t petclinic-customers-service:latest -f $DOCKERFILE ./spring-petclinic-customers-service | ||
| docker build -t petclinic-discovery-server:latest -f $DOCKERFILE ./spring-petclinic-discovery-server | ||
| docker build -t petclinic-vets-service:latest -f $DOCKERFILE ./spring-petclinic-vets-service | ||
| docker build -t petclinic-visits-service:latest -f $DOCKERFILE ./spring-petclinic-visits-service |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.