Merge branch 'callautomation/release/beta7' of https://github.com/Azure/azure-sdk-for-python into callautomation/release/beta7

v-dharmarajv · v-dharmarajv · commit 2efad0204b0b · 2025-09-10T15:01:04.000-07:00
diff --git a/eng/tools/azure-sdk-tools/packaging_tools/venvtools.py b/eng/tools/azure-sdk-tools/packaging_tools/venvtools.py
@@ -0,0 +1,58 @@
+from contextlib import contextmanager
+import tempfile
+import subprocess
+import venv
+
+
+class ExtendedEnvBuilder(venv.EnvBuilder):
+    """An extended env builder which saves the context, to have access
+    easily to bin path and such.
+    """
+
+    def __init__(self, *args, **kwargs):
+        self.context = None
+        super(ExtendedEnvBuilder, self).__init__(*args, **kwargs)
+
+    def ensure_directories(self, env_dir):
+        self.context = super(ExtendedEnvBuilder, self).ensure_directories(env_dir)
+        return self.context
+
+
+def create(
+    env_dir,
+    system_site_packages=False,
+    clear=False,
+    symlinks=False,
+    with_pip=False,
+    prompt=None,
+):
+    """Create a virtual environment in a directory."""
+    builder = ExtendedEnvBuilder(
+        system_site_packages=system_site_packages,
+        clear=clear,
+        symlinks=symlinks,
+        with_pip=with_pip,
+        prompt=prompt,
+    )
+    builder.create(env_dir)
+    return builder.context
+
+
+@contextmanager
+def create_venv_with_package(packages):
+    """Create a venv with these packages in a temp dir and yielf the env.
+
+    packages should be an iterable of pip version instructio (e.g. package~=1.2.3)
+    """
+    with tempfile.TemporaryDirectory() as tempdir:
+        myenv = create(tempdir, with_pip=True)
+        pip_call = [
+            myenv.env_exe,
+            "-m",
+            "pip",
+            "install",
+        ]
+        subprocess.check_call(pip_call + ["-U", "pip"])
+        if packages:
+            subprocess.check_call(pip_call + packages)
+        yield myenv
diff --git a/sdk/cosmos/azure-cosmos/tests/workloads/envoy/envoy_documentation.md b/sdk/cosmos/azure-cosmos/tests/workloads/envoy/envoy_documentation.md
@@ -0,0 +1,83 @@
+<!-- cspell:disable -->
+# Envoy Configuration Documentation
+
+**Purpose:**  
+This Envoy proxy configuration manages traffic routing to internal and external services, such as Azure Cosmos DB endpoints, while exposing local admin metrics. It enforces strict retry logic, TLS encryption, and structured access logging.
+
+---
+
+## Listeners
+
+### 1. `admin-listener` (Port `8080`)
+
+**Purpose:** Handles health checks and Prometheus metrics access for observability.
+
+**Routes:**
+
+| Path       | Action                                  |
+|------------|------------------------------------------|
+| `/ready`   | Routed to `admin_port_cluster`           |
+| `/metrics` | Routed to `admin_port_cluster` with `prefix_rewrite: /stats/prometheus` |
+| `*`        | Returns HTTP 404 (direct response)       |
+
+**HTTP Filter Chain:**
+- Uses `envoy.filters.http.router`
+- Enables `respect_expected_rq_timeout: true` to support `x-envoy-expected-rq-timeout-ms` header.
+
+---
+
+### 2. `main-listener` (Port `5100`)
+
+**Purpose:** Handles user/application traffic and routes to various external services including Azure Cosmos DB regions.
+
+**Key Settings:**
+- **Stat Prefix:** `router_http`
+- **Scheme Overwrite:** Forces outgoing requests to use `https` (`scheme_header_transformation`)
+- **Strip Host Ports:** Enabled (`strip_any_host_port: true`)
+- **Node ID-based Proxy Status:** Enabled
+
+**Timeouts and Limits:**
+
+| Setting                    | Value   |
+|----------------------------|---------|
+| Max Connection Duration    | 900s    |
+| Drain Timeout              | 330s    |
+| Stream Idle Timeout        | 60s     |
+| Max Request Header Size    | 120 KB  |
+
+**Response Header Modification:**
+- Adds: `via: %ENVIRONMENT(POD_NAME)%` (for traceability)
+
+**HTTP Filters:**
+- Only one: `envoy.filters.http.router`, with retry logic support.
+
+**Routes:**
+
+| Name                                  | Domains                       | Cluster   | Retry Policy                                  |
+|---------------------------------------|-------------------------------|-----------|-----------------------------------------------|
+| `local_<account_name>`                | `*`                           | `<>`      | `connect-failure,refused-stream,reset`, 3 retries |
+| `local_<account_name>-<write_region>` | `<account_name>-<write_region>.documents.azure.com` | `<account_name>-<write_region>` | Same                                         |
+| `local_<account_name>-<read_region>`  | `<account_name>-<read_region>.documents.azure.com`   | `<account_name>-<read_region>`   | Same                                          |
+| `local_heise`                         | `www.heise.de`                | `heise`   | Same                                          |
+
+---
+
+## Request Routing Flow (Mermaid Diagram)
+
+```mermaid
+graph TD
+    A[Incoming Request] --> B{Listener}
+    B -->|Port 8080| C[admin-listener]
+    B -->|Port 5100| D[main-listener]
+
+    C --> E{Path}
+    E -->|/ready| F[Route to admin_port_cluster]
+    E -->|/metrics| G[Rewrite + Route to admin_port_cluster]
+    E -->|other| H[Return 404]
+
+    D --> I{Domain/Prefix Match}
+    I -->|\*| J[Route to Cluster account_name]
+    I -->|account_name-write_region.documents.azure.com| K[Route to Cluster account_name-write_region]
+    I -->|account_name-read_region.documents.azure.com| L[Route to Cluster account_name-read_region]
+    I -->|www\.heise.de| M[Route to Cluster heise]
+```
diff --git a/sdk/cosmos/azure-cosmos/tests/workloads/envoy/templates/envoy_complex_config.yaml b/sdk/cosmos/azure-cosmos/tests/workloads/envoy/templates/envoy_complex_config.yaml
