Merge pull request #244035 from KarlErickson/karler-export

bulk update to fix Bash variable formatting

Author: American-Dipper

articles/spring-apps/access-app-virtual-network.md

@@ -41,17 +41,17 @@ When **Assign Endpoint** on applications in an Azure Spring Apps service instanc
 Find the IP Address for your Spring Cloud services. Customize the value of your Azure Spring Apps instance name based on your real environment.
 
 ```azurecli
-SPRING_CLOUD_NAME='spring-cloud-name'
-SERVICE_RUNTIME_RG=`az spring show \
+export SPRING_CLOUD_NAME='spring-cloud-name'
+export SERVICE_RUNTIME_RG=$(az spring show \
     --resource-group $RESOURCE_GROUP \
     --name $SPRING_CLOUD_NAME \
     --query "properties.networkProfile.serviceRuntimeNetworkResourceGroup" \
-    --output tsv`
-IP_ADDRESS=`az network lb frontend-ip list \
+    --output tsv)
+export IP_ADDRESS=$(az network lb frontend-ip list \
     --lb-name kubernetes-internal \
     --resource-group $SERVICE_RUNTIME_RG \
     --query "[0].privateIpAddress" \
-    --output tsv`
+    --output tsv)
 ```
 
 ---
@@ -84,9 +84,9 @@ The following procedure creates a private DNS zone for an application in the pri
 1. Define variables for your subscription, resource group, and Azure Spring Apps instance. Customize the values based on your real environment.
 
    ```azurecli
-   SUBSCRIPTION='subscription-id'
-   RESOURCE_GROUP='my-resource-group'
-   VIRTUAL_NETWORK_NAME='azure-spring-apps-vnet'
+   export SUBSCRIPTION='subscription-id'
+   export RESOURCE_GROUP='my-resource-group'
+   export VIRTUAL_NETWORK_NAME='azure-spring-apps-vnet'
    ```
 
 1. Sign in to the Azure CLI and choose your active subscription.
@@ -96,7 +96,7 @@ The following procedure creates a private DNS zone for an application in the pri
    az account set --subscription ${SUBSCRIPTION}
    ```
 
-1. Create the private DNS zone. 
+1. Create the private DNS zone.
 
    ```azurecli
    az network private-dns zone create \
@@ -167,14 +167,14 @@ To use the private DNS zone to translate/resolve DNS, you must create an "A" typ
 
 #### [CLI](#tab/azure-CLI)
 
-Use the [IP address](#find-the-ip-for-your-application) to create the A record in your DNS zone. 
+Use the [IP address](#find-the-ip-for-your-application) to create the A record in your DNS zone.
 
 ```azurecli
 az network private-dns record-set a add-record \
-  --resource-group $RESOURCE_GROUP \
-  --zone-name private.azuremicroservices.io \
-  --record-set-name '*' \
-  --ipv4-address $IP_ADDRESS
+    --resource-group $RESOURCE_GROUP \
+    --zone-name private.azuremicroservices.io \
+    --record-set-name '*' \
+    --ipv4-address $IP_ADDRESS
 ```
 
 ---
@@ -200,7 +200,7 @@ After following the procedure in [Deploy Azure Spring Apps in a virtual network]
 Update your app to assign an endpoint to it. Customize the value of your app name based on your real environment.
 
 ```azurecli
-SPRING_CLOUD_APP='your spring cloud app'
+export SPRING_CLOUD_APP='your spring cloud app'
 az spring app update \
     --resource-group $RESOURCE_GROUP \
     --name $SPRING_CLOUD_APP \

articles/spring-apps/connect-managed-identity-to-azure-sql.md

@@ -88,7 +88,7 @@ Configure your app deployed to Azure Spring Apps to connect to an Azure SQL Data
 1. Use the following command to check the creation result:
 
    ```azurecli
-   CONNECTION_NAME=$(az spring connection list \
+   export CONNECTION_NAME=$(az spring connection list \
       --resource-group $SPRING_APP_RESOURCE_GROUP \
       --service $SPRING_APP_SERVICE_NAME \
       --app $APP_NAME  \

articles/spring-apps/expose-apps-gateway-end-to-end-tls.md

@@ -48,15 +48,15 @@ To configure Application Gateway in front of Azure Spring Apps, use the followin
 Next, use the following commands to define variables for the resource group and virtual network you created as directed in [Deploy Azure Spring Apps in a virtual network](./how-to-deploy-in-azure-virtual-network.md). Customize the values based on your real environment. When you define `SPRING_APP_PRIVATE_FQDN`, remove `https://` from the URI.
 
 ```bash
-SUBSCRIPTION='subscription-id'
-RESOURCE_GROUP='my-resource-group'
-LOCATION='eastus'
-SPRING_CLOUD_NAME='name-of-spring-cloud-instance'
-APPNAME='name-of-app-in-azure-spring-apps'
-SPRING_APP_PRIVATE_FQDN='$APPNAME.private.azuremicroservices.io'
-VIRTUAL_NETWORK_NAME='azure-spring-apps-vnet'
-APPLICATION_GATEWAY_SUBNET_NAME='app-gw-subnet'
-APPLICATION_GATEWAY_SUBNET_CIDR='10.1.2.0/24'
+export SUBSCRIPTION='subscription-id'
+export RESOURCE_GROUP='my-resource-group'
+export LOCATION='eastus'
+export SPRING_CLOUD_NAME='name-of-spring-cloud-instance'
+export APPNAME='name-of-app-in-azure-spring-apps'
+export SPRING_APP_PRIVATE_FQDN='$APPNAME.private.azuremicroservices.io'
+export VIRTUAL_NETWORK_NAME='azure-spring-apps-vnet'
+export APPLICATION_GATEWAY_SUBNET_NAME='app-gw-subnet'
+export APPLICATION_GATEWAY_SUBNET_CIDR='10.1.2.0/24'
 ```
 
 ## Sign in to Azure
@@ -107,8 +107,8 @@ Next, adapt the policy JSON as shown in the following example, indicating the `s
 After you've finished updating the policy JSON (see [Update Certificate Policy](/rest/api/keyvault/certificates/update-certificate-policy/update-certificate-policy)), you can create a self-signed certificate in Key Vault by using the following commands:
 
 ```azurecli
-KV_NAME='name-of-key-vault'
-CERT_NAME_IN_KEY_VAULT='name-of-certificate-in-key-vault'
+export KV_NAME='name-of-key-vault'
+export CERT_NAME_IN_KEY_VAULT='name-of-certificate-in-key-vault'
 
 az keyvault certificate create \
     --vault-name $KV_NAME \
@@ -123,20 +123,32 @@ az keyvault certificate create \
 Traffic will enter the application deployed on Azure Spring Apps using the public domain name. To configure your application to listen to this host name and do so over HTTPS, use the following commands to add a custom domain to your app:
 
 ```azurecli
-KV_NAME='name-of-key-vault'
-KV_RG='resource-group-name-of-key-vault'
-CERT_NAME_IN_AZURE_SPRING_APPS='name-of-certificate-in-Azure-Spring-Apps'
-CERT_NAME_IN_KEY_VAULT='name-of-certificate-with-intermediaries-in-key-vault'
-DOMAIN_NAME=myapp.mydomain.com
+export KV_NAME='name-of-key-vault'
+export KV_RG='resource-group-name-of-key-vault'
+export CERT_NAME_IN_AZURE_SPRING_APPS='name-of-certificate-in-Azure-Spring-Apps'
+export CERT_NAME_IN_KEY_VAULT='name-of-certificate-with-intermediaries-in-key-vault'
+export DOMAIN_NAME=myapp.mydomain.com
 
 # provide permissions to Azure Spring Apps to read the certificate from Key Vault:
-VAULTURI=$(az keyvault show -n $KV_NAME -g $KV_RG --query properties.vaultUri -o tsv)
+export VAULTURI=$(az keyvault show \
+    --resource-group $KV_RG \
+    --name $KV_NAME \
+    --query properties.vaultUri \
+    --output tsv)
 
 # get the object id for the Azure Spring Apps Domain-Management Service Principal:
-ASADM_OID=$(az ad sp show --id 03b39d0f-4213-4864-a245-b1476ec03169 --query objectId --output tsv)
+export ASADM_OID=$(az ad sp show \
+    --id 03b39d0f-4213-4864-a245-b1476ec03169 \
+    --query objectId \
+    --output tsv)
 
 # allow this Service Principal to read and list certificates and secrets from Key Vault:
-az keyvault set-policy -g $KV_RG -n $KV_NAME  --object-id $ASADM_OID --certificate-permissions get list --secret-permissions get list
+az keyvault set-policy \
+    --resource-group $KV_RG \
+    --name $KV_NAME \
+    --object-id $ASADM_OID \
+    --certificate-permissions get list \
+    --secret-permissions get list
 
 # add custom domain name and configure TLS using the certificate:
 az spring certificate add \
@@ -157,7 +169,7 @@ az spring app custom-domain bind \
 The Azure Application Gateway to be created will join the same virtual network as--or peered virtual network to--the Azure Spring Apps service instance. First create a new subnet for the Application Gateway in the virtual network using `az network vnet subnet create`, and also create a Public IP address as the Frontend of the Application Gateway using `az network public-ip create`.
 
 ```azurecli
-APPLICATION_GATEWAY_PUBLIC_IP_NAME='app-gw-public-ip'
+export APPLICATION_GATEWAY_PUBLIC_IP_NAME='app-gw-public-ip'
 az network vnet subnet create \
     --name $APPLICATION_GATEWAY_SUBNET_NAME \
     --resource-group $RESOURCE_GROUP \
@@ -176,7 +188,7 @@ az network public-ip create \
 Application Gateway will need to be able to access Key Vault to read the certificate. To do so, it will use a User-assigned [Managed Identity](../active-directory/managed-identities-azure-resources/overview.md). Create the Managed Identity by using the following command:
 
 ```azurecli
-APPGW_IDENTITY_NAME='name-for-appgw-managed-identity'
+export APPGW_IDENTITY_NAME='name-for-appgw-managed-identity'
 az identity create \
     --resource-group $RESOURCE_GROUP \
     --name $APPGW_IDENTITY_NAME
@@ -185,8 +197,15 @@ az identity create \
 Then fetch the objectId for the Managed Identity as it will be used later on to give rights to access the certificate in Key Vault:
 
 ```azurecli
-APPGW_IDENTITY_CLIENTID=$(az identity show --resource-group $RESOURCE_GROUP --name $APPGW_IDENTITY_NAME --query clientId --output tsv)
-APPGW_IDENTITY_OID=$(az ad sp show --id $APPGW_IDENTITY_CLIENTID --query objectId --output tsv)
+export APPGW_IDENTITY_CLIENTID=$(az identity show \
+    --resource-group $RESOURCE_GROUP \
+    --name $APPGW_IDENTITY_NAME \
+    --query clientId \
+    --output tsv)
+export APPGW_IDENTITY_OID=$(az ad sp show \
+    --id $APPGW_IDENTITY_CLIENTID \
+    --query objectId \
+    --output tsv)
 ```
 
 ## Set policy on Key Vault
@@ -207,9 +226,13 @@ az keyvault set-policy \
 Create an application gateway using `az network application-gateway create` and specify your application's private fully qualified domain name (FQDN) as servers in the backend pool. Make sure to use the user-assigned Managed Identity and to point to the certificate in Key Vault using the certificate's Secret ID. Then update the HTTP setting using `az network application-gateway http-settings update` to use the public host name.
 
 ```azurecli
-APPGW_NAME='name-for-application-gateway'
+export APPGW_NAME='name-for-application-gateway'
 
-KEYVAULT_SECRET_ID_FOR_CERT=$(az keyvault certificate show --name $CERT_NAME_IN_KEY_VAULT --vault-name $KV_NAME --query sid --output tsv)
+export KEYVAULT_SECRET_ID_FOR_CERT=$(az keyvault certificate show \
+    --name $CERT_NAME_IN_KEY_VAULT \
+    --vault-name $KV_NAME \
+    --query sid \
+    --output tsv)
 
 az network application-gateway create \
     --name $APPGW_NAME \

articles/spring-apps/expose-apps-gateway-tls-termination.md

@@ -47,15 +47,15 @@ To configure Application Gateway in front of Azure Spring Apps in a private VNET
 Next, use the following commands to define variables for the resource group and virtual network you created as directed in [Deploy Azure Spring Apps in a virtual network](how-to-deploy-in-azure-virtual-network.md). Replace the *\<...>* placeholders with real values based on your actual environment. When you define `SPRING_APP_PRIVATE_FQDN`, remove `https://` from the URI.
 
 ```bash
-SUBSCRIPTION='<subscription-id>'
-RESOURCE_GROUP='<resource-group-name>'
-LOCATION='eastus'
-SPRING_CLOUD_NAME='<name-of-Azure-Spring-Apps-instance>'
-APPNAME='<name-of-app-in-Azure-Spring-Apps>'
-SPRING_APP_PRIVATE_FQDN='$APPNAME.private.azuremicroservices.io'
-VIRTUAL_NETWORK_NAME='azure-spring-apps-vnet'
-APPLICATION_GATEWAY_SUBNET_NAME='app-gw-subnet'
-APPLICATION_GATEWAY_SUBNET_CIDR='10.1.2.0/24'
+export SUBSCRIPTION='<subscription-id>'
+export RESOURCE_GROUP='<resource-group-name>'
+export LOCATION='eastus'
+export SPRING_CLOUD_NAME='<name-of-Azure-Spring-Apps-instance>'
+export APPNAME='<name-of-app-in-Azure-Spring-Apps>'
+export SPRING_APP_PRIVATE_FQDN='$APPNAME.private.azuremicroservices.io'
+export VIRTUAL_NETWORK_NAME='azure-spring-apps-vnet'
+export APPLICATION_GATEWAY_SUBNET_NAME='app-gw-subnet'
+export APPLICATION_GATEWAY_SUBNET_CIDR='10.1.2.0/24'
 ```
 
 ## Sign in to Azure
@@ -72,10 +72,10 @@ az account set --subscription $SUBSCRIPTION
 Traffic will enter the application deployed on Azure Spring Apps using the public domain name. To configure your application to listen to this host name over HTTP, use the following commands to add a custom domain to your app, replacing the *\<...>* placeholders with real values:
 
 ```azurecli
-KV_NAME='<name-of-key-vault>'
-KV_RG='<resource-group-name-of-key-vault>'
-CERT_NAME_IN_KV='<name-of-certificate-with-intermediaries-in-key-vault>'
-DOMAIN_NAME=myapp.mydomain.com
+export KV_NAME='<name-of-key-vault>'
+export KV_RG='<resource-group-name-of-key-vault>'
+export CERT_NAME_IN_KV='<name-of-certificate-with-intermediaries-in-key-vault>'
+export DOMAIN_NAME=myapp.mydomain.com
 
 az spring app custom-domain bind \
     --resource-group $RESOURCE_GROUP \
@@ -89,7 +89,7 @@ az spring app custom-domain bind \
 The application gateway to be created will join the same virtual network as the Azure Spring Apps service instance. First, create a new subnet for the application gateway in the virtual network, then create a public IP address as the frontend of the application gateway, as shown in the following example.
 
 ```azurecli
-APPLICATION_GATEWAY_PUBLIC_IP_NAME='app-gw-public-ip'
+export APPLICATION_GATEWAY_PUBLIC_IP_NAME='app-gw-public-ip'
 az network vnet subnet create \
     --name $APPLICATION_GATEWAY_SUBNET_NAME \
     --resource-group $RESOURCE_GROUP \
@@ -108,7 +108,7 @@ az network public-ip create \
 Your application gateway will need to be able to access Key Vault to read the certificate. To do this, the application gateway will use a user-assigned managed identity. For more information, see [What are managed identities for Azure resources?](../active-directory/managed-identities-azure-resources/overview.md). Create the managed identity by using the following command, replacing the *\<...>* placeholder:
 
 ```azurecli
-APPGW_IDENTITY_NAME='<name-for-appgw-managed-identity>'
+export APPGW_IDENTITY_NAME='<name-for-appgw-managed-identity>'
 az identity create \
     --resource-group $RESOURCE_GROUP \
     --name $APPGW_IDENTITY_NAME
@@ -117,8 +117,15 @@ az identity create \
 Then, use the following command to fetch the `objectId` for the managed identity. This value will be used later on to give rights to access the certificate in Key Vault.
 
 ```azurecli
-APPGW_IDENTITY_CLIENTID=$(az identity show --resource-group $RESOURCE_GROUP --name $APPGW_IDENTITY_NAME --query clientId --output tsv)
-APPGW_IDENTITY_OID=$(az ad sp show --id $APPGW_IDENTITY_CLIENTID --query objectId --output tsv)
+export APPGW_IDENTITY_CLIENTID=$(az identity show \
+    --resource-group $RESOURCE_GROUP \
+    --name $APPGW_IDENTITY_NAME \
+    --query clientId \
+    --output tsv)
+export APPGW_IDENTITY_OID=$(az ad sp show \
+    --id $APPGW_IDENTITY_CLIENTID \
+    --query objectId \
+    --output tsv)
 ```
 
 ### Set policy on Key Vault
@@ -141,9 +148,13 @@ az keyvault set-policy \
 Create an application gateway using `az network application-gateway create` and specify your application's private fully qualified domain name (FQDN) as servers in the backend pool. Be sure to use the user-assigned managed identity and point to the certificate in Key Vault using the certificate's secret ID.
 
 ```azurecli
-APPGW_NAME='<name-for-application-gateway>'
-CERT_NAME_IN_KV='<name-of-certificate-in-key-vault>'
-KEYVAULT_SECRET_ID_FOR_CERT=$(az keyvault certificate show --name $CERT_NAME_IN_KV --vault-name $KV_NAME --query sid --output tsv)
+export APPGW_NAME='<name-for-application-gateway>'
+export CERT_NAME_IN_KV='<name-of-certificate-in-key-vault>'
+export KEYVAULT_SECRET_ID_FOR_CERT=$(az keyvault certificate show \
+    --name $CERT_NAME_IN_KV \
+    --vault-name $KV_NAME \
+    --query sid \
+    --output tsv)
 
 az network application-gateway create \
     --name $APPGW_NAME \

articles/spring-apps/how-to-bind-mysql.md

@@ -60,11 +60,11 @@ Follow these steps to configure your Spring app to connect to an Azure Database
 1. Then, use the following command to create a user-assigned managed identity for Azure Active Directory authentication. Be sure to replace the variables in the example with actual values. For more information, see [Set up Azure Active Directory authentication for Azure Database for MySQL - Flexible Server](../mysql/flexible-server/how-to-azure-ad.md).
 
    ```azurecli
-   AZ_IDENTITY_RESOURCE_ID=$(az identity create \
-    --name $AZURE_USER_IDENTITY_NAME \
-    --resource-group $AZURE_IDENTITY_RESOURCE_GROUP \
-    --query id \
-    --output tsv)
+   export AZ_IDENTITY_RESOURCE_ID=$(az identity create \
+       --name $AZURE_USER_IDENTITY_NAME \
+       --resource-group $AZURE_IDENTITY_RESOURCE_GROUP \
+       --query id \
+       --output tsv)
    ```
 
 1. Run the `az spring connection create` command, as shown in the following example. Be sure to replace the variables in the example with actual values.