Adding github workflow

Author: erikschlegel

.github/workflows/azure-dev.yaml

@@ -0,0 +1,80 @@
+on:
+  workflow_dispatch:
+  push:
+    branches:
+      - main
+    paths:
+      - 'azure.yaml' 
+      - 'infra/**'
+      - 'src/**'
+      - 'tests/**'
+      - '.github/workflows/azure-dev.yml'
+
+permissions:
+    id-token: write
+    contents: read
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    env:
+      AZURE_CLIENT_ID: ${{ vars.AZURE_CLIENT_ID }}
+      AZURE_TENANT_ID: ${{ vars.AZURE_TENANT_ID }}
+      AZURE_SUBSCRIPTION_ID: ${{ vars.AZURE_SUBSCRIPTION_ID }}
+      AZURE_ENV_NAME: ${{ vars.AZURE_ENV_NAME }}
+      AZURE_LOCATION: ${{ vars.AZURE_LOCATION }}
+      GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}
+      GITOPS_REPO: ${{ vars.GITOPS_REPO }}
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+      - name: Install azd
+        uses: Azure/[email protected]
+      - name: pre validation
+        shell: bash
+        run: |
+            for varName in GITHUB_TOKEN AZURE_ENV_NAME AZURE_LOCATION AZURE_SUBSCRIPTION_ID GITOPS_REPO AZURE_TENANT_ID; do
+                varVal=$(eval echo "\${$varName}")
+                [[ -z $varVal ]] && {
+                echo "💥 Error! Required env variable or secret '$varName' is not set!"
+                envUnset=true
+            }
+            done
+            if [ "$envUnset" = true ]; then 
+                exit 1
+            fi
+
+      - name: Kubectl Install
+        uses: azure/setup-kubectl@v3
+
+      - name: Log in with Azure
+        if: ${{ env.AZURE_CLIENT_ID != '' }}
+        run: |
+            azd auth login --no-prompt `
+                --client-id "$Env:AZURE_CLIENT_ID" `
+                --federated-credential-provider "github" `
+                --tenant-id "$Env:AZURE_TENANT_ID"
+        shell: pwsh
+
+      - name: Azure login (for the preprovision script)
+        uses: azure/login@v1
+        with:
+          client-id: ${{ env.AZURE_CLIENT_ID }}
+          subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }}
+          tenant-id: ${{ env.AZURE_TENANT_ID }}
+
+      - name: Github CLI install
+        run: |
+            type -p curl >/dev/null || apt install curl -y
+            sudo curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg | dd of=/usr/share/keyrings/githubcli-archive-keyring.gpg \
+            && chmod go+r /usr/share/keyrings/githubcli-archive-keyring.gpg \
+            && echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/githubcli-archive-keyring.gpg] https://cli.github.com/packages stable main" | sudo tee /etc/apt/sources.list.d/github-cli.list > /dev/null \
+            && sudo apt update \
+            && sudo apt install gh jq gettext-base -y
+
+      - name: Azure Dev Provision
+        run: |
+            git config --global user.name github-actions
+            git config --global user.email [email protected]
+
+            azd up --no-prompt

scripts/postpipelineconfig.sh

@@ -0,0 +1,42 @@
+#!/bin/bash
+PWD=$(dirname "$0")
+
+function sourceAzdEnvVars() {
+while IFS='=' read -r key value; do
+  value=$(echo "$value" | sed 's/^"//' | sed 's/"$//')
+  export "$key=$value"
+done <<EOF
+$(azd env get-values)
+EOF
+}
+
+GIT_CONTROLLER_URL=$(git remote get-url origin)
+
+function pre_validation () {
+  local git_url=$1
+
+  [[ ! -z $git_url ]] && {
+        echo "💥 Error! Git remote is missing. This script should run after azd pipeline config!"
+        exit
+  }
+
+  for varName in AZURE_AKS_CLUSTER_NAME GITHUB_TOKEN; do
+    varVal=$(eval echo "\${$varName}")
+    [[ -z $varVal ]] && {
+      echo "💥 Error! Required variable '$varName' is not set!"
+      varUnset=true
+    }
+  done
+}
+
+sourceAzdEnvVars
+pre_validation
+GIT_CONTROLLER_REPO=$(echo $GIT_CONTROLLER_URL | sed 's|https://github.com/||')
+
+gh secret set GH_TOKEN --body "${GITHUB_TOKEN}" --repo $GIT_CONTROLLER_REPO
+
+for env in AZURE_AKS_CLUSTER_NAME; do
+  echo "setting env variable: ${env} in repo: ${GIT_CONTROLLER_REPO}"
+  envVal=$(eval echo "\${$env}")
+  gh variable set $env --body "${envVal}" --repo $GIT_CONTROLLER_REPO
+done

src/api/manifests/values.yaml.tmpl

@@ -23,6 +23,7 @@ secretStore:
   tenantId: ${AZURE_TENANT_ID}
   useVMManagedIdentity: "true"
   usePodIdentity: "false"
+  cloudName: AzureCloud
   secrets:
   - envName: APPLICATIONINSIGHTS_CONNECTION_STRING
     objectName: appInsightsConnectionString

src/hooks/preprovision.py

@@ -14,6 +14,22 @@ def prompt_user_for_target_clusters(clusters):
     Returns:
         ManagedCluster: The selected cluster.
     """
+
+    # If the AZURE_AKS_CLUSTER_NAME enviornment variable is set, use that to filter the \
+    # cluster from the clusters list
+    if os.environ.get("AZURE_AKS_CLUSTER_NAME") is not None:
+        cluster_name = os.environ.get("AZURE_AKS_CLUSTER_NAME")
+        clusters = [cluster for cluster in clusters if cluster.name == cluster_name]
+
+        if len(clusters) == 0:
+            raise ValueError(
+                f"No AKS clusters found with the name {cluster_name}. Please create \
+                    an AKS cluster and set the \
+            {AZD_ENVIRONMENT_NAME_RESOURCE_TAG} tag."
+            )
+
+        return clusters[0]
+
     title = "Select a Big Bang cluster for your deployment environment"
 
     options = [