private network

karpikpl · karpikpl · commit 769883cf8e57 · 2024-10-07T17:13:04.000-04:00
Signed-off-by: Piotr Karpala &lt;piotrkarpala@microsoft.com&gt;
diff --git a/.gitignore b/.gitignore
@@ -23,4 +23,5 @@ pnpm-debug.log*
 *.sw?
 .azure
 
-api/public
+api/public
+test.http
diff --git a/azure-deploy/with-app-registration/azuredeploy.json b/azure-deploy/with-app-registration/azuredeploy.json
@@ -45,6 +45,13 @@
             "metadata": {
                 "description": "Docker image for metrics viewer - use default or replace with your own"
             }
+        },
+        "subnetId": {
+            "type": "string",
+            "defaultValue": "",
+            "metadata": {
+                "description": "Subnet ID (at least /23) for the managed environment when deploying app without public access"
+            }
         }
     },
     "variables": {
@@ -140,6 +147,10 @@
                         "customerId": "[reference(concat('Microsoft.OperationalInsights/workspaces/', variables('workspaceName')), '2020-08-01').customerId]",
                         "sharedKey": "[listKeys(concat('Microsoft.OperationalInsights/workspaces/', variables('workspaceName')), '2020-08-01').primarySharedKey]"
                     }
+                },
+                "vnetConfiguration": {
+                    "infrastructureSubnetId" : "[parameters('subnetId')]",
+                    "internal": "[if(equals(parameters('subnetId'), ''), json('false'), json('true'))]"
                 }
             }
         },
diff --git a/azure-deploy/with-token/azuredeploy.json b/azure-deploy/with-token/azuredeploy.json
@@ -21,14 +21,14 @@
         },
         "github-organization": {
             "type": "string",
-            "defaultValue":"",
+            "defaultValue": "",
             "metadata": {
                 "description": "GitHub Organization - provide only if application-scope is organization"
             }
         },
         "github-enterprise": {
             "type": "string",
-            "defaultValue":"",
+            "defaultValue": "",
             "metadata": {
                 "description": "GitHub Enterprise - provide only if application-scope is enterprise"
             }
@@ -39,12 +39,21 @@
             "metadata": {
                 "description": "Docker image for metrics viewer - use default or replace with your own"
             }
+        },
+        "subnetId": {
+            "type": "string",
+            "defaultValue": "",
+            "metadata": {
+                "description": "Subnet ID (at least /23) for the managed environment when deploying app without public access"
+            }
         }
     },
     "variables": {
         "environmentName": "[concat(parameters('name'),'-env')]",
         "workspaceName": "[concat(parameters('name'),'-ai')]",
-        "app-scope": "[if(not(empty(parameters('github-organization'))), 'organization', if(not(empty(parameters('github-enterprise'))), 'enterprise', ''))]"
+        "app-scope": "[if(not(empty(parameters('github-organization'))), 'organization', if(not(empty(parameters('github-enterprise'))), 'enterprise', ''))]",
+        "vnetId": "[concat(split(parameters('subnetId'), '/subnets/')[0])]",
+        "dnsZoneName": "azurecontainerapps.io"
     },
     "resources": [
         {
@@ -130,9 +139,58 @@
                         "customerId": "[reference(concat('Microsoft.OperationalInsights/workspaces/', variables('workspaceName')), '2020-08-01').customerId]",
                         "sharedKey": "[listKeys(concat('Microsoft.OperationalInsights/workspaces/', variables('workspaceName')), '2020-08-01').primarySharedKey]"
                     }
+                },
+                "vnetConfiguration": {
+                    "infrastructureSubnetId": "[parameters('subnetId')]",
+                    "internal": "[if(equals(parameters('subnetId'), ''), json('false'), json('true'))]"
                 }
             }
         },
+        {
+            "type": "Microsoft.Network/privateDnsZones",
+            "apiVersion": "2020-06-01",
+            "name": "[variables('dnsZoneName')]",
+            "location": "global",
+            "condition": "[not(equals(parameters('subnetId'), ''))]",
+            "properties": {},
+            "dependsOn": [
+                "[concat('Microsoft.App/managedEnvironments/', variables('environmentName'))]"
+            ]
+        },
+        {
+            "type": "Microsoft.Network/privateDnsZones/A",
+            "apiVersion": "2020-06-01",
+            "name": "[concat(variables('dnsZoneName'), '/*')]",
+            "properties": {
+                "TTL": 3600,
+                "ARecords": [
+                    {
+                        "ipv4Address": "[reference(concat('Microsoft.App/managedEnvironments/', variables('environmentName')), '2024-02-02-preview').staticIp]"
+
+                    }
+                ]
+            },
+            "dependsOn": [
+                "[resourceId('Microsoft.Network/privateDnsZones', variables('dnsZoneName'))]",
+                "[concat('Microsoft.App/managedEnvironments/', variables('environmentName'))]"
+            ]
+        },
+        {
+            "type": "Microsoft.Network/privateDnsZones/virtualNetworkLinks",
+            "apiVersion": "2020-06-01",
+            "name": "[concat(variables('dnsZoneName'), '/', variables('environmentName'), '-vnet-link')]",
+            "location": "global",
+            "dependsOn": [
+                "[resourceId('Microsoft.Network/privateDnsZones', variables('dnsZoneName'))]"
+            ],
+            "condition": "[not(equals(parameters('subnetId'), ''))]",
+            "properties": {
+                "virtualNetwork": {
+                    "id": "[variables('vnetId')]"
+                },
+                "registrationEnabled": false
+            }
+        },
         {
             "apiVersion": "2020-08-01",
             "name": "[variables('workspaceName')]",
@@ -147,5 +205,19 @@
                 "workspaceCapping": {}
             }
         }
-    ]
+    ],
+    "outputs": {
+        "metrics-viewer-url": {
+            "type": "string",
+            "value": "[reference(concat('Microsoft.App/containerapps/', parameters('name')), '2024-02-02-preview').latestRevisionFqdn]"
+        },
+        "managed-environment-ip": {
+            "type": "string",
+            "value": "[reference(concat('Microsoft.App/managedEnvironments/', variables('environmentName')), '2024-02-02-preview').staticIp]"
+        },
+        "managed-environment-domain": {
+            "type": "string",
+            "value": "[reference(concat('Microsoft.App/managedEnvironments/', variables('environmentName')), '2024-02-02-preview').defaultDomain]"
+        }
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -45,6 +45,13 @@`
`45`	`45`	`"metadata": {`
`46`	`46`	`"description": "Docker image for metrics viewer - use default or replace with your own"`
`47`	`47`	`}`
	`48`	`+ },`
	`49`	`+ "subnetId": {`
	`50`	`+ "type": "string",`
	`51`	`+ "defaultValue": "",`
	`52`	`+ "metadata": {`
	`53`	`+ "description": "Subnet ID (at least /23) for the managed environment when deploying app without public access"`
	`54`	`+ }`
`48`	`55`	`}`
`49`	`56`	`},`
`50`	`57`	`"variables": {`
`@@ -140,6 +147,10 @@`
`140`	`147`	`"customerId": "[reference(concat('Microsoft.OperationalInsights/workspaces/', variables('workspaceName')), '2020-08-01').customerId]",`
`141`	`148`	`"sharedKey": "[listKeys(concat('Microsoft.OperationalInsights/workspaces/', variables('workspaceName')), '2020-08-01').primarySharedKey]"`
`142`	`149`	`}`
	`150`	`+ },`
	`151`	`+ "vnetConfiguration": {`
	`152`	`+ "infrastructureSubnetId" : "[parameters('subnetId')]",`
	`153`	`+ "internal": "[if(equals(parameters('subnetId'), ''), json('false'), json('true'))]"`
`143`	`154`	`}`
`144`	`155`	`}`
`145`	`156`	`},`