fix: merging dev to main

[Roopan-Microsoft]

Purpose

• This pull request introduces a new azure_custom.yaml configuration file and makes several infrastructure improvements and bug fixes to the Bicep deployment scripts and documentation. The main focus is on streamlining Azure container deployment, updating resource naming conventions, improving security, and aligning API endpoints and variables with current Azure AI Services standards.

Infrastructure automation and deployment:

• Added azure_custom.yaml with comprehensive hooks for pre-package, pre-deploy, post-provision, and post-deploy steps, automating container registry setup, image build/push, web app configuration, and managed identity assignments for both Windows and POSIX environments.

Azure AI Services and resource configuration:

• Updated references from azureOpenaiAPIVersion to azureAIServicesAPIVersion and replaced endpoint lookups from aiFoundryAiServices.outputs.endpoints['OpenAI Language Model Instance API'] to aiFoundryAiServices.outputs.endpoint throughout the Bicep scripts, ensuring compatibility with Azure AI Services. [1] [2] [3]
• Added support for the new AZURE-AI-AGENT-ENDPOINT environment variable and its propagation through Key Vault and web app configuration. [1] [2]

Security and resource naming:

• Set allowBlobPublicAccess to false for storage accounts to improve security, and standardized Key Vault naming to lowercase (kv-...). [1] [2]

Private DNS zone and scalability fixes:

• Removed legacy OpenAI private DNS zone references, updated DNS zone indices, and fixed web server farm scalability to always use skuCapacity: 1 to prevent excessive agent creation during WAF deployment. [1] [2] [3] [4]

Documentation updates:

• Added instructions for deploying local changes by renaming configuration and Bicep files, and clarified sample question response times. [1] [2]

Does this introduce a breaking change?

• Yes
• No

Golden Path Validation

• I have tested the primary workflows (the "golden path") to ensure they function correctly without errors.

Deployment Validation

• I have validated the deployment process successfully and all services are running as expected with this change.

What to Check

Verify that the following are valid

• ...

Other Information

[Copilot]

Pull Request Overview

This pull request migrates the codebase from direct Azure OpenAI SDK usage to the Azure AI Projects SDK, standardizes infrastructure resource naming conventions, improves deployment automation, and enhances security configurations. The changes align API endpoints, configuration variables, and test infrastructure with Azure AI Services standards while introducing a new developer-friendly custom deployment workflow.

Key changes:

• Migrated from AsyncAzureOpenAI to AIProjectClient for AI service interactions across the application and test suites
• Standardized API version parameter naming from azureOpenaiAPIVersion to azureAIServicesAPIVersion and updated endpoint references to use simplified outputs.endpoint instead of indexed dictionary access
• Added azure_custom.yaml with comprehensive deployment automation hooks and introduced main_custom.bicep for developer-focused deployments with custom ACR configuration

Reviewed Changes

Copilot reviewed 20 out of 20 changed files in this pull request and generated 8 comments.

Show a summary per file

File	Description
src/App/tests/test_app.py	Updated tests to use init_ai_projects_client instead of init_openai_client with mocked AIProjectClient
src/App/tests/backend/plugins/test_chat_with_data_plugin.py	Added test for get_project_openai_client method with AIProjectClient mocking
src/App/requirements.txt	Removed direct openai package dependency (moved to dev dependencies)
src/App/requirements-dev.txt	Added azure-ai-projects and azure-ai-inference packages for development and testing
src/App/backend/services/sqldb_service.py	Fixed data retrieval logic to re-query after sample data update
src/App/backend/plugins/chat_with_data_plugin.py	Removed deprecated get_openai_client method and import cleanup
src/App/backend/common/config.py	Reorganized AI Project Client configuration section to appear before AOAI settings
src/App/app.py	Refactored client initialization to use AIProjectClient with get_openai_client() method
infra/scripts/process_sample_data.sh	Enhanced deployment output parsing with fallback logic for multiple naming conventions
infra/scripts/index_scripts/requirements.txt	Added Azure AI Projects SDK dependencies for index creation scripts
infra/scripts/index_scripts/create_search_index.py	Migrated embedding generation to use AIProjectClient instead of direct AzureOpenAI client
infra/modules/dependencies.bicep	Removed unused OpenAI Contributor and OpenAI User role definitions
infra/main_custom.bicep	Added new developer-friendly Bicep template with custom ACR support and user permissions for local debugging
infra/main.waf.parameters.json	Renamed parameter from deploymentType/azureOpenaiAPIVersion to gptModelDeploymentType/azureAIServicesAPIVersion
infra/main.parameters.json	Updated parameter reference to use azureAIServicesAPIVersion
infra/main.json	Compiled ARM template reflecting parameter renames, endpoint changes, DNS zone updates, and security improvements
infra/main.bicep	Updated parameter naming, removed legacy OpenAI DNS zone, simplified endpoint references, fixed Key Vault naming, and improved storage security
docs/SampleQuestions.md	Added note about average response time of 8-30 seconds
docs/DeploymentGuide.md	Added instructions for deploying local changes using custom configuration files
azure_custom.yaml	New deployment configuration with automated hooks for ACR setup, container build/push, and web app configuration

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[github-actions]

🎉 This PR is included in version 1.10.0 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀