Skip to content

fix: Updated the network module for macae-v3 #568

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 17, 2025
Merged

fix: Updated the network module for macae-v3 #568

merged 1 commit into from
Oct 17, 2025

Conversation

Prekshith-Microsoft
Copy link
Contributor

This pull request makes significant changes to how network security groups (NSGs) and subnet references are managed in the infrastructure Bicep codebase. The main update is the removal of explicit NSG module definitions and the transition to a new, consolidated virtualNetwork module that encapsulates subnet and NSG configuration. This change also updates all downstream modules to reference the new subnet output properties, improving clarity and maintainability.

Networking architecture simplification:

  • Removed explicit NSG module definitions (networkSecurityGroupBackend, networkSecurityGroupBastion, networkSecurityGroupAdministration, networkSecurityGroupContainers, networkSecurityGroupWebsite) from infra/main.bicep, consolidating NSG and subnet management into the new virtualNetwork module.
  • Replaced the use of the public AVM virtual network module with a custom modules/virtualNetwork.bicep module, which now handles subnet creation and NSG assignment internally.

Subnet output property updates:

  • Updated all references to subnets in downstream modules to use the new explicit output properties from the virtualNetwork module (e.g., backendSubnetResourceId, administrationSubnetResourceId, containerSubnetResourceId, webserverfarmSubnetResourceId) instead of array indices (e.g., subnetResourceIds[0]). This affects modules for VMs, AI services, Cosmos DB, Container Apps, Web Sites, Storage Accounts, and Key Vault. [1] [2] [3] [4] [5] [6] [7]

These changes improve the maintainability and readability of the infrastructure code by centralizing network configuration and using descriptive output properties for subnet references.## Purpose

  • ...

Does this introduce a breaking change?

  • Yes
  • No

How to Test

  • Get the code
git clone [repo-address]
cd [repo-name]
git checkout [branch-name]
npm install
  • Test the code

What to Check

Verify that the following are valid

  • ...

Other Information

@Prajwal-Microsoft Prajwal-Microsoft merged commit da55973 into dev-v3 Oct 17, 2025
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Prajwal-Microsoft Prajwal-Microsoft Prajwal-Microsoft approved these changes

@Avijit-Microsoft Avijit-Microsoft Awaiting requested review from Avijit-Microsoft Avijit-Microsoft is a code owner

@Roopan-Microsoft Roopan-Microsoft Awaiting requested review from Roopan-Microsoft Roopan-Microsoft is a code owner

@marktayl1 marktayl1 Awaiting requested review from marktayl1 marktayl1 is a code owner

@Fr4nc3 Fr4nc3 Awaiting requested review from Fr4nc3 Fr4nc3 is a code owner

@Vinay-Microsoft Vinay-Microsoft Awaiting requested review from Vinay-Microsoft Vinay-Microsoft is a code owner

@aniaroramsft aniaroramsft Awaiting requested review from aniaroramsft aniaroramsft is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Prekshith-Microsoft @Prajwal-Microsoft