Adds AKS bicep infra

Azure · Feb 10, 2023 · 439a58b · 439a58b
1 parent c4a201e
commit 439a58b
Show file tree

Hide file tree

Showing 53 changed files with 5,884 additions and 46 deletions.
diff --git a/.vscode/launch.json b/.vscode/launch.json
@@ -1,15 +1,15 @@
 {
-  // Use IntelliSense to learn about possible attributes.
-  // Hover to view descriptions of existing attributes.
-  // For more information, visit: https://go.microsoft.com/fwlink/?linkid=830387
-  "version": "0.2.0",
-  "configurations": [
-    {
-      "name": "Attach to Process",
-      "type": "go",
-      "request": "attach",
-      "mode": "local",
-      "processId": "${command:pickGoProcess}"
-    }
-  ]
-}
+    // Use IntelliSense to learn about possible attributes.
+    // Hover to view descriptions of existing attributes.
+    // For more information, visit: https://go.microsoft.com/fwlink/?linkid=830387
+    "version": "0.2.0",
+    "configurations": [
+        {
+            "name": "Attach to Process",
+            "type": "go",
+            "request": "attach",
+            "mode": "local",
+            "processId": "${command:pickGoProcess}"
+        }
+    ]
+}
diff --git a/cli/azd/pkg/azure/resource_ids.go b/cli/azd/pkg/azure/resource_ids.go
@@ -51,6 +51,11 @@ func WebsiteRID(subscriptionId, resourceGroupName, websiteName string) string {
 	return returnValue
 }
 
+func AksRID(subscriptionId, resourceGroupName, clusterName string) string {
+	returnValue := fmt.Sprintf("%s/providers/Microsoft.ContainerService/managedClusters/%s", ResourceGroupRID(subscriptionId, resourceGroupName), clusterName)
+	return returnValue
+}
+
 func ContainerAppRID(subscriptionId, resourceGroupName, containerAppName string) string {
 	returnValue := fmt.Sprintf(
 		"%s/providers/Microsoft.App/containerApps/%s",

diff --git a/cli/azd/pkg/environment/environment.go b/cli/azd/pkg/environment/environment.go
@@ -36,6 +36,9 @@ const TenantIdEnvVarName = "AZURE_TENANT_ID"
 // to.
 const ContainerRegistryEndpointEnvVarName = "AZURE_CONTAINER_REGISTRY_ENDPOINT"
 
+// ContainerRegistryEndpointEnvVarName is the name of they key used to store the endpoint of the container registry to push to.
+const AksClusterEnvVarName = "AZURE_AKS_CLUSTER_NAME"
+
 // ResourceGroupEnvVarName is the name of the azure resource group that should be used for deployments
 const ResourceGroupEnvVarName = "AZURE_RESOURCE_GROUP"
 

diff --git a/cli/azd/pkg/exec/command_runner.go b/cli/azd/pkg/exec/command_runner.go
@@ -58,7 +58,14 @@ func (r *commandRunner) Run(ctx context.Context, args RunArgs) (RunResult, error
 
 	cmd.Dir = args.Cwd
 
-	var stdin, stdout, stderr bytes.Buffer
+	var stdin io.Reader
+	if args.StdIn != nil {
+		stdin = args.StdIn
+	} else {
+		stdin = new(bytes.Buffer)
+	}
+
+	var stdout, stderr bytes.Buffer
 
 	cmd.Env = appendEnv(args.Env)
 
@@ -67,7 +74,7 @@ func (r *commandRunner) Run(ctx context.Context, args RunArgs) (RunResult, error
 		cmd.Stdout = os.Stdout
 		cmd.Stderr = os.Stderr
 	} else {
-		cmd.Stdin = &stdin
+		cmd.Stdin = stdin
 		cmd.Stdout = &stdout
 		cmd.Stderr = &stderr
 

diff --git a/cli/azd/pkg/exec/runargs.go b/cli/azd/pkg/exec/runargs.go
@@ -29,6 +29,9 @@ type RunArgs struct {
 
 	// When set will attach commands to std input/output
 	Interactive bool
+
+	// When set will call the command with the specified StdIn
+	StdIn io.Reader
 }
 
 // NewRunArgs creates a new instance with the specified cmd and args
@@ -81,3 +84,8 @@ func (b RunArgs) WithDebug(debug bool) RunArgs {
 	b.Debug = debug
 	return b
 }
+
+func (b RunArgs) WithStdIn(stdIn io.Reader) RunArgs {
+	b.StdIn = stdIn
+	return b
+}
diff --git a/cli/azd/pkg/infra/azure_resource_types.go b/cli/azd/pkg/infra/azure_resource_types.go
@@ -27,6 +27,8 @@ const (
 	AzureResourceTypeCacheForRedis           AzureResourceType = "Microsoft.Cache/redis"
 	AzureResourceTypePostgreSqlServer        AzureResourceType = "Microsoft.DBforPostgreSQL/flexibleServers"
 	AzureResourceTypeCDNProfile              AzureResourceType = "Microsoft.Cdn/profiles"
+	AzureResourceTypeContainerRegistry       AzureResourceType = "Microsoft.ContainerRegistry/registries"
+	AzureResourceTypeManagedCluster          AzureResourceType = "Microsoft.ContainerService/managedClusters"
 )
 
 const resourceLevelSeparator = "/"
@@ -72,6 +74,10 @@ func GetResourceTypeDisplayName(resourceType AzureResourceType) string {
 		return "Azure Database for PostgreSQL flexible server"
 	case AzureResourceTypeCDNProfile:
 		return "Azure Front Door / CDN profile"
+	case AzureResourceTypeContainerRegistry:
+		return "Container Registry"
+	case AzureResourceTypeManagedCluster:
+		return "AKS Managed Cluster"
 	}
 
 	return ""

diff --git a/cli/azd/pkg/project/framework_service_docker.go b/cli/azd/pkg/project/framework_service_docker.go
@@ -23,7 +23,7 @@ type DockerProjectOptions struct {
 type dockerProject struct {
 	config    *ServiceConfig
 	env       *environment.Environment
-	docker    *docker.Docker
+	docker    docker.Docker
 	framework FrameworkService
 }
 
@@ -66,7 +66,7 @@ func (p *dockerProject) Initialize(ctx context.Context) error {
 func NewDockerProject(
 	config *ServiceConfig,
 	env *environment.Environment,
-	docker *docker.Docker,
+	docker docker.Docker,
 	framework FrameworkService,
 ) FrameworkService {
 	return &dockerProject{

diff --git a/cli/azd/pkg/project/service_config.go b/cli/azd/pkg/project/service_config.go
@@ -17,6 +17,7 @@ import (
 	"github.com/azure/azure-dev/cli/azd/pkg/tools"
 	"github.com/azure/azure-dev/cli/azd/pkg/tools/azcli"
 	"github.com/azure/azure-dev/cli/azd/pkg/tools/docker"
+	"github.com/azure/azure-dev/cli/azd/pkg/tools/kubectl"
 	"github.com/azure/azure-dev/cli/azd/pkg/tools/swa"
 )
 
@@ -124,6 +125,12 @@ func (sc *ServiceConfig) GetServiceTarget(
 		target, err = NewFunctionAppTarget(sc, env, resource, azCli)
 	case string(StaticWebAppTarget):
 		target, err = NewStaticWebAppTarget(sc, env, resource, azCli, swa.NewSwaCli(commandRunner))
+	case string(AksTarget):
+		containerService, err := azCli.ContainerService(ctx, env.GetSubscriptionId())
+		if err != nil {
+			return nil, err
+		}
+		target = NewAksTarget(sc, env, resource, azCli, containerService, kubectl.NewKubectl(commandRunner), docker.NewDocker(commandRunner))
 	default:
 		return nil, fmt.Errorf("unsupported host '%s' for service '%s'", sc.Host, sc.Name)
 	}
@@ -154,7 +161,7 @@ func (sc *ServiceConfig) GetFrameworkService(
 	}
 
 	// For containerized applications we use a nested framework service
-	if sc.Host == string(ContainerAppTarget) {
+	if sc.Host == string(ContainerAppTarget) || sc.Host == string(AksTarget) {
 		sourceFramework := frameworkService
 		frameworkService = NewDockerProject(sc, env, docker.NewDocker(commandRunner), sourceFramework)
 	}

diff --git a/cli/azd/pkg/project/service_target.go b/cli/azd/pkg/project/service_target.go
@@ -20,6 +20,7 @@ const (
 	ContainerAppTarget  ServiceTargetKind = "containerapp"
 	AzureFunctionTarget ServiceTargetKind = "function"
 	StaticWebAppTarget  ServiceTargetKind = "staticwebapp"
+	AksTarget           ServiceTargetKind = "aks"
 )
 
 type ServiceDeploymentResult struct {
@@ -89,10 +90,5 @@ func resourceTypeMismatchError(
 // As an example, ContainerAppTarget is able to provision the container app as part of deployment,
 // and thus returns true.
 func (st ServiceTargetKind) SupportsDelayedProvisioning() bool {
-	return st == ContainerAppTarget
+	return st == ContainerAppTarget || st == AksTarget
 }
-
-var _ ServiceTarget = &appServiceTarget{}
-var _ ServiceTarget = &containerAppTarget{}
-var _ ServiceTarget = &functionAppTarget{}
-var _ ServiceTarget = &staticWebAppTarget{}
diff --git a/cli/azd/pkg/project/service_target_aks.go b/cli/azd/pkg/project/service_target_aks.go
@@ -0,0 +1,177 @@
+package project
+
+import (
+	"context"
+	"fmt"
+	"log"
+	"path/filepath"
+	"time"
+
+	"github.com/azure/azure-dev/cli/azd/pkg/azure"
+	"github.com/azure/azure-dev/cli/azd/pkg/environment"
+	"github.com/azure/azure-dev/cli/azd/pkg/environment/azdcontext"
+	"github.com/azure/azure-dev/cli/azd/pkg/tools"
+	"github.com/azure/azure-dev/cli/azd/pkg/tools/azcli"
+	"github.com/azure/azure-dev/cli/azd/pkg/tools/docker"
+	"github.com/azure/azure-dev/cli/azd/pkg/tools/kubectl"
+)
+
+type aksTarget struct {
+	config           *ServiceConfig
+	env              *environment.Environment
+	scope            *environment.TargetResource
+	containerService azcli.ContainerServiceClient
+	az               azcli.AzCli
+	docker           docker.Docker
+	kubectl          kubectl.KubectlCli
+}
+
+func (t *aksTarget) RequiredExternalTools() []tools.ExternalTool {
+	return []tools.ExternalTool{t.docker}
+}
+
+func (t *aksTarget) Deploy(ctx context.Context, azdCtx *azdcontext.AzdContext, path string, progress chan<- string) (ServiceDeploymentResult, error) {
+	// Login to AKS cluster
+	namespace := t.config.Project.Name
+	clusterName, has := t.env.Values[environment.AksClusterEnvVarName]
+	if !has {
+		return ServiceDeploymentResult{}, fmt.Errorf("could not determine AKS cluster, ensure %s is set as an output of your infrastructure", environment.AksClusterEnvVarName)
+	}
+
+	log.Printf("getting AKS credentials %s\n", clusterName)
+	progress <- "Getting AKS credentials"
+	credentials, err := t.containerService.GetAdminCredentials(ctx, t.scope.ResourceGroupName(), clusterName)
+	if err != nil {
+		return ServiceDeploymentResult{}, err
+	}
+
+	kubeConfigManager, err := kubectl.NewKubeConfigManager(t.kubectl)
+	if err != nil {
+		return ServiceDeploymentResult{}, err
+	}
+
+	kubeConfig, err := kubectl.ParseKubeConfig(ctx, credentials.Kubeconfigs[0].Value)
+	if err != nil {
+		return ServiceDeploymentResult{}, fmt.Errorf("failed parsing kube config: %w", err)
+	}
+
+	if err := kubeConfigManager.SaveKubeConfig(ctx, clusterName, kubeConfig); err != nil {
+		return ServiceDeploymentResult{}, fmt.Errorf("failed saving kube config: %w", err)
+	}
+
+	if err := kubeConfigManager.MergeConfigs(ctx, "config", "config", clusterName); err != nil {
+		return ServiceDeploymentResult{}, fmt.Errorf("failed merging kube configs: %w", err)
+	}
+
+	if _, err := t.kubectl.ConfigUseContext(ctx, clusterName, nil); err != nil {
+		return ServiceDeploymentResult{}, fmt.Errorf("failed using kube context '%s', %w", clusterName, err)
+	}
+
+	kubeFlags := kubectl.KubeCliFlags{
+		Namespace: namespace,
+		DryRun:    "client",
+		Output:    "yaml",
+	}
+
+	progress <- "Creating k8s namespace"
+	namespaceResult, err := t.kubectl.CreateNamespace(ctx, namespace, &kubectl.KubeCliFlags{DryRun: "client", Output: "yaml"})
+	if err != nil {
+		return ServiceDeploymentResult{}, fmt.Errorf("failed creating kube namespace: %w", err)
+	}
+
+	_, err = t.kubectl.ApplyPipe(ctx, *namespaceResult, nil)
+	if err != nil {
+		return ServiceDeploymentResult{}, fmt.Errorf("failed applying kube namespace: %w", err)
+	}
+
+	progress <- "Creating k8s secrets"
+	secrets := t.env.Environ()
+	secretResult, err := t.kubectl.CreateSecretGenericFromLiterals(ctx, "azd", secrets, &kubeFlags)
+	if err != nil {
+		return ServiceDeploymentResult{}, fmt.Errorf("failed setting kube secrets: %w", err)
+	}
+
+	_, err = t.kubectl.ApplyPipe(ctx, *secretResult, nil)
+	if err != nil {
+		return ServiceDeploymentResult{}, fmt.Errorf("failed applying kube secrets: %w", err)
+	}
+
+	// Login to container registry.
+	loginServer, has := t.env.Values[environment.ContainerRegistryEndpointEnvVarName]
+	if !has {
+		return ServiceDeploymentResult{}, fmt.Errorf("could not determine container registry endpoint, ensure %s is set as an output of your infrastructure", environment.ContainerRegistryEndpointEnvVarName)
+	}
+
+	log.Printf("logging into registry %s\n", loginServer)
+
+	progress <- "Logging into container registry"
+	if err := t.az.LoginAcr(ctx, t.docker, t.env.GetSubscriptionId(), loginServer); err != nil {
+		return ServiceDeploymentResult{}, fmt.Errorf("logging into registry '%s': %w", loginServer, err)
+	}
+
+	resourceName := t.scope.ResourceName()
+	if resourceName == "" {
+		resourceName = t.config.Name
+	}
+
+	tags := []string{
+		fmt.Sprintf("%s/%s/%s:azdev-deploy-%d", loginServer, t.config.Project.Name, resourceName, time.Now().Unix()),
+		fmt.Sprintf("%s/%s/%s:latest", loginServer, t.config.Project.Name, resourceName),
+	}
+
+	for _, tag := range tags {
+		// Tag image.
+		log.Printf("tagging image %s as %s", path, tag)
+		progress <- "Tagging image"
+		if err := t.docker.Tag(ctx, t.config.Path(), path, tag); err != nil {
+			return ServiceDeploymentResult{}, fmt.Errorf("tagging image: %w", err)
+		}
+
+		// Push image.
+		progress <- "Pushing container image"
+		if err := t.docker.Push(ctx, t.config.Path(), tag); err != nil {
+			return ServiceDeploymentResult{}, fmt.Errorf("pushing image: %w", err)
+		}
+	}
+
+	progress <- "Applying k8s manifests"
+	_, err = t.kubectl.ApplyFiles(ctx, filepath.Join(t.config.RelativePath, "manifests"), &kubectl.KubeCliFlags{Namespace: namespace})
+	if err != nil {
+		return ServiceDeploymentResult{}, fmt.Errorf("failed applying kube manifests: %w", err)
+	}
+
+	endpoints, err := t.Endpoints(ctx)
+	if err != nil {
+		return ServiceDeploymentResult{}, err
+	}
+
+	return ServiceDeploymentResult{
+		TargetResourceId: azure.ContainerAppRID(t.env.GetSubscriptionId(), t.scope.ResourceGroupName(), t.scope.ResourceName()),
+		Kind:             ContainerAppTarget,
+		Details:          nil,
+		Endpoints:        endpoints,
+	}, nil
+}
+
+func (t *aksTarget) Endpoints(ctx context.Context) ([]string, error) {
+	// TODO Update
+	return []string{"https://aks.azure.com/sample"}, nil
+	// containerAppProperties, err := t.cli.GetContainerAppProperties(ctx, t.env.GetSubscriptionId(), t.scope.ResourceGroupName(), t.scope.ResourceName())
+	// if err != nil {
+	// 	return nil, fmt.Errorf("fetching service properties: %w", err)
+	// }
+
+	// return []string{fmt.Sprintf("https://%s/", containerAppProperties.Properties.Configuration.Ingress.Fqdn)}, nil
+}
+
+func NewAksTarget(config *ServiceConfig, env *environment.Environment, scope *environment.TargetResource, azCli azcli.AzCli, containerService azcli.ContainerServiceClient, kubectlCli kubectl.KubectlCli, docker docker.Docker) ServiceTarget {
+	return &aksTarget{
+		config:           config,
+		env:              env,
+		scope:            scope,
+		az:               azCli,
+		containerService: containerService,
+		docker:           docker,
+		kubectl:          kubectlCli,
+	}
+}
diff --git a/cli/azd/pkg/project/service_target_containerapp.go b/cli/azd/pkg/project/service_target_containerapp.go
@@ -31,7 +31,7 @@ type containerAppTarget struct {
 	env            *environment.Environment
 	resource       *environment.TargetResource
 	cli            azcli.AzCli
-	docker         *docker.Docker
+	docker        docker.Docker
 	console        input.Console
 	commandRunner  exec.CommandRunner
 	accountManager account.Manager
@@ -70,7 +70,7 @@ func (at *containerAppTarget) Deploy(
 	log.Printf("logging into registry %s", loginServer)
 
 	progress <- "Logging into container registry"
-	if err := at.cli.LoginAcr(ctx, at.commandRunner, at.env.GetSubscriptionId(), loginServer); err != nil {
+	if err := at.cli.LoginAcr(ctx, at.docker, at.env.GetSubscriptionId(), loginServer); err != nil {
 		return ServiceDeploymentResult{}, fmt.Errorf("logging into registry '%s': %w", loginServer, err)
 	}
 
@@ -234,7 +234,7 @@ func NewContainerAppTarget(
 	env *environment.Environment,
 	resource *environment.TargetResource,
 	azCli azcli.AzCli,
-	docker *docker.Docker,
+	docker docker.Docker,
 	console input.Console,
 	commandRunner exec.CommandRunner,
 	accountManager account.Manager,