The Azure Management Libraries for Java is a higher-level, object-oriented API for managing Azure resources, that is optimized for ease of use, succinctness and consistency.
We're always working on improving our products and the way we communicate with our users. So we'd love to learn what's working and how we can do better.
If you haven't already, please take a few minutes to complete this short survey we have put together.
Thank you in advance for your collaboration. We really appreciate your time!
Various documentation is available to help you get started
If you are an existing user of the older version of Azure management library for Java (the namespace of old packages contains com.microsoft.azure.management.**) and you are looking for a migration guide to the new version of the SDK, please refer to this migration guide here
- Java Development Kit (JDK) with version 8 or above
- Azure Subscription
For your convenience, we have provided a multi-service package that includes some of the most highly used Azure services. We recommend using this package when you are dealing with multiple services.
<dependency>
<groupId>com.azure.resourcemanager</groupId>
<artifactId>azure-resourcemanager</artifactId>
<version>2.43.0</version>
</dependency>The services available via azure-resourcemanager are listed as below:
List of services
- App Services
- Authorization
- CDN
- Compute
- Container Instance
- Container Registry
- Container Services (AKS)
- Cosmos DB
- DNS
- Event Hubs
- Insight (Monitor)
- Key Vault
- Managed Identity
- Network
- Private DNS
- Redis
- Resources
- Search
- Service Bus
- Spring Cloud
- SQL
- Storage
- Traffic Manager
In the case where you are interested in certain service above or the service not included in the multi-service package, you can choose to use the single-service package for each service. Those packages follow the same naming patterns and design principals. For example, the package for Media Services has the following artifact information.
<dependency>
<groupId>com.azure.resourcemanager</groupId>
<artifactId>azure-resourcemanager-mediaservices</artifactId>
<version>2.3.0</version>
</dependency>See Single-Service Packages for a complete list of single-services packages with the API versions they are consuming.
Azure Management Libraries require a TokenCredential implementation for authentication and an HttpClient implementation for HTTP client.
azure-identity package and azure-core-http-netty package provide the default implementation.
Azure Identity provides Microsoft Entra ID token authentication support across the Azure SDK.
<dependency>
<groupId>com.azure</groupId>
<artifactId>azure-identity</artifactId>
<version>1.13.3</version>
</dependency>Azure Core Netty HTTP client is a plugin for Azure Core HTTP client API.
<dependency>
<groupId>com.azure</groupId>
<artifactId>azure-core-http-netty</artifactId>
<version>1.15.4</version>
</dependency>Alternatively, Azure Core OkHttp HTTP client is another plugin for HTTP client API.
Microsoft Entra ID token authentication relies on the credential class from Azure Identity package.
Azure subscription ID can be configured via AZURE_SUBSCRIPTION_ID environment variable.
Azure tenant ID can be configured via AZURE_TENANT_ID environment variable.
Assuming the use of the DefaultAzureCredential credential class, the client can be authenticated using the following code:
AzureProfile profile = new AzureProfile(AzureEnvironment.AZURE);
TokenCredential credential = new DefaultAzureCredentialBuilder()
.authorityHost(profile.getEnvironment().getActiveDirectoryEndpoint())
.build();
AzureResourceManager azure = AzureResourceManager
.authenticate(credential, profile)
.withDefaultSubscription();The sample code assumes global Azure. Please change AzureEnvironment.AZURE variable if otherwise.
See Authentication for more options.
See Samples for code snippets and samples.
The key concepts of Azure Management Libraries includes:
- Fluent interface to manage Azure resources.
- Dependency across Azure resources.
- Batch Azure resource provisioning.
- Integration with Azure role-based access control.
- Asynchronous operations with Reactor. (Preview)
- Configurable client, e.g. configuring HTTP client, retries, logging, etc.
- API design
- API design (Preview)
You can create a virtual machine instance, together with required virtual network and ip address created automatically.
VirtualMachine linuxVM = azure.virtualMachines().define("myLinuxVM")
.withRegion(Region.US_EAST)
.withNewResourceGroup(rgName)
.withNewPrimaryNetwork("10.0.0.0/28")
.withPrimaryPrivateIPAddressDynamic()
.withoutPrimaryPublicIPAddress()
.withPopularLinuxImage(KnownLinuxVirtualMachineImage.UBUNTU_SERVER_18_04_LTS)
.withRootUsername("<username>")
.withSsh("<ssh-key>")
.withSize(VirtualMachineSizeTypes.STANDARD_D3_V2)
.create();Update.
linuxVM.update()
.withNewDataDisk(10, 0, CachingTypes.READ_WRITE)
.apply();You can create a function app, together with required storage account and app service plan created on specification.
Creatable<StorageAccount> creatableStorageAccount = azure.storageAccounts()
.define("<storage-account-name>")
.withRegion(Region.US_EAST)
.withExistingResourceGroup(rgName)
.withGeneralPurposeAccountKindV2()
.withSku(StorageAccountSkuType.STANDARD_LRS);
Creatable<AppServicePlan> creatableAppServicePlan = azure.appServicePlans()
.define("<app-service-plan-name>")
.withRegion(Region.US_EAST)
.withExistingResourceGroup(rgName)
.withPricingTier(PricingTier.STANDARD_S1)
.withOperatingSystem(OperatingSystem.LINUX);
FunctionApp linuxFunctionApp = azure.functionApps().define("<function-app-name>")
.withRegion(Region.US_EAST)
.withExistingResourceGroup(rgName)
.withNewLinuxAppServicePlan(creatableAppServicePlan)
.withBuiltInImage(FunctionRuntimeStack.JAVA_8)
.withNewStorageAccount(creatableStorageAccount)
.withHttpsOnly(true)
.withAppSetting("WEBSITE_RUN_FROM_PACKAGE", "<function-app-package-url>")
.create();You can batch create and delete managed disk instances.
List<String> diskNames = Arrays.asList("datadisk1", "datadisk2");
List<Creatable<Disk>> creatableDisks = diskNames.stream()
.map(diskName -> azure.disks()
.define(diskName)
.withRegion(Region.US_EAST)
.withExistingResourceGroup(rgName)
.withData()
.withSizeInGB(10)
.withSku(DiskSkuTypes.STANDARD_LRS))
.collect(Collectors.toList());
Collection<Disk> disks = azure.disks().create(creatableDisks).values();
azure.disks().deleteByIds(disks.stream().map(Disk::id).collect(Collectors.toList()));You can assign Contributor for an Azure resource to a service principal.
String raName = UUID.randomUUID().toString();
RoleAssignment roleAssignment = azure.accessManagement().roleAssignments()
.define(raName)
.forServicePrincipal(servicePrincipal)
.withBuiltInRole(BuiltInRole.CONTRIBUTOR)
.withScope(resource.id())
.create();You can create storage account, then blob container, in reactive programming.
azure.storageAccounts().define("<storage-account-name>")
.withRegion(Region.US_EAST)
.withNewResourceGroup(rgName)
.withSku(StorageAccountSkuType.STANDARD_LRS)
.withGeneralPurposeAccountKindV2()
.withOnlyHttpsTraffic()
.createAsync()
.flatMap(storageAccount -> azure.storageBlobContainers()
.defineContainer("container")
.withExistingStorageAccount(storageAccount)
.withPublicAccess(PublicAccess.NONE)
.createAsync()
)
//...You can operate on virtual machines in parallel.
azure.virtualMachines().listByResourceGroupAsync(rgName)
.flatMap(VirtualMachine::restartAsync)
//...You can customize various aspects of the client and pipeline.
AzureResourceManager azure = AzureResourceManager
.configure()
.withHttpClient(customizedHttpClient)
.withPolicy(additionalPolicy)
//...Instead of include the complete Azure Management Libraries, you can choose to include a single service package.
For example, here is sample maven dependency for Compute package.
<dependency>
<groupId>com.azure.resourcemanager</groupId>
<artifactId>azure-resourcemanager-compute</artifactId>
<version>2.43.0</version>
</dependency>Sample code to create the authenticated client.
ComputeManager manager = ComputeManager.authenticate(credential, profile);
manager.virtualMachines().list();If you encounter any bugs, please file issues via GitHub Issues or checkout StackOverflow for Azure Java SDK.
An HttpClient implementation must exist on the classpath.
See Include optional packages.
Latest azure-identity package specifies dependency on azure-core-http-netty package for convenience.
If you would like to use a different HttpClient, please exclude azure-core-http-netty from azure-identity.
Azure SDKs for Java offer a consistent logging story to help aid in troubleshooting application errors and expedite their resolution. The logs produced will capture the flow of an application before reaching the terminal state to help locate the root issue. View the configure logging for guidance on package required and its configuration.
Sample code to enable logging in Azure Management Libraries for Java. If you want to troubleshoot HTTP request and response details, you can use .withLogLevel(HttpLogDetailLevel.BODY_AND_HEADERS).
AzureResourceManager azure = AzureResourceManager
.configure()
.withLogLevel(HttpLogDetailLevel.BASIC)
.authenticate(credential, profile)
.withDefaultSubscription();Please refer to Unit Testing for guidance on mocking the SDK clients.
In particular, since many classes in clients are final, "Mocking Final classes" section would be helpful on mocking final classes in Mockito.
As Azure Management Libraries for Java uses Fluent interface extensively, it takes some extra effects to mock the Fluent interface. Samples can be found here.
Azure Core (azure-core) is the shared library for all packages under com.azure.
It guarantees backward compatibility.
However, if one accidentally uses an older version of it via transitive dependencies, it might cause problem in runtime.
This case could happen when one module depends on multiple Azure Java SDKs with different versions, which in turn depends on different versions of azure-core.
Maven dependency plugin would help to diagnostic this problem. Here is an artificial example.
mvn dependency:tree -Dincludes=com.azure:azure-core
[INFO] com.microsoft.azure:azure-sdk-test:jar:1.0-SNAPSHOT
[INFO] \- com.azure:azure-identity:jar:1.2.2:compile
[INFO] \- com.azure:azure-core:jar:1.12.0:compileWe can see the azure-core resolved as 1.12.0.
mvn dependency:tree -Dverbose=true -Dincludes=com.azure:azure-core
[INFO] com.microsoft.azure:azure-sdk-test:jar:1.0-SNAPSHOT
[INFO] +- com.azure:azure-identity:jar:1.2.2:compile
[INFO] | +- com.azure:azure-core:jar:1.12.0:compile
[INFO] | \- com.azure:azure-core-http-netty:jar:1.7.1:compile
[INFO] | \- (com.azure:azure-core:jar:1.12.0:compile - omitted for duplicate)
[INFO] +- com.azure.resourcemanager:azure-resourcemanager:jar:2.2.0:compile
[INFO] | +- com.azure.resourcemanager:azure-resourcemanager-resources:jar:2.2.0:compile
[INFO] | | +- (com.azure:azure-core:jar:1.13.0:compile - omitted for conflict with 1.12.0)
[INFO] | | \- com.azure:azure-core-management:jar:1.1.1:compile
[INFO] | | \- (com.azure:azure-core:jar:1.13.0:compile - omitted for conflict with 1.12.0)
[INFO] | \- com.azure.resourcemanager:azure-resourcemanager-keyvault:jar:2.2.0:compile
[INFO] | +- com.azure:azure-security-keyvault-keys:jar:4.2.5:compile
[INFO] | | \- (com.azure:azure-core:jar:1.13.0:compile - omitted for conflict with 1.12.0)
[INFO] | \- com.azure:azure-security-keyvault-secrets:jar:4.2.5:compile
[INFO] | \- (com.azure:azure-core:jar:1.13.0:compile - omitted for conflict with 1.12.0)
[INFO] \- com.azure:azure-storage-blob:jar:12.10.2:compile
[INFO] +- (com.azure:azure-core:jar:1.12.0:compile - omitted for duplicate)
[INFO] \- com.azure:azure-storage-common:jar:12.10.1:compile
[INFO] \- (com.azure:azure-core:jar:1.12.0:compile - omitted for duplicate)From the module, we can see there is multiple SDKs depends on different versions of azure-core, and the latest would be 1.13.0.
If we run the module, we will encounter this error in runtime.
java.lang.NoSuchMethodError: 'com.azure.core.http.HttpHeaders com.azure.core.http.HttpHeaders.set(java.lang.String, java.lang.String)'
The cause is that this method was not available in 1.12.0 azure-core, and now being used by some SDK that depends on 1.13.0 azure-core.
In this example, apparently the problem is that we used an old version of azure-identity. After upgrade it to 1.2.3, problem solved.
Better, one can explicitly put azure-core as the first dependency, and keep it up-to-date.
Alternatively, maven dependency management will also help to control the version in transitive dependencies. Here is a sample dependency management section in maven POM.
<dependencyManagement>
<dependencies>
<dependency>
<groupId>com.azure</groupId>
<artifactId>azure-core</artifactId>
<version>${azure-core.version}</version>
</dependency>
</dependencies>
</dependencyManagement>To a lesser extent, similar problem could occur in runtime for azure-core-management library, when one module depends on multiple Azure Java management SDKs with different versions.
For example, azure-resourcemanager 2.6.0 would require azure-core-management 1.3.0 or above, relying on ArmChallengeAuthenticationPolicy class for continuous access evaluation support.
Azure Resource Manager applies throttling on the number of requests sent from client within certain span of time. For details, please refer to Guidance on ARM throttling.
For details on contributing to this repository, see the contributing guide.
- Fork it
- Create your feature branch (
git checkout -b my-new-feature) - Commit your changes (
git commit -am 'Add some feature') - Push to the branch (
git push origin my-new-feature) - Create new Pull Request