PE Updates batch 1

avm/res/app-configuration/configuration-store/README.md

@@ -469,9 +469,13 @@ module configurationStore 'br/public:avm/res/app-configuration/configuration-sto
  location: '<location>'
  privateEndpoints: [
  {
- privateDnsZoneResourceIds: [
- '<privateDNSZoneResourceId>'
- ]
+ privateDnsZoneGroup: {
+ privateDnsZoneGroupConfigs: [
+ {
+ privateDnsZoneResourceId: '<privateDnsZoneResourceId>'
+ }
+ ]
+ }
  subnetResourceId: '<subnetResourceId>'
  tags: {
  Environment: 'Non-Prod'
@@ -480,9 +484,13 @@ module configurationStore 'br/public:avm/res/app-configuration/configuration-sto
  }
  }
  {
- privateDnsZoneResourceIds: [
- '<privateDNSZoneResourceId>'
- ]
+ privateDnsZoneGroup: {
+ privateDnsZoneGroupConfigs: [
+ {
+ privateDnsZoneResourceId: '<privateDnsZoneResourceId>'
+ }
+ ]
+ }
  subnetResourceId: '<subnetResourceId>'
  }
  ]
@@ -520,9 +528,13 @@ module configurationStore 'br/public:avm/res/app-configuration/configuration-sto
  "privateEndpoints": {
  "value": [
  {
- "privateDnsZoneResourceIds": [
- "<privateDNSZoneResourceId>"
- ],
+ "privateDnsZoneGroup": {
+ "privateDnsZoneGroupConfigs": [
+ {
+ "privateDnsZoneResourceId": "<privateDnsZoneResourceId>"
+ }
+ ]
+ },
  "subnetResourceId": "<subnetResourceId>",
  "tags": {
  "Environment": "Non-Prod",
@@ -531,9 +543,13 @@ module configurationStore 'br/public:avm/res/app-configuration/configuration-sto
  }
  },
  {
- "privateDnsZoneResourceIds": [
- "<privateDNSZoneResourceId>"
- ],
+ "privateDnsZoneGroup": {
+ "privateDnsZoneGroupConfigs": [
+ {
+ "privateDnsZoneResourceId": "<privateDnsZoneResourceId>"
+ }
+ ]
+ },
  "subnetResourceId": "<subnetResourceId>"
  }
  ]
@@ -1025,8 +1041,7 @@ Configuration details for private endpoints. For security reasons, it is recomme
 | [`lock`](#parameter-privateendpointslock) | object | Specify the type of lock. |
 | [`manualConnectionRequestMessage`](#parameter-privateendpointsmanualconnectionrequestmessage) | string | A message passed to the owner of the remote resource with the manual connection request. |
 | [`name`](#parameter-privateendpointsname) | string | The name of the private endpoint. |
-| [`privateDnsZoneGroupName`](#parameter-privateendpointsprivatednszonegroupname) | string | The name of the private DNS zone group to create if `privateDnsZoneResourceIds` were provided. |
-| [`privateDnsZoneResourceIds`](#parameter-privateendpointsprivatednszoneresourceids) | array | The private DNS zone groups to associate the private endpoint with. A DNS zone group can support up to 5 DNS zones. |
+| [`privateDnsZoneGroup`](#parameter-privateendpointsprivatednszonegroup) | object | The private DNS zone group to configure for the private endpoint. |
 | [`privateLinkServiceConnectionName`](#parameter-privateendpointsprivatelinkserviceconnectionname) | string | The name of the private link connection to create. |
 | [`resourceGroupName`](#parameter-privateendpointsresourcegroupname) | string | Specify if you want to deploy the Private Endpoint into a different resource group than the main resource. |
 | [`roleAssignments`](#parameter-privateendpointsroleassignments) | array | Array of role assignments to create. |
@@ -1210,19 +1225,64 @@ The name of the private endpoint.
 - Required: No
 - Type: string
 
-### Parameter: `privateEndpoints.privateDnsZoneGroupName`
+### Parameter: `privateEndpoints.privateDnsZoneGroup`
 
-The name of the private DNS zone group to create if `privateDnsZoneResourceIds` were provided.
+The private DNS zone group to configure for the private endpoint.
 
 - Required: No
+- Type: object
+
+**Required parameters**
+
+| Parameter | Type | Description |
+| :-- | :-- | :-- |
+| [`privateDnsZoneGroupConfigs`](#parameter-privateendpointsprivatednszonegroupprivatednszonegroupconfigs) | array | The private DNS zone groups to associate the private endpoint. A DNS zone group can support up to 5 DNS zones. |
+
+**Optional parameters**
+
+| Parameter | Type | Description |
+| :-- | :-- | :-- |
+| [`name`](#parameter-privateendpointsprivatednszonegroupname) | string | The name of the Private DNS Zone Group. |
+
+### Parameter: `privateEndpoints.privateDnsZoneGroup.privateDnsZoneGroupConfigs`
+
+The private DNS zone groups to associate the private endpoint. A DNS zone group can support up to 5 DNS zones.
+
+- Required: Yes
+- Type: array
+
+**Required parameters**
+
+| Parameter | Type | Description |
+| :-- | :-- | :-- |
+| [`privateDnsZoneResourceId`](#parameter-privateendpointsprivatednszonegroupprivatednszonegroupconfigsprivatednszoneresourceid) | string | The resource id of the private DNS zone. |
+
+**Optional parameters**
+
+| Parameter | Type | Description |
+| :-- | :-- | :-- |
+| [`name`](#parameter-privateendpointsprivatednszonegroupprivatednszonegroupconfigsname) | string | The name of the private DNS zone group config. |
+
+### Parameter: `privateEndpoints.privateDnsZoneGroup.privateDnsZoneGroupConfigs.privateDnsZoneResourceId`
+
+The resource id of the private DNS zone.
+
+- Required: Yes
 - Type: string
 
-### Parameter: `privateEndpoints.privateDnsZoneResourceIds`
+### Parameter: `privateEndpoints.privateDnsZoneGroup.privateDnsZoneGroupConfigs.name`
 
-The private DNS zone groups to associate the private endpoint with. A DNS zone group can support up to 5 DNS zones.
+The name of the private DNS zone group config.
 
 - Required: No
-- Type: array
+- Type: string
+
+### Parameter: `privateEndpoints.privateDnsZoneGroup.name`
+
+The name of the Private DNS Zone Group.
+
+- Required: No
+- Type: string
 
 ### Parameter: `privateEndpoints.privateLinkServiceConnectionName`
 
@@ -1505,6 +1565,7 @@ Tags of the resource.
 | `endpoint` | string | The endpoint of the app configuration. |
 | `location` | string | The location the resource was deployed into. |
 | `name` | string | The name of the app configuration. |
+| `privateEndpoints` | array | The private endpoints of the app configuration. |
 | `resourceGroupName` | string | The resource group the app configuration store was deployed into. |
 | `resourceId` | string | The resource ID of the app configuration. |
 | `systemAssignedMIPrincipalId` | string | The principal ID of the system assigned identity. |
@@ -1515,7 +1576,7 @@ This section gives you an overview of all local-referenced module files (i.e., o
 
 | Reference | Type |
 | :-- | :-- |
-| `br/public:avm/res/network/private-endpoint:0.6.1` | Remote reference |
+| `br/public:avm/res/network/private-endpoint:0.7.1` | Remote reference |
 
 ## Data Collection
 

avm/res/app-configuration/configuration-store/main.bicep

@@ -280,7 +280,7 @@ resource configurationStore_roleAssignments 'Microsoft.Authorization/roleAssignm
 ]
 
 @batchSize(1)
-module configurationStore_privateEndpoints 'br/public:avm/res/network/private-endpoint:0.6.1' = [
+module configurationStore_privateEndpoints 'br/public:avm/res/network/private-endpoint:0.7.1' = [
  for (privateEndpoint, index) in (privateEndpoints ?? []): {
  name: '${uniqueString(deployment().name, location)}-configurationStore-PrivateEndpoint-${index}'
  scope: resourceGroup(privateEndpoint.?resourceGroupName ?? '')
@@ -321,8 +321,7 @@ module configurationStore_privateEndpoints 'br/public:avm/res/network/private-en
  'Full'
  ).location
  lock: privateEndpoint.?lock ?? lock
- privateDnsZoneGroupName: privateEndpoint.?privateDnsZoneGroupName
- privateDnsZoneResourceIds: privateEndpoint.?privateDnsZoneResourceIds
+ privateDnsZoneGroup: privateEndpoint.?privateDnsZoneGroup
  roleAssignments: privateEndpoint.?roleAssignments
  tags: privateEndpoint.?tags ?? tags
  customDnsConfigs: privateEndpoint.?customDnsConfigs
@@ -351,6 +350,17 @@ output location string = configurationStore.location
 @description('The endpoint of the app configuration.')
 output endpoint string = configurationStore.properties.endpoint
 
+@description('The private endpoints of the app configuration.')
+output privateEndpoints array = [
+ for (pe, i) in (!empty(privateEndpoints) ? array(privateEndpoints) : []): {
+ name: configurationStore_privateEndpoints[i].outputs.name
+ resourceId: configurationStore_privateEndpoints[i].outputs.resourceId
+ groupId: configurationStore_privateEndpoints[i].outputs.groupId
+ customDnsConfig: configurationStore_privateEndpoints[i].outputs.customDnsConfig
+ networkInterfaceIds: configurationStore_privateEndpoints[i].outputs.networkInterfaceIds
+ }
+]
+
 // =============== //
 // Definitions //
 // =============== //
@@ -413,11 +423,20 @@ type privateEndpointType = {
  @description('Required. Resource ID of the subnet where the endpoint needs to be created.')
  subnetResourceId: string
 
- @description('Optional. The name of the private DNS zone group to create if `privateDnsZoneResourceIds` were provided.')
- privateDnsZoneGroupName: string?
+ @description('Optional. The private DNS zone group to configure for the private endpoint.')
+ privateDnsZoneGroup: {
+ @description('Optional. The name of the Private DNS Zone Group.')
+ name: string?
+
+ @description('Required. The private DNS zone groups to associate the private endpoint. A DNS zone group can support up to 5 DNS zones.')
+ privateDnsZoneGroupConfigs: {
+ @description('Optional. The name of the private DNS zone group config.')
+ name: string?
 
- @description('Optional. The private DNS zone groups to associate the private endpoint with. A DNS zone group can support up to 5 DNS zones.')
- privateDnsZoneResourceIds: string[]?
+ @description('Required. The resource id of the private DNS zone.')
+ privateDnsZoneResourceId: string
+ }[]
+ }?
 
  @description('Optional. If Manual Private Link Connection is required.')
  isManualConnection: bool?