iac | Infrastructure as Code for various projects | Azure library
kandi X-RAY | iac Summary
kandi X-RAY | iac Summary
This repository contains a number of templates for deploying infrastructure in Microsoft Azure.
Support
Quality
Security
License
Reuse
Top functions reviewed by kandi - BETA
Currently covering the most popular Java, JavaScript and Python libraries. See a Sample of iac
iac Key Features
iac Examples and Code Snippets
Community Discussions
Trending Discussions on iac
QUESTION
I'm trying to deploy a basic API consisting in a lambda function as main endpoint and API gateway as proxy to this function. With the following configuration i'm able to build up the infrastructure, but I cannot set to trigger the lambda function through IaC, I have to go to the AWS console in order to manually set the trigger.
...ANSWER
Answered 2022-Apr-07 at 13:25It seems you are missing the aws_lambda_permission
resource [1]. In your case, you would need to add the following (similar to example from the reference):
QUESTION
There are two web-apps:
- an app for desktop browser;
- an app for mobile browser;
Ahead of them there is nginx. I have a trouble to configure nginx's reverse proxy depending on a browser type (desktop/mobile).
There is an example of a config below:
...ANSWER
Answered 2022-Mar-31 at 23:49Well the "rewrite ... redirect" is executed by the client the "proxy_pass ..." from nginx servers.
I see 2 options:
- Add resolver to the config
- use 127.0.0.1 for localhost so that no resolving is necessary.
You can see the problem with resolving in this log line.
QUESTION
has anyone did this lately? https://microsoft.github.io/PartsUnlimited/iac/200.2x-IaCDeployApptoAKS.html
I followed it to the letter and the website would not load
...ANSWER
Answered 2022-Apr-01 at 06:44Tested in my environment working fine for me you need to change image name for azure-vote-front
from image: microsoft/azure-vote-front:v1
to image: mcr.microsoft.com/azuredocs/azure-vote-front:v1
.
QUESTION
We are working on a solution that is using ADX. We have created some arm templates responsible for creating ADX Cluster, and then we have *.csl scripts used by Adx Azure DevOps Tasks to create tables, functions, policies, etc with the use of the tip:
Right now we have a lot of data in our adx, and we wanted to add materialized view which is using backfill=true
property in order to make sure that the existing data will be included in this view.
Let's say that this is the example query that we want to use:
...ANSWER
Answered 2022-Feb-22 at 21:26Would using create ifnotexists
work for you?
QUESTION
I am using Azure Front Door Standard/Premium and have already manually enabled compression for my UI routes via Azure Portal. I wanted to map this configuration as IaC with Bicep. However, there was no proper documentation on how to do this. My attempts:
- I checked the Azure Bicep templates for Azure Front Door routes. Here I found a reference to a property
compressionSettings: any()
, whose usage was not further specified. - My next approach was to export the manual configuration in the portal via "Export template" as ARM and then compile it to Bicep. However, the
compressionSettings
property always kept the value{}
. If I deploy my bicep template with the valuecompressionSettings: {}
, then the compression in the portal remains disabled.
So how can I enable compression for Azure Front Door using Bicep?
...ANSWER
Answered 2022-Feb-14 at 12:02I found the solution by manually searching in azure-quickstart-templates. At the bottom of the page: Microsoft.Cdn profiles/afdEndpoints/routes 2020-09-01, I found the template Front Door Standard/Premium. After analyzing the main.bicep
file here, the compression settings must be set as follows:
QUESTION
Maybe stupid question, but I can not find any good enough question. Currently I am defining some server configuration thru cloud-config
as part of IaC idea. One part of configuration are also SSH public keys of server adminsitrators. My reason says this is public info and I should not worry too much to protect it, but I still want some extra confirmation.
So it is OK, security wise, to store (commit,push) public SSH keys in GIT repo?
...ANSWER
Answered 2022-Feb-10 at 01:08There's no theoretical security problems to storing public keys in a repository. The conceptual idea of a public key is that it is known to everyone: the whole world knows it.
Now, as a practical matter, because a public key usually uniquely identifies a user, if someone gets ahold of that key, they may be able to correlate it with other locations where that user uses that key (e.g., GitHub, where all SSH keys are public) and decide that the user in question is an interesting target for phishing or other types of compromise based on correlating that user's usage.
This is one of those cases where the theoretical and practical security differs. Having said that, most people don't consider exposure of public keys a threat they have to deal with, and so checking them into a repository should be fine.
QUESTION
Tell me please.
I'm using Jenkins to build a project that runs in a docker container and I've run into a problem.
When executing this piece of code:
...ANSWER
Answered 2022-Feb-03 at 14:09The problem was at this place:
QUESTION
I am trying to write the Terraform to create an Azure "service account" and am getting quite confused by the distinction between what Azure AD calls "Applications" and "Service Principals". Effectively, I'm trying to mimic the following Azure CLI call:
...ANSWER
Answered 2022-Jan-28 at 10:49I am trying to write the Terraform to create an Azure "service account" and am getting quite confused by the distinction between what Azure AD calls "Applications" and "Service Principals".
Applications can be seen from Azure AD App registrations blade Where as Service Principals are other wise know as Enterprise Applications. The difference is well documented in this Microsoft Documentation
.
This runs, but later authenticating with the generated credentials gives an authentication error. Specifically, Terraforms says:
If you are accessing as application please make sure service principal is properly created in the tenant.
This is because you have no associated service principal to that azure ad application which you have created from Terraform. The association is needed to access the application or authenticating to the azure environment with contributor role. When a App registration is created from portal it by default creates an association of AD app and Service principal , which by default results in creating a service principal for that app registration. It also applies the same concept when we use az ad sp create-for-rbac
.
Effectively, I'm trying to mimic the following Azure CLI call:
QUESTION
ANSWER
Answered 2021-Oct-26 at 08:01I have tested in my environment
As per the azurerm_api_management_api | Resources | hashicorp/azurerm | Terraform Registry document, there is no option to set a tag to an API in Azure API Management using Terraform.
We can create an API tag for Azure API Management using terraform using below code :
QUESTION
I have a yml
file which calls a templated stage:
ANSWER
Answered 2022-Jan-24 at 19:41So if wanted to use a variable group need to define the group to be read in:
Community Discussions, Code Snippets contain sources that include Stack Exchange Network
Vulnerabilities
No vulnerabilities reported
Install iac
Support
Reuse Trending Solutions
Find, review, and download reusable Libraries, Code Snippets, Cloud APIs from over 650 million Knowledge Items
Find more librariesStay Updated
Subscribe to our newsletter for trending solutions and developer bootcamps
Share this Page