[Service Connector] az spring-cloud connection create postgres: Add --system-identity for springcloud-postgres connection
#22459
Conversation
xfz11
changed the title
az spring-cloud connection create postgres --system-identity: Add new auth type of springcloud-postgres connectionaz spring-cloud connection create postgres --system-identity: Add new auth type of springcloud-postgres connection
xfz11
changed the title
az spring-cloud connection create postgres --system-identity: Add new auth type of springcloud-postgres connection--system-identity: Add new auth type of springcloud-postgres connection
|
Service Connector |
xfz11
changed the title
--system-identity: Add new auth type of springcloud-postgres connectionaz spring-cloud connection create: Add --system-identity for springcloud-postgres connection
xfz11
changed the title
az spring-cloud connection create: Add --system-identity for springcloud-postgres connectionaz spring-cloud connection create postgres: Add --system-identity for springcloud-postgres connection
|
@kairu-ms Could you help to check the build failure? What should I do to fix it? |
|
/azp run |
|
Azure Pipelines successfully started running 2 pipeline(s). |
|
@jiasli Hi Jiashuo, could you please help to check the "Build Rpm Package CentOS 7" pipeline error? What should I do to fix it? |
| @@ -139,3 +139,4 @@ vsts==0.1.25 | |||
| wcwidth==0.1.7 | |||
| websocket-client==1.3.1 | |||
| xmltodict==0.12.0 | |||
| psycopg2-binary==2.9.3 | |||
There was a problem hiding this comment.
@xfz11 do you add it in setup.py file of azure-cli
azure-cli/src/azure-cli/setup.py
Lines 53 to 156 in 58a8f65
There was a problem hiding this comment.
BTW, I think it's the psycopg2-binary causes the failing of Build Rpm Package CentOS7.
There was a problem hiding this comment.
Why you need the binary library?
There was a problem hiding this comment.
Added in setup.py but build still failed.
If we don't use the psycopg2-binary, but install Psycopg from sources, python3-dev and libpq-dev package are required to build it. Any guide to add those dependencies in CLI build environment?
There was a problem hiding this comment.
2022-05-18T07:10:56.2535244Z Provides: azure-cli = 2.36.0-1.el7 azure-cli(x86-64) = 2.36.0-1.el7 config(azure-cli) = 2.36.0-1.el7 libcom_err-2abe824b.so.2.1()(64bit) libcrypto-2f2fcd35.so.1.1()(64bit) libcrypto.so.1.1(OPENSSL_1_1_0)(64bit) libcrypto.so.1.1(OPENSSL_1_1_0a)(64bit) libcrypto.so.1.1(OPENSSL_1_1_0c)(64bit) libcrypto.so.1.1(OPENSSL_1_1_0d)(64bit) libcrypto.so.1.1(OPENSSL_1_1_0f)(64bit) libcrypto.so.1.1(OPENSSL_1_1_0g)(64bit) libcrypto.so.1.1(OPENSSL_1_1_0h)(64bit) libcrypto.so.1.1(OPENSSL_1_1_0i)(64bit) libcrypto.so.1.1(OPENSSL_1_1_0j)(64bit) libcrypto.so.1.1(OPENSSL_1_1_1)(64bit) libcrypto.so.1.1(OPENSSL_1_1_1b)(64bit) libcrypto.so.1.1(OPENSSL_1_1_1c)(64bit) libcrypto.so.1.1(OPENSSL_1_1_1d)(64bit) libcrypto.so.1.1(OPENSSL_1_1_1e)(64bit) libcrypto.so.1.1(OPENSSL_1_1_1h)(64bit) libffi-c643fa1a.so.6.0.4()(64bit) libgssapi_krb5-497db0c6.so.2.2()(64bit) libgssapi_krb5.so.2(HIDDEN)(64bit) libgssapi_krb5.so.2(gssapi_krb5_2_MIT)(64bit) libk5crypto-b1f99d5c.so.3.1()(64bit) libk5crypto.so.3(HIDDEN)(64bit) libk5crypto.so.3(k5crypto_3_MIT)(64bit) libkeyutils-dfe70bd6.so.1.5()(64bit) libkeyutils.so.1(KEYUTILS_0.3)(64bit) libkeyutils.so.1(KEYUTILS_1.0)(64bit) libkeyutils.so.1(KEYUTILS_1.3)(64bit) libkeyutils.so.1(KEYUTILS_1.4)(64bit) libkeyutils.so.1(KEYUTILS_1.5)(64bit) libkrb5-fc820a1d.so.3.3()(64bit) libkrb5.so.3(HIDDEN)(64bit) libkrb5.so.3(krb5_3_MIT)(64bit) libkrb5support-a4e68a84.so.0.1()(64bit) libkrb5support.so.0(HIDDEN)(64bit) libkrb5support.so.0(krb5support_0_MIT)(64bit) liblber-2-f149c062.4.so.2.11.7()(64bit) libldap_r-2-aa060733.4.so.2.11.7()(64bit) libpcre-9513aab5.so.1.2.0()(64bit) libpq-30c1c89d.so.5.14()(64bit) libsasl2-8fd1a564.so.3.0.0()(64bit) libselinux-0922c95c.so.1()(64bit) libssl-6b7b94d5.so.1.1()(64bit) libssl.so.1.1(OPENSSL_1_1_0)(64bit) libssl.so.1.1(OPENSSL_1_1_0d)(64bit) libssl.so.1.1(OPENSSL_1_1_1)(64bit) libssl.so.1.1(OPENSSL_1_1_1a)(64bit)
2022-05-18T07:10:56.2544788Z Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
2022-05-18T07:10:56.2551092Z Requires: ld-linux-x86-64.so.2()(64bit) ld-linux-x86-64.so.2(GLIBC_2.3)(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.12)(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.16)(64bit) libc.so.6(GLIBC_2.17)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.2)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.4)(64bit) libc.so.6(GLIBC_2.6)(64bit) libc.so.6(GLIBC_2.7)(64bit) libc.so.6(GLIBC_2.8)(64bit) libcom_err-2abe824b.so.2.1()(64bit) libcrypto-2f2fcd35.so.1.1()(64bit) libcrypto-2f2fcd35.so.1.1(OPENSSL_1_1_0)(64bit) libcrypto-2f2fcd35.so.1.1(OPENSSL_1_1_0d)(64bit) libcrypto-2f2fcd35.so.1.1(OPENSSL_1_1_0f)(64bit) libcrypto-2f2fcd35.so.1.1(OPENSSL_1_1_0i)(64bit) libcrypto-2f2fcd35.so.1.1(OPENSSL_1_1_1)(64bit) libdl.so.2()(64bit) libdl.so.2(GLIBC_2.2.5)(64bit) libffi-c643fa1a.so.6.0.4()(64bit) libgssapi_krb5-497db0c6.so.2.2()(64bit) libgssapi_krb5-497db0c6.so.2.2(gssapi_krb5_2_MIT)(64bit) libk5crypto-b1f99d5c.so.3.1()(64bit) libk5crypto-b1f99d5c.so.3.1(k5crypto_3_MIT)(64bit) libkeyutils-dfe70bd6.so.1.5()(64bit) libkeyutils-dfe70bd6.so.1.5(KEYUTILS_0.3)(64bit) libkeyutils-dfe70bd6.so.1.5(KEYUTILS_1.0)(64bit) libkeyutils-dfe70bd6.so.1.5(KEYUTILS_1.5)(64bit) libkrb5-fc820a1d.so.3.3()(64bit) libkrb5-fc820a1d.so.3.3(krb5_3_MIT)(64bit) libkrb5support-a4e68a84.so.0.1()(64bit) libkrb5support-a4e68a84.so.0.1(krb5support_0_MIT)(64bit) liblber-2-f149c062.4.so.2.11.7()(64bit) libldap_r-2-aa060733.4.so.2.11.7()(64bit) libpcre-9513aab5.so.1.2.0()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.2.5)(64bit) libpthread.so.0(GLIBC_2.3.2)(64bit) libresolv.so.2()(64bit) libresolv.so.2(GLIBC_2.2.5)(64bit) libsasl2-8fd1a564.so.3.0.0()(64bit) libselinux-0922c95c.so.1()(64bit) libssl-6b7b94d5.so.1.1()(64bit) libssl-6b7b94d5.so.1.1(OPENSSL_1_1_0)(64bit) libssl-6b7b94d5.so.1.1(OPENSSL_1_1_1)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
...
Step 13/13 : RUN rpm -i ./azure-cli-dev.rpm && az --version
---> Running in db374f835afc
error: Failed dependencies:
libcrypto-2f2fcd35.so.1.1(OPENSSL_1_1_0)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libcrypto-2f2fcd35.so.1.1(OPENSSL_1_1_0d)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libcrypto-2f2fcd35.so.1.1(OPENSSL_1_1_0f)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libcrypto-2f2fcd35.so.1.1(OPENSSL_1_1_0i)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libcrypto-2f2fcd35.so.1.1(OPENSSL_1_1_1)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libgssapi_krb5-497db0c6.so.2.2(gssapi_krb5_2_MIT)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libk5crypto-b1f99d5c.so.3.1(k5crypto_3_MIT)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libkeyutils-dfe70bd6.so.1.5(KEYUTILS_0.3)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libkeyutils-dfe70bd6.so.1.5(KEYUTILS_1.0)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libkeyutils-dfe70bd6.so.1.5(KEYUTILS_1.5)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libkrb5-fc820a1d.so.3.3(krb5_3_MIT)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libkrb5support-a4e68a84.so.0.1(krb5support_0_MIT)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libssl-6b7b94d5.so.1.1(OPENSSL_1_1_0)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
libssl-6b7b94d5.so.1.1(OPENSSL_1_1_1)(64bit) is needed by azure-cli-2.36.0-1.el7.x86_64
The command '/bin/sh -c rpm -i ./azure-cli-dev.rpm && az --version' returned a non-zero code: 1
I think there is some problem with psycopg2-binary that it requires libs like libcrypto-2f2fcd35.so.1.1(OPENSSL_1_1_0)(64bit), but doesn't provide it, meaning it is not compatible with rpmbuild and rpm. This could be similar to #20608.
There was a problem hiding this comment.
We should use psycopg2 as dependency when build package, which is suggested by psycopg owner. It has some pre-required package, to reduce the complexity, we may use psycopg2-binary in develop environment.
There was a problem hiding this comment.
We should use
psycopg2as dependency when build package, which is suggested by psycopg owner. It has some pre-required package, to reduce the complexity, we may usepsycopg2-binaryin develop environment.
Thanks for your help! Since psycopg2 has other library dependencies on Linux and MacOS. I update the code to dynamically install the packages only when user runs the command the first time. For windows, it needs no other library, so I add the package in windows requirement files to improve user experience.
src/azure-cli/setup.py
Outdated
| @@ -152,7 +152,8 @@ | |||
| 'sshtunnel~=0.1.4', | |||
| 'urllib3[secure]', | |||
| 'websocket-client~=1.3.1', | |||
| 'xmltodict~=0.12' | |||
| 'xmltodict~=0.12', | |||
| 'psycopg2-binary==2.9.3' | |||
There was a problem hiding this comment.
Please add dependencies alphabetically.
src/azure-cli/azure/cli/command_modules/serviceconnector/_utils.py
Outdated
Show resolved
Hide resolved
src/azure-cli/azure/cli/command_modules/serviceconnector/_utils.py
Outdated
Show resolved
Hide resolved
src/azure-cli/azure/cli/command_modules/serviceconnector/_params.py
Outdated
Show resolved
Hide resolved
src/azure-cli/azure/cli/command_modules/serviceconnector/_credential_free.py
Outdated
Show resolved
Hide resolved
src/azure-cli/azure/cli/command_modules/serviceconnector/_credential_free.py
Outdated
Show resolved
Hide resolved
src/azure-cli/azure/cli/command_modules/serviceconnector/custom.py
Outdated
Show resolved
Hide resolved
| oauthlib==3.0.1 | ||
| packaging==21.3 | ||
| paramiko==2.10.1 | ||
| pbr==5.3.1 | ||
| pkginfo==1.8.2 | ||
| portalocker==2.3.2 | ||
| psutil==5.9.0 | ||
| psycopg2==2.9.3 |
There was a problem hiding this comment.
Why is it required for windows only?
There was a problem hiding this comment.
psycopg2 has no pre-compiled binary version on Macos and some linux distribution. It needs to compile from source code and needs some extra library installed. In order not to impact too many CLI users, we will install packages dynamically when users run the specific command.
There was a problem hiding this comment.
psycopg2 currently cannot be installed on Python 3.11 (psycopg/psycopg2#1514), which blocks Azure CLI's Python 3.11 support (#24494).
|
@kairu-ms Could you please help review the PR? |
Related command
Description
Add
--system-identityoption for commands:az spring-cloud/spring/webapp/containerapp connection create postgres/postgres-flexible/mysql-flexible/sqlIt will enable the system identity of spring cloud app, and create an aad user in postgresql. Then create the connection.
Testing Guide
History Notes
[Component Name 1] BREAKING CHANGE:
az command a: Make some customer-facing breaking change[Component Name 2]
az command b: Add some customer-facing featureThis checklist is used to make sure that common guidelines for a pull request are followed.
The PR title and description has followed the guideline in Submitting Pull Requests.
I adhere to the Command Guidelines.
I adhere to the Error Handling Guidelines.