Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

compose: investigate moving set-redis-conn.bicep logic to upstream AVM #4681

Open
JeffreyCA opened this issue Jan 9, 2025 · 0 comments · May be fixed by Azure/bicep-registry-modules#4138
Open

compose: investigate moving set-redis-conn.bicep logic to upstream AVM #4681

JeffreyCA opened this issue Jan 9, 2025 · 0 comments · May be fixed by Azure/bicep-registry-modules#4138
Assignees
@JeffreyCA
Labels
compose composability

Comments

@JeffreyCA
Copy link
Contributor

We currently rely on our own custom Bicep module set-redis-conn.bicep to write the Redis access key and connection strings to AKV after the cache has been provisioned.

We may want to move this logic upstream if possible, by having the Redis AVM support Secrets export, which would expose a standardized input param called secretsExportConfiguration.

We currently leverage this param for Cosmos DB:

azure-dev/cli/azd/resources/scaffold/templates/resources.bicept

Lines 94 to 97 in ccbf5e7

secretsExportConfiguration: {
keyVaultResourceId: keyVault.outputs.resourceId
primaryWriteConnectionStringSecretName: 'MONGODB-URL'
}

That way, as we add support for more services that involve access keys/secrets, they can all use the underlying AVM's secretsExportConfiguration to write to AKV.

Other Azure services whose AVM already support secrets export include:

  • Cosmos DB
  • Storage account
  • SQL Server
  • Cognitive services
@JeffreyCA JeffreyCA added the compose composability label Jan 9, 2025
@JeffreyCA JeffreyCA self-assigned this Jan 9, 2025
@JeffreyCA JeffreyCA linked a pull request Jan 14, 2025 that will close this issue
feat: avm/res/cache/redis: add support for AKV secrets export Azure/bicep-registry-modules#4138
Open
11 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@JeffreyCA JeffreyCA

Labels
compose composability
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat: avm/res/cache/redis: add support for AKV secrets export JeffreyCA/bicep-registry-modules
1 participant
@JeffreyCA