Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Refactor ansible2 #662

Open
wants to merge 25 commits into
base: development
Choose a base branch
from

Conversation

dhruvmicrosoft
Copy link

@dhruvmicrosoft dhruvmicrosoft commented Nov 5, 2024

Problem

This pull request introduces a new module for setting variables in the SAP Mounts Role and Oracle Role, and integrates these modules into the existing Ansible tasks. The changes aim to streamline and centralize the handling of SAP mount parameters.

New Modules for Setting Variables:

Integration of New Modules:

Solution

This pull request introduces significant changes to the SAP mounts role in the Ansible deployment scripts. The main updates include the creation of new Python modules to handle variable settings, replacing inline Ansible tasks with calls to these modules, and updating the tasks to use the output from these modules. These changes aim to streamline the process and improve maintainability.

New Python modules for setting variables:

Updates to Ansible tasks:

Tests

[Please provide steps to test the PR]
Private ADO links shared internally.

Notes

KimForss and others added 8 commits October 31, 2024 13:48
* Refactor deploy control plane script to remove unnecessary Terraform installation and Azure CLI installation

* Refactor deploy control plane script to include sourcing deploy_server.sh and fixing Terraform ownership

* Refactor deploy control plane script to include sourcing deploy_server.sh and fixing Terraform ownership

* Refactor deploy control plane script to include azurerm_role_assignment for deployer and storage_sapbits_contributor

* Refactor deploy control plane script to remove unnecessary Terraform installation and Azure CLI installation

* Refactor deploy control plane script to include sourcing deploy_server.sh and fixing Terraform ownership

* Refactor deploy control plane script to include dynamic role assignment based on VM count

* Refactor deploy scripts to simplify checkIfCloudShell function

* Refactor deploy control plane script to include dynamic role assignment based on VM count and use managed service identity (MSI) for authentication

* Refactor deploy scripts to include sourcing deploy_server.sh and fixing Terraform ownership

* Refactor deploy control plane script to include dynamic role assignment based on VM count and use managed service identity (MSI) for authentication

* Refactor deploy control plane script to include dynamic role assignment based on VM count and use managed service identity (MSI) for authentication

* handle the realfilepath and the scriptdir variables as they might be replaced with other values in child scripts

* Refactor deploy_controlplane.sh to use managed service identity (MSI) for authentication

* Refactor deploy_controlplane.sh to remove ARM_USE_MSI variable and use managed service identity (MSI) for authentication

* Refactor deploy_utils.sh to remove ARM_USE_MSI variable and use managed service identity (MSI) for authentication

* Refactor deploy_controlplane.sh to remove ARM_USE_MSI variable and use managed service identity (MSI) for authentication

* Refactor deploy_controlplane.sh to use managed service identity (MSI) for authentication

* Refactor installer.sh to include terraform output command

* Refactor installer.sh to comment out unnecessary terraform output command

* Refactor variables_local.tf to use client_id instead of id for service principal object_id

* Refactor deploy_controlplane.sh to use managed service identity (MSI) for authentication and remove unnecessary ARM_USE_MSI variable

* Refactor deploy_controlplane.sh to use managed service identity (MSI) for authentication

* chore: include OpenSSF Scorecard badge

* Refactor variables_local.tf to use client_id instead of id for service principal object_id
Refactor installer.sh to comment out unnecessary terraform output command

* Refactor pipeline script to use correct variable for workload ARM subscription ID

* Refactor pipeline script to use correct variable for workload ARM subscription ID

* Refactor pipeline script to include ARM_OBJECT_ID variable

* Refactor pipeline script to use correct variable for workload ARM_CLIENT_ID

* Refactor pipeline script to use correct variable for workload ARM_CLIENT_ID

* check terraform when running in cloudshell

* Refactor pipeline script to include missing variable checks

* Refactor pipeline script to remove unnecessary variable checks

* Refactor pipeline script to use correct variables for workload ARM_CLIENT_ID

* Refactor pipeline script to use correct variables for workload ARM_CLIENT_ID

* Refactor pipeline script to include missing variable checks

* Refactor pipeline script to update echo statements for installation method

* Refactor pipeline script to update echo statements for installation method

* Refactor pipeline script to use correct variables for workload ARM_CLIENT_ID

* Refactor pipeline script to update echo statements for installation method

* Refactor pipeline script to update echo statements for installation method

* Refactor pipeline script to update echo statements for installation method and use correct variables for workload ARM_CLIENT_ID

* Refactor pipeline script to update echo statements for installation method and use correct variables for workload ARM_CLIENT_ID

* Refactor pipeline script to update echo statements for installation method and use correct variables for workload ARM_CLIENT_ID

* Refactor pipeline script to update echo statements for installation method and use correct variables for workload ARM_CLIENT_ID

* Refactor pipeline script to update echo statements for installation method and use correct variables for workload ARM_CLIENT_ID

* Refactor pipeline script

* Refactor pipeline script to update echo statements for installation method and use correct variables for workload ARM_CLIENT_ID

* Refactor pipeline script to update echo statements and export variables for installation method and workload ARM_CLIENT_ID

* Refactor pipeline script to update PATH variable in deploy_controlplane.sh

* Refactor pipeline script to update echo statements and export variables for installation method, workload ARM_CLIENT_ID, and Terraform state information

* Refactor pipeline script to update echo statements and export variables for installation method, workload ARM_CLIENT_ID, and Terraform state information

* Refactor pipeline script to update echo statement for displaying the key vault information

* Refactor pipeline script to update echo statements and export variables for installation method, workload ARM_CLIENT_ID, and Terraform state information

* Refactor pipeline script to update usage of Azure CLI command in installer.sh

* Refactor pipeline script to update echo statements and export variables for installation method, workload ARM_CLIENT_ID, and Terraform state information

* Refactor pipeline script to update echo statements and export variables for installation method, workload ARM_CLIENT_ID, and Terraform state information

* Refactor pipeline script to update echo statements and export variables for installation method, workload ARM_CLIENT_ID, and Terraform state information

* Refactor pipeline script to update echo statements and export variables for installation method, workload ARM_CLIENT_ID, and Terraform state information

* Refactor pipeline script to update echo statements and export variables for installation method, workload ARM_CLIENT_ID, and Terraform state information

* Refactor pipeline script to update echo statements and export variables for installation method, workload ARM_CLIENT_ID, and Terraform state information

* Refactor pipeline script to update echo statements and export variables for installation method, workload ARM_CLIENT_ID, and Terraform state information

* Refactor provider configuration to use Azure Key Vault for subscription ID retrieval

* Fixes Azure#1: Added a new line to the installer script

* Refactor pipeline script to fix unzip command in deploy control plane stage

* Refactor pipeline script to update echo statements and export variables for installation method, workload ARM_CLIENT_ID, and Terraform state information

* Refactor deploy_controlplane.sh script to save deployer_tfstate_key in config information

* remove the deployer provider

* Refactor deploy_controlplane.sh script to use the azurerm.deployer provider for retrieving key vault secrets

* Refactor tfvar_variables.tf to add "tags" variable for providing tags to all resources

* Refactor providers.tf to use local variable for subscription_id in deployer provider

* Refactor providers.tf to remove subscription_id from deployer provider

* Refactor deploy_controlplane.sh script to use local variables for deployer and library state file keys

* Refactor deploy_controlplane.sh script to use local variables for deployer and library state file keys

* Refactor azurerm provider versions to 4.6.0

* Refactor deploy_controlplane.sh script to use local variables for deployer and library state file keys

* Refactor deploy_controlplane.sh script to use local variables for deployer and library state file keys

* Refactor deploy_controlplane.sh script to use local variables for deployer and library state file keys

* Refactor az keyvault set-policy command in deploy_controlplane.sh script

* Refactor az keyvault set-policy command in deploy_controlplane.sh script

* Add SPN to workload zone key vault

* Remove the permission setting from the pipeline

* Refactor echo statements in script_helpers.sh and installer.sh

* Refactor echo statements in script_helpers.sh and installer.sh

* Refactor echo statements in script_helpers.sh and installer.sh

* Refactor echo statements in script_helpers.sh and installer.sh

* Refactor echo statements in script_helpers.sh and installer.sh

* Refactor echo statements in script_helpers.sh and installer.sh

* Refactor echo statements in script_helpers.sh and installer.sh

* Refactor echo statements in deploy_utils.sh for better readability

* Refactor echo statement in 03-sap-system-deployment.yaml

* Refactor echo statement in 03-sap-system-deployment.yaml for better readability

* Refactor echo statement in 03-sap-system-deployment.yaml for better readability

* Refactor echo statements for better readability and consistency

* Refactor echo statements for better readability and consistency

* Refactor echo statements for better readability and consistency

* Refactor echo statements for better readability and consistency

* Refactor echo statements for better readability and consistency

* Refactor echo statements for better readability and consistency

* Refactor echo statements for better readability and consistency

* Refactor echo statements to use variable for workload TFvars

* Refactor echo statements to use variable for workload TFvars

* Refactor echo statements to use variable for workload TFvars

* Refactor echo statement to use variable for Terraform Storage Account Id

* Refactor echo statements to use variables for Terraform details

* Refactor echo statements to use variables for Terraform details

* Refactor echo statements to use variables for Terraform details

* Refactor echo statements to use variables consistently

* Refactor echo statements to use variables consistently

* Refactor echo statements to use variables consistently and for Terraform details

* Refactor echo statements to consistently use variables

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve Terraform details

* Debugging

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve Terraform details

* trimming

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve formatting

* Refactor echo statements to consistently use variables and improve formatting

* terraform

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor echo statements to consistently use variables and improve formatting

* Refactor echo statements to consistently use variables and improve formatting

* Refactor echo statements to consistently use variables and improve Terraform details

* Refactor providers.tf to use Managed Service Identity (MSI) for authentication

* Refactor echo statements to consistently use variables and improve formatting

* Refactor echo statement to improve parameter file formatting

* Refactor echo statements to improve formatting and use variables consistently

* Refactor echo statements to consistently use variables and improve formatting

* Refactor deploy control plane pipeline to improve configuration and extension installation

* Refactor providers.tf to use remote state for subscription ID

* Refactor echo statements to consistently use variables and improve formatting

* Refactor echo statements to consistently use variables and improve formatting
Refactor providers.tf to use remote state for subscription ID
Refactor deploy control plane pipeline to improve configuration and extension installation
Fix validation issue in script_helpers.sh
Update providers.tf to handle null subscription ID
Remove unused variable in variables_local.tf

* Refactor echo statement to improve formatting in deploy_controlplane.sh

* Refactor echo statements to improve formatting in deploy_controlplane.sh and script_helpers.sh

* Refactor deploy_controlplane.sh and script_helpers.sh echo statements for improved formatting

* Refactor key vault secrets to include service principal access

* Refactor key vault secrets to include service principal access

* Refactor key vault secrets to include service principal access

* Refactor key vault secrets to include service principal access

* Refactor echo statements for improved formatting in deploy_controlplane.sh and script_helpers.sh

* Refactor permissions assignment in deploy_controlplane.sh

* Refactor echo statements for improved formatting and include deployer subscription

* Refactor echo statements for improved formatting and include deployer subscription

* Refactor echo statements for improved formatting and include deployer subscription

* Change to use ARM CLIENT ID

* Refactor echo statement to include deployer subscription in 02-sap-workload-zone.yaml

* Refactor echo statements for improved formatting and include deployer subscription in 02-sap-workload-zone.yaml

* Refactor echo statements for improved formatting and include deployer subscription in 02-sap-workload-zone.yaml

* Refactor echo statements for improved formatting and include deployer subscription in 02-sap-workload-zone.yaml

* Refactor echo statements and include deployer subscription in 02-sap-workload-zone.yaml
Change to use WL_ARM_CLIENT_ID instead of ARM_CLIENT_ID
Update variable group and variable names in New-SDAFDevopsWorkloadZone.ps1
Update echo statements in script_helpers.sh for improved formatting

* Refactor echo statements for improved formatting and include deployer subscription in 02-sap-workload-zone.yaml

* Refactor echo statements for improved formatting and include deployer subscription in 03-sap-system-deployment.yaml

* Refactor echo statements for improved formatting and include deployer subscription in 03-sap-system-deployment.yaml

* indentation

* Refactor echo statements for improved formatting and include deployer subscription in 03-sap-system-deployment.yaml

* Refactor echo statements for improved formatting and include deployer subscription in 03-sap-system-deployment.yaml

* Refactor echo statements for improved formatting and include deployer subscription in 03-sap-system-deployment.yaml

* Refactor echo statements for improved formatting and fix indentation in 10-remover-terraform.yaml

* Refactor echo statement for improved formatting in remover.sh

* Refactor echo statements for improved formatting and remove unnecessary output in remover.sh and 10-remover-terraform.yaml

* Refactor echo statements for improved formatting and remove unnecessary output in remover.sh and 10-remover-terraform.yaml

* Refactor echo statements for improved formatting and remove unnecessary output in remover.sh and 10-remover-terraform.yaml

* Refactor echo statements for improved formatting and remove unnecessary output in 01-deploy-control-plane.yaml

* Refactor validate_dependencies function to check for the existence of the terraform binary file instead of the terraform directory.

* Refactor echo statements for improved formatting and remove unnecessary output in deploy and remove pipelines

* Refactor echo statements for improved formatting and remove unnecessary output in deploy and remove pipelines

* Refactor echo statements for improved formatting and remove unnecessary output in set_secrets.sh

* Refactor azuread_service_principal data source to conditionally include object_id in locals

* Update SDAF version to 3.13.1.0 in ansible-input-api.yaml and version.txt

* Refactor echo statements for improved formatting and remove unnecessary output in deploy and remove pipelines

* Refactor echo statements for improved formatting and remove unnecessary output in deploy and remove pipelines

* Refactor key_vault_sap_landscape.tf to conditionally include object_id in azurerm_key_vault_access_policy

* Refactor echo statements for improved formatting and remove unnecessary output in deploy and remove pipelines

* Refactor key_vault_sap_landscape.tf to conditionally include object_id in azurerm_key_vault_access_policy

* Refactor key_vault_sap_landscape.tf to conditionally include object_id in azurerm_key_vault_access_policy

* Refactor echo statements for improved formatting and remove unnecessary output in deploy and remove pipelines

* Refactor echo statements for improved formatting and remove unnecessary output in deploy and remove pipelines

* Refactor echo statements for improved formatting and remove unnecessary output in deploy and remove pipelines

* Refactor echo statements for improved formatting in installer.sh

* Refactor echo statements for improved formatting and remove unnecessary output in installer.sh

* Refactor echo statements for improved formatting and remove unnecessary output in set_secrets.sh

* Refactor echo statements for improved formatting and remove unnecessary output in installer.sh and providers.tf

* Refactor echo statements for improved formatting and remove unnecessary output in installer.sh

* Refactor installer.sh to fix path issue and pass parameters correctly

* Refactor deploy_controlplane.sh to include state subscription parameter in installer.sh call

* Refactor deploy_controlplane.sh to include correct subscription parameter in installer.sh call

* Refactor deploy_controlplane.sh to include deployer subscription parameter and persist parameters

* Refactor deploy_controlplane.sh to include state subscription parameter in installer.sh call

* Refactor deploy_controlplane.sh to include state subscription parameter in installer.sh call

* Refactor deploy_controlplane.sh to include correct subscription parameter in installer.sh call

* Refactor deploy_controlplane.sh to include correct subscription parameter in installer.sh call and handle storage account authentication

* Refactor deploy_controlplane.sh to remove unnecessary echo statement

* Refactor deploy_controlplane.sh to remove unnecessary echo statements and improve parameter handling

* Refactor deploy_controlplane.sh to improve parameter handling

* Refactor deploy_controlplane.sh to improve storage account authentication handling

* Refactor deploy_controlplane.sh to improve parameter handling and remove unnecessary echo statements

* Refactor deploy_utils.sh to fix variable value retrieval from config file

* Refactor parameter handling in script_helpers.sh and install_workloadzone.sh

* Refactor install_workloadzone.sh to handle unknown region codes

* Refactor install_workloadzone.sh to handle unknown region codes

* Refactor install_workloadzone.sh to handle unknown region codes and improve parameter handling

* Refactor install_workloadzone.sh to handle unknown region codes and improve parameter handling

* Refactor region code handling in deploy_utils.sh and script_helpers.sh

* Refactor install_workloadzone.sh to handle unknown region codes and improve parameter handling

* Refactor install_workloadzone.sh to handle unknown region codes and improve parameter handling

* Refactor install_workloadzone.sh to handle unknown region codes and improve parameter handling

* Refactor install_workloadzone.sh to handle unknown region codes and improve parameter handling

* Refactor install_workloadzone.sh to improve parameter handling and region code handling in deploy_utils.sh and script_helpers.sh

* Refactor install_workloadzone.sh to improve parameter handling and region code handling

* Refactor install_workloadzone.sh to improve parameter handling and region code handling

* Refactor install_workloadzone.sh to improve parameter handling and region code handling

* Refactor install_workloadzone.sh to improve parameter handling and region code handling

* Refactor install_workloadzone.sh to improve parameter handling and region code handling

* Refactor install_workloadzone.sh to remove unnecessary code

* Refactor echo statements to improve readability and consistency

* Refactor installer.sh to improve parameter handling and region code handling

* Refactor installer.sh to improve parameter handling and region code handling

* Refactor installer.sh to remove unnecessary echo statements

* Refactor installer.sh to improve parameter handling and region code handling

* Refactor storage_accounts.tf to include var.use_private_endpoint in the count condition

* Refactor storage_accounts.tf to include var.use_private_endpoint in the count condition

* Keyvault network rules

* Refactor key_vault_sap_landscape.tf to include var.enable_firewall_for_keyvaults_and_storage in the default_action condition

* Refactor installer.sh to handle empty SPN secret in set_executing_user_environment_variables

* Refactor installer.sh to handle empty SPN secret in set_executing_user_environment_variables

* Refactor module.tf to include enable_firewall_for_keyvaults_and_storage variable

* Refactor installer.sh to handle empty SPN secret in set_executing_user_environment_variables and remove error file

* Add Terraform output detaisl

* Refactor Terraform plugin cache directory handling

* Refactor Terraform destroy command in remover.sh

* Refactor Terraform destroy command in remover.sh

* Refactor echo statement in deploy pipeline to include return code from deployment

* Refactor echo statement in deploy pipeline to include return code from deployment

---------

Co-authored-by: Kimmo Forss <[email protected]>
Co-authored-by: hdamecharla <[email protected]>
* Refactor echo statements in deploy control plane pipeline
* Refactor install_workloadzone.sh script to reset return_value variable
* Refactor install_workloadzone.sh script to improve error handling
* feng shui
* Refactor variables_local.tf to improve readability and error handling
* Refactor deploy control plane pipeline to include deployer_tfstate_key parameter
* Refactor deploy control plane pipeline to include deployer_tfstate_key and landscape_tfstate_key parameters
* Refactor echo statement in deploy control plane pipeline
* Refactor remover script in deploy control plane pipeline
* Refactor deploy control plane pipeline to remove unnecessary use_msi flag
* Refactor deploy control plane pipeline to update default value for spn_keyvault_id
* Refactor deploy control plane pipeline to update default value for spn_key_vault_arm_id
* Refactor deploy control plane pipeline to trim deployer_tfstate_key in imports.tf
* Refactor deploy control plane pipeline to include provider for azurerm.workload in imports.tf
* Refactor deploy control plane pipeline to update storage account authentication and export TF_VAR_tfstate_resource_id
* Refactor deploy control plane pipeline to update deployer and landscape state file paths
* Refactor deploy control plane pipeline to remove unnecessary code in remover.sh
* Refactor install_workloadzone.sh to export SPN key vault ID if keyvault is provided
* Refactor tfvar_variables.tf to set default value of short_named_endpoints_nics to true
* Refactor remover.sh to consolidate terraform destroy command
* Refactor echo statements in remover.sh and remove-control-plane.yaml
* Refactor echo statements in deploy/pipelines/01-deploy-control-plane.yaml
* Refactor providers.tf to conditionally set use_msi based on var.use_spn
* Refactor echo statements in deploy/pipelines/01-deploy-control-plane.yaml to improve clarity of deployment credentials
* Refactor install_workloadzone.sh to improve argument parsing and readability
* Refactor code for improved argument parsing and readability in install_workloadzone.sh
* Refactor LandscapeModel.cs, LandscapeDetails.json, and LandscapeTemplate.txt to add prevent_deletion_if_contains_resources property
* Refactor package dependencies in os-packages.yaml
* Refactor ansible role to remove unused variable and update passlib dependency
* Refactor echo statement in install_workloadzone.sh for improved clarity

---------

Co-authored-by: Kimmo Forss <[email protected]>
sapadm user wasn't created anymore by SDAF. Updated the when statement and aligned user properties with sapinst.

Shell: /bin/false
Description: SAP System Administrator
SteffenBoThomsen and others added 2 commits November 11, 2024 18:34
Azure#663)

- Add the option to specify *_flow_timeout_in_minutes for management and workload zone VNETs, defaults to null.
- Add the option to specify network_enable_route_propagation for subnet route tables, defaults to true.
…ons (Azure#664)

* feature: Enhance SAP HANA SR terraform configuration with new variable for SAPHanaSr-angi hook usage and output support

* feature: Add support for SLES 15.6 and introduce SAP HANA-SR ANGI configuration options. Some formatting and additional packages.
@dhruvmicrosoft dhruvmicrosoft marked this pull request as ready for review November 26, 2024 18:17
@dhruvmicrosoft dhruvmicrosoft requested a review from a team as a code owner November 26, 2024 18:17
@dhruvmicrosoft dhruvmicrosoft requested review from KimForss and removed request for a team November 26, 2024 18:17
Like with HANA and SCS/ERS we implement resource priority and set a fence delay of 15s on Db2 systems, to prevent both nodes from being fenced.
KimForss and others added 8 commits November 28, 2024 16:13
* Script updates to handle move to storage accounts without data plane access

* Pipeline updates to ease debugging. Instead of using inline scripts the scripts are now in the file system

* Terraform updates to support the control plane access and to facilitate better importability of resources.

* Remove debug logging from control plane deployment script

---------

Co-authored-by: Kimmo Forss <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

5 participants