Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

compose: investigate moving set-redis-conn.bicep logic to upstream AVM #4681

Closed
JeffreyCA opened this issue Jan 9, 2025 · 0 comments · Fixed by Azure/bicep-registry-modules#4138 or #4719
Closed

compose: investigate moving set-redis-conn.bicep logic to upstream AVM #4681

JeffreyCA opened this issue Jan 9, 2025 · 0 comments · Fixed by Azure/bicep-registry-modules#4138 or #4719
Assignees
@JeffreyCA
Labels
compose composability
Milestone
Jan 2025

Comments

@JeffreyCA
Copy link
Contributor

We currently rely on our own custom Bicep module set-redis-conn.bicep to write the Redis access key and connection strings to AKV after the cache has been provisioned.

We may want to move this logic upstream if possible, by having the Redis AVM support Secrets export, which would expose a standardized input param called secretsExportConfiguration.

We currently leverage this param for Cosmos DB:

azure-dev/cli/azd/resources/scaffold/templates/resources.bicept

Lines 94 to 97 in ccbf5e7

secretsExportConfiguration: {
keyVaultResourceId: keyVault.outputs.resourceId
primaryWriteConnectionStringSecretName: 'MONGODB-URL'
}

That way, as we add support for more services that involve access keys/secrets, they can all use the underlying AVM's secretsExportConfiguration to write to AKV.

Other Azure services whose AVM already support secrets export include:

  • Cosmos DB
  • Storage account
  • SQL Server
  • Cognitive services
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@JeffreyCA JeffreyCA

Labels
compose composability
Projects
None yet
Milestone
Jan 2025
2 participants
@JeffreyCA @rajeshkamal5050