@drunk-pulumi/azure 1.0.21 → 1.0.23

package/Builder/MySqlBuilder.js

@@ -0,0 +1,229 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const types_1 = require("./types");
+const Common_1 = require("../Common");
+const Random_1 = require("../Core/Random");
+const mysql = __importStar(require("@pulumi/azure-native/dbformysql/v20231230"));
+const Helper_1 = require("../KeyVault/Helper");
+const UserAssignedIdentity_1 = __importDefault(require("../AzAd/UserAssignedIdentity"));
+const pulumi = __importStar(require("@pulumi/pulumi"));
+const Helper_2 = require("../VNet/Helper");
+const PrivateEndpoint_1 = __importDefault(require("../VNet/PrivateEndpoint"));
+class MySqlBuilder extends types_1.Builder {
+    args;
+    _instanceName;
+    _mySqlInstance = undefined;
+    _uid = undefined;
+    _sku = undefined;
+    _loginInfo = undefined;
+    _generateLogin = false;
+    _network = undefined;
+    _options = undefined;
+    _databases = new Set();
+    constructor(args) {
+        super(args);
+        this.args = args;
+        this._instanceName = Common_1.naming.getMySqlName(args.name);
+    }
+    withSku(props) {
+        this._sku = props;
+        return this;
+    }
+    withLogin(props) {
+        this._loginInfo = props;
+        return this;
+    }
+    generateLogin() {
+        this._generateLogin = true;
+        return this;
+    }
+    withNetwork(props) {
+        this._network = props;
+        return this;
+    }
+    withOptions(props) {
+        this._options = props;
+        return this;
+    }
+    withDatabases(...props) {
+        props.forEach((i) => this._databases.add(i));
+        return this;
+    }
+    buildLogin() {
+        if (!this._generateLogin)
+            return;
+        const { name, vaultInfo } = this.args;
+        const login = (0, Random_1.randomLogin)({
+            name: this._instanceName,
+            loginPrefix: name,
+            maxUserNameLength: 15,
+            passwordOptions: {
+                length: 25,
+                policy: 'yearly',
+                options: { lower: true, upper: true, special: false, numeric: true },
+            },
+            vaultInfo,
+        });
+        this._loginInfo = { adminLogin: login.userName, password: login.password };
+    }
+    buildUID() {
+        const { group, vaultInfo, envRoles, dependsOn } = this.args;
+        if (!vaultInfo)
+            throw new Error(`${this._instanceName}: The vaultInfo is required.`);
+        this._uid = (0, UserAssignedIdentity_1.default)({
+            name: this._instanceName,
+            group,
+            vaultInfo,
+            dependsOn,
+        });
+        //Allows to Read Key Vault
+        envRoles?.addMember('readOnly', this._uid.principalId);
+    }
+    buildMySql() {
+        const { group, envUIDInfo, vaultInfo, enableEncryption, dependsOn, ignoreChanges = [], } = this.args;
+        const encryptKey = enableEncryption
+            ? (0, Helper_1.addEncryptKey)(this._instanceName, vaultInfo)
+            : undefined;
+        this._mySqlInstance = new mysql.Server(this._instanceName, {
+            ...group,
+            serverName: this._instanceName,
+            version: this._sku.version,
+            sku: this._sku.sku,
+            storage: {
+                storageSizeGB: this._options?.storageSizeGB ?? 128,
+                autoGrow: Common_1.isPrd ? 'Enabled' : 'Disabled',
+                autoIoScaling: Common_1.isPrd ? 'Enabled' : 'Disabled',
+            },
+            identity: {
+                type: mysql.ManagedServiceIdentityType.UserAssigned,
+                userAssignedIdentities: envUIDInfo
+                    ? [this._uid.id, envUIDInfo.id]
+                    : [this._uid.id],
+            },
+            administratorLogin: this._loginInfo.adminLogin,
+            administratorLoginPassword: this._loginInfo.password,
+            dataEncryption: encryptKey
+                ? {
+                    type: mysql.DataEncryptionType.AzureKeyVault,
+                    primaryUserAssignedIdentityId: envUIDInfo?.id ?? this._uid.id,
+                    primaryKeyURI: encryptKey.url,
+                }
+                : { type: mysql.DataEncryptionType.SystemManaged },
+            maintenanceWindow: this._options?.maintenanceWindow ?? {
+                dayOfWeek: 6,
+                startHour: 0,
+                startMinute: 0,
+            },
+            backup: {
+                geoRedundantBackup: Common_1.isPrd ? 'Enabled' : 'Disabled',
+                backupRetentionDays: Common_1.isPrd ? 7 : 1,
+            },
+            highAvailability: {
+                mode: Common_1.isPrd ? 'ZoneRedundant' : 'Disabled',
+                standbyAvailabilityZone: '3',
+            },
+            availabilityZone: Common_1.isPrd ? '3' : '1',
+        }, {
+            dependsOn: this._uid?.instance ?? dependsOn,
+            ignoreChanges: [...ignoreChanges, 'administratorLogin'],
+        });
+    }
+    buildAdAdmin() {
+        const { group, envRoles } = this.args;
+        if (!envRoles)
+            return;
+        new mysql.AzureADAdministrator(this._instanceName, {
+            ...group,
+            administratorName: this._loginInfo.adminLogin,
+            serverName: this._mySqlInstance.name,
+            login: this._loginInfo.adminLogin,
+            administratorType: 'ActiveDirectory',
+            sid: envRoles.contributor.objectId,
+            tenantId: Common_1.tenantId,
+        }, { dependsOn: this._mySqlInstance, ignoreChanges: ['administratorName'] });
+    }
+    buildNetwork() {
+        const { group } = this.args;
+        if (this._network?.ipAddresses) {
+            pulumi.output(this._network.ipAddresses).apply((ips) => (0, Helper_2.convertToIpRange)(ips).map((f, i) => new mysql.FirewallRule(`${this._instanceName}-firewall-${i}`, {
+                ...group,
+                firewallRuleName: `${this._instanceName}-firewall-${i}`,
+                serverName: this._mySqlInstance.name,
+                startIpAddress: f.start,
+                endIpAddress: f.end,
+            }, { dependsOn: this._mySqlInstance })));
+        }
+        if (this._network?.allowsPublicAccess)
+            new mysql.FirewallRule(`${this._instanceName}-firewall-allow-public`, {
+                ...group,
+                firewallRuleName: `${this._instanceName}-firewall-allow-public`,
+                serverName: this._mySqlInstance.name,
+                startIpAddress: '0.0.0.0',
+                endIpAddress: '255.255.255.255',
+            }, { dependsOn: this._mySqlInstance });
+        if (this._network?.privateLink) {
+            (0, PrivateEndpoint_1.default)({
+                ...this._network?.privateLink,
+                resourceInfo: {
+                    name: this._instanceName,
+                    group,
+                    id: this._mySqlInstance.id,
+                },
+                privateDnsZoneName: 'mysql.database.azure.com',
+                linkServiceGroupIds: this._network.privateLink.type
+                    ? [this._network.privateLink.type]
+                    : ['mysql'],
+                dependsOn: this._mySqlInstance,
+            });
+        }
+    }
+    buildDatabases() {
+        const { group } = this.args;
+        this._databases.forEach((d) => new mysql.Database(`${this._mySqlInstance}-${d}`, {
+            ...group,
+            serverName: this._mySqlInstance.name,
+            databaseName: d,
+        }, { dependsOn: this._mySqlInstance }));
+    }
+    build() {
+        this.buildLogin();
+        this.buildUID();
+        this.buildMySql();
+        this.buildAdAdmin();
+        this.buildNetwork();
+        this.buildDatabases();
+        return {
+            name: this._instanceName,
+            group: this.args.group,
+            id: this._mySqlInstance.id,
+        };
+    }
+}
+exports.default = (props) => new MySqlBuilder(props);
+//# sourceMappingURL=data:application/json;base64,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

package/Builder/PostgreSqlBuilder.d.ts

@@ -0,0 +1,3 @@
+import { PostgreSqlBuilderArgs, IPostgreSqlSkuBuilder } from './types';
+declare const _default: (props: PostgreSqlBuilderArgs) => IPostgreSqlSkuBuilder;
+export default _default;

package/Builder/PostgreSqlBuilder.js

@@ -0,0 +1,235 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const types_1 = require("./types");
+const Common_1 = require("../Common");
+const Random_1 = require("../Core/Random");
+const postgresql = __importStar(require("@pulumi/azure-native/dbforpostgresql/v20231201preview"));
+const Helper_1 = require("../KeyVault/Helper");
+const UserAssignedIdentity_1 = __importDefault(require("../AzAd/UserAssignedIdentity"));
+const pulumi = __importStar(require("@pulumi/pulumi"));
+const Helper_2 = require("../VNet/Helper");
+const PrivateEndpoint_1 = __importDefault(require("../VNet/PrivateEndpoint"));
+const pulumi_1 = require("@pulumi/pulumi");
+class PostgreSqlBuilder extends types_1.Builder {
+    args;
+    _instanceName;
+    _sqlInstance = undefined;
+    _uid = undefined;
+    _sku = undefined;
+    _loginInfo = undefined;
+    _generateLogin = false;
+    _network = undefined;
+    _options = undefined;
+    _databases = new Set();
+    constructor(args) {
+        super(args);
+        this.args = args;
+        this._instanceName = Common_1.naming.getPostgresqlName(args.name);
+    }
+    withSku(props) {
+        this._sku = props;
+        return this;
+    }
+    withLogin(props) {
+        this._loginInfo = props;
+        return this;
+    }
+    generateLogin() {
+        this._generateLogin = true;
+        return this;
+    }
+    withNetwork(props) {
+        this._network = props;
+        return this;
+    }
+    withOptions(props) {
+        this._options = props;
+        return this;
+    }
+    withDatabases(...props) {
+        props.forEach((i) => this._databases.add(i));
+        return this;
+    }
+    buildLogin() {
+        if (!this._generateLogin)
+            return;
+        const { name, vaultInfo } = this.args;
+        const login = (0, Random_1.randomLogin)({
+            name: this._instanceName,
+            loginPrefix: name,
+            maxUserNameLength: 15,
+            passwordOptions: {
+                length: 25,
+                policy: 'yearly',
+                options: { lower: true, upper: true, special: false, numeric: true },
+            },
+            vaultInfo,
+        });
+        this._loginInfo = { adminLogin: login.userName, password: login.password };
+    }
+    buildUID() {
+        const { group, vaultInfo, envRoles, dependsOn } = this.args;
+        if (!vaultInfo)
+            throw new Error(`${this._instanceName}: The vaultInfo is required.`);
+        this._uid = (0, UserAssignedIdentity_1.default)({
+            name: this._instanceName,
+            group,
+            vaultInfo,
+            dependsOn,
+        });
+        //Allows to Read Key Vault
+        envRoles?.addMember('readOnly', this._uid.principalId);
+    }
+    buildPostgreSql() {
+        const { group, envUIDInfo, vaultInfo, enableEncryption, dependsOn, ignoreChanges = [], } = this.args;
+        const encryptKey = enableEncryption
+            ? (0, Helper_1.addEncryptKey)(this._instanceName, vaultInfo)
+            : undefined;
+        this._sqlInstance = new postgresql.Server(this._instanceName, {
+            ...group,
+            serverName: this._instanceName,
+            version: this._sku.version,
+            sku: this._sku.sku,
+            storage: {
+                storageSizeGB: this._options?.storageSizeGB ?? 128,
+                //autoGrow: isPrd ? 'Enabled' : 'Disabled',
+                //autoIoScaling: isPrd ? 'Enabled' : 'Disabled',
+            },
+            identity: {
+                type: postgresql.IdentityType.UserAssigned,
+                userAssignedIdentities: (0, pulumi_1.output)([envUIDInfo?.id, this._uid?.id]).apply(([id1, id2]) => {
+                    const rs = {};
+                    if (id1) {
+                        rs[id1] = {
+                            clientId: envUIDInfo.clientId,
+                            principalId: envUIDInfo.principalId,
+                        };
+                    }
+                    if (id2) {
+                        rs[id2] = {
+                            clientId: this._uid.clientId,
+                            principalId: this._uid.principalId,
+                        };
+                    }
+                    return rs;
+                }),
+            },
+            //TODO: move this options to out of hard code
+            authConfig: {
+                passwordAuth: 'Enabled',
+                activeDirectoryAuth: 'Enabled',
+                tenantId: Common_1.tenantId,
+            },
+            administratorLogin: this._loginInfo.adminLogin,
+            administratorLoginPassword: this._loginInfo.password,
+            dataEncryption: encryptKey
+                ? {
+                    type: 'AzureKeyVault',
+                    primaryUserAssignedIdentityId: envUIDInfo?.id ?? this._uid.id,
+                    primaryKeyURI: encryptKey.url,
+                }
+                : { type: 'SystemManaged' },
+            maintenanceWindow: this._options?.maintenanceWindow ?? {
+                dayOfWeek: 6,
+                startHour: 0,
+                startMinute: 0,
+            },
+            backup: {
+                geoRedundantBackup: Common_1.isPrd ? 'Enabled' : 'Disabled',
+                backupRetentionDays: Common_1.isPrd ? 7 : 1,
+            },
+            highAvailability: {
+                mode: Common_1.isPrd ? 'ZoneRedundant' : 'Disabled',
+                standbyAvailabilityZone: '3',
+            },
+            availabilityZone: Common_1.isPrd ? '3' : '1',
+        }, {
+            dependsOn: this._uid?.instance ?? dependsOn,
+            ignoreChanges: [...ignoreChanges, 'administratorLogin'],
+        });
+    }
+    buildNetwork() {
+        const { group } = this.args;
+        if (this._network?.ipAddresses) {
+            pulumi.output(this._network.ipAddresses).apply((ips) => (0, Helper_2.convertToIpRange)(ips).map((f, i) => new postgresql.FirewallRule(`${this._instanceName}-firewall-${i}`, {
+                ...group,
+                firewallRuleName: `${this._instanceName}-firewall-${i}`,
+                serverName: this._sqlInstance.name,
+                startIpAddress: f.start,
+                endIpAddress: f.end,
+            }, { dependsOn: this._sqlInstance })));
+        }
+        if (this._network?.allowsPublicAccess)
+            new postgresql.FirewallRule(`${this._instanceName}-firewall-allow-public`, {
+                ...group,
+                firewallRuleName: `${this._instanceName}-firewall-allow-public`,
+                serverName: this._sqlInstance.name,
+                startIpAddress: '0.0.0.0',
+                endIpAddress: '255.255.255.255',
+            }, { dependsOn: this._sqlInstance });
+        if (this._network?.privateLink) {
+            (0, PrivateEndpoint_1.default)({
+                ...this._network?.privateLink,
+                resourceInfo: {
+                    name: this._instanceName,
+                    group,
+                    id: this._sqlInstance.id,
+                },
+                privateDnsZoneName: 'PostgreSql.database.azure.com',
+                linkServiceGroupIds: this._network.privateLink.type
+                    ? [this._network.privateLink.type]
+                    : ['PostgreSql'],
+                dependsOn: this._sqlInstance,
+            });
+        }
+    }
+    buildDatabases() {
+        const { group } = this.args;
+        this._databases.forEach((d) => new postgresql.Database(`${this._sqlInstance}-${d}`, {
+            ...group,
+            serverName: this._sqlInstance.name,
+            databaseName: d,
+        }, { dependsOn: this._sqlInstance }));
+    }
+    build() {
+        this.buildLogin();
+        this.buildUID();
+        this.buildPostgreSql();
+        //this.buildAdAdmin();
+        this.buildNetwork();
+        this.buildDatabases();
+        return {
+            name: this._instanceName,
+            group: this.args.group,
+            id: this._sqlInstance.id,
+        };
+    }
+}
+exports.default = (props) => new PostgreSqlBuilder(props);
+//# sourceMappingURL=data:application/json;base64,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

package/Builder/RedisCacheBuilder.d.ts

@@ -0,0 +1,3 @@
+import { IRedisCacheSkuBuilder, RedisCacheBuilderArgs } from './types';
+declare const _default: (props: RedisCacheBuilderArgs) => IRedisCacheSkuBuilder;
+export default _default;

package/Builder/RedisCacheBuilder.js

@@ -0,0 +1,151 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const types_1 = require("./types");
+const Common_1 = require("../Common");
+const cache = __importStar(require("@pulumi/azure-native/cache"));
+const pulumi = __importStar(require("@pulumi/pulumi"));
+const Helper_1 = require("../VNet/Helper");
+const PrivateEndpoint_1 = __importDefault(require("../VNet/PrivateEndpoint"));
+const CustomHelper_1 = require("../KeyVault/CustomHelper");
+const to_words_1 = require("to-words");
+const toWord = new to_words_1.ToWords();
+class RedisCacheBuilder extends types_1.Builder {
+    args;
+    _instanceName;
+    _sku = {
+        name: 'Basic',
+        family: 'C',
+        capacity: 0,
+    };
+    _network = undefined;
+    _redisInstance = undefined;
+    constructor(args) {
+        super(args);
+        this.args = args;
+        this._instanceName = Common_1.naming.getRedisCacheName(args.name);
+    }
+    withSku(props) {
+        this._sku = props;
+        return this;
+    }
+    withNetwork(props) {
+        this._network = props;
+        return this;
+    }
+    buildRedis() {
+        const { group, dependsOn, ignoreChanges, importUri } = this.args;
+        this._redisInstance = new cache.Redis(this._instanceName, {
+            ...group,
+            name: this._instanceName,
+            minimumTlsVersion: '1.2',
+            enableNonSslPort: false,
+            identity: { type: cache.ManagedServiceIdentityType.SystemAssigned },
+            sku: this._sku,
+            zones: Common_1.isPrd && this._sku.name === 'Premium' ? ['1', '2', '3'] : undefined,
+            subnetId: this._network?.subnetId,
+            publicNetworkAccess: this._network?.privateLink
+                ? 'Disabled'
+                : 'Enabled',
+        }, { dependsOn, import: importUri, ignoreChanges });
+    }
+    buildNetwork() {
+        //Whitelist IpAddress
+        if (this._network?.ipAddresses) {
+            pulumi.output(this._network.ipAddresses).apply((ips) => {
+                (0, Helper_1.convertToIpRange)(ips).map((range, i) => {
+                    const n = `allow_Ip_${toWord.convert(i)}`.toLowerCase();
+                    return new cache.FirewallRule(`${this._instanceName}-${n}`, {
+                        ...this.args.group,
+                        ruleName: n,
+                        cacheName: this._redisInstance.name,
+                        startIP: range.start,
+                        endIP: range.end,
+                    }, { dependsOn: this._redisInstance });
+                });
+            });
+        }
+        //Private Link
+        if (this._network?.privateLink) {
+            (0, PrivateEndpoint_1.default)({
+                ...this._network.privateLink,
+                resourceInfo: {
+                    name: this._instanceName,
+                    group: this.args.group,
+                    id: this._redisInstance.id,
+                },
+                privateDnsZoneName: 'privatelink.redis.cache.windows.net',
+                linkServiceGroupIds: this._network.privateLink.type
+                    ? [this._network.privateLink.type]
+                    : ['redisCache'],
+                dependsOn: this._redisInstance,
+            });
+        }
+    }
+    buildSecrets() {
+        const { vaultInfo } = this.args;
+        if (!vaultInfo)
+            return;
+        this._redisInstance.hostName.apply(async (h) => {
+            if (!h)
+                return;
+            const keys = await cache.listRedisKeys({
+                name: this._instanceName,
+                resourceGroupName: this.args.group.resourceGroupName,
+            });
+            (0, CustomHelper_1.addCustomSecrets)({
+                vaultInfo,
+                contentType: 'Redis Cache',
+                dependsOn: this._redisInstance,
+                items: [
+                    { name: `${this._instanceName}-host`, value: h },
+                    {
+                        name: `${this._instanceName}-primary-conn`,
+                        value: `${h}:6380,password=${keys.primaryKey},ssl=True,abortConnect=False`,
+                    },
+                    {
+                        name: `${this._instanceName}-secondary-conn`,
+                        value: `${h}:6380,password=${keys.secondaryKey},ssl=True,abortConnect=False`,
+                    },
+                ],
+            });
+        });
+    }
+    build() {
+        this.buildRedis();
+        this.buildNetwork();
+        this.buildSecrets();
+        return {
+            name: this._instanceName,
+            group: this.args.group,
+            id: this._redisInstance.id,
+        };
+    }
+}
+exports.default = (props) => new RedisCacheBuilder(props);
+//# sourceMappingURL=data:application/json;base64,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