redisenterprise: add test-connection command to address a common supportability ask

[yugangw-msft]

This checklist is used to make sure that common guidelines for a pull request are followed.

Related command

General Guidelines

• Have you run azdev style <YOUR_EXT> locally? (pip install azdev required)
• Have you run python scripts/ci/test_index.py -q locally? (pip install wheel==0.30.0 required)
• My extension version conforms to the Extension version schema

About Extension Publish

There is a pipeline to automatically build, upload and publish extension wheels.
Once your pull request is merged into main branch, a new pull request will be created to update src/index.json automatically.
You only need to update the version information in file setup.py and historical information in file HISTORY.rst in your PR but do not modify src/index.json.

[azure-client-tools-bot-prd]

⚠️Azure CLI Extensions Breaking Change Test

⚠️redisenterprise

rule	cmd_name	rule_message	suggest_message
⚠️ 1001 - CmdAdd	redisenterprise test-connection	cmd redisenterprise test-connection added

[yonzhan]

Thank you for your contribution! We will review the pull request and get back to you soon.

[azure-client-tools-bot-prd]

Hi @yugangw-msft,
Please write the description of changes which can be perceived by customers into HISTORY.rst.
If you want to release a new extension version, please update the version in setup.py as well.

[github-actions]

The git hooks are available for azure-cli and azure-cli-extensions repos. They could help you run required checks before creating the PR.

Please sync the latest code with latest dev branch (for azure-cli) or main branch (for azure-cli-extensions).
After that please run the following commands to enable git hooks:

pip install azdev --upgrade
azdev setup -c <your azure-cli repo path> -r <your azure-cli-extensions repo path>

[github-actions]

CodeGen Tools Feedback Collection

Thank you for using our CodeGen tool. We value your feedback, and we would like to know how we can improve our product. Please take a few minutes to fill our codegen survey

[github-actions]

Hi @yugangw-msft

Release Suggestions

Module: redisenterprise

• Please log updates into to src/redisenterprise/HISTORY.rst
• Update VERSION to 1.4.0 in src/redisenterprise/setup.py

Notes

• For more info about extension versioning, please refer to Extension version schema

[Copilot]

Pull request overview

This PR adds a new test-connection command to the Azure CLI redisenterprise extension to help users verify connectivity to Redis Enterprise clusters. This addresses a common supportability request by providing a diagnostic tool that can test connections using either Entra ID authentication or access key authentication.

Key changes:

• Adds a new test-connection command that performs write/read/delete operations to verify Redis connectivity
• Implements support for two authentication methods: Entra ID and access keys
• Adds the redis package as a dependency to enable Redis client functionality

Reviewed changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated 10 comments.

Show a summary per file

File	Description
src/redisenterprise/setup.py	Adds redis package dependency for Redis client functionality
src/redisenterprise/azext_redisenterprise/custom.py	Implements connection testing logic with helper functions for creating Redis connections and performing test operations
src/redisenterprise/azext_redisenterprise/commands.py	Registers the new test-connection command
src/redisenterprise/azext_redisenterprise/_params.py	Defines command parameters including authentication method options
src/redisenterprise/azext_redisenterprise/_help.py	Adds help documentation and usage examples for the new command

[Copilot]

The dependency specification uses a pessimistic version constraint (~=7.1.0) which will match 7.1.x versions but not 7.2.0 or higher. This may be overly restrictive and could prevent users from benefiting from bug fixes and improvements in newer versions. Consider using a more flexible constraint like 'redis>=7.1.0,<8.0.0' to allow minor version updates while preventing breaking changes from major version updates.

Suggested change

	DEPENDENCIES = ['redis~=7.1.0']
	DEPENDENCIES = ['redis>=7.1.0,<8.0.0']

[Copilot]

The username is extracted from the JWT token's 'oid' or 'sub' claim with a fallback to 'default'. Using 'default' as a fallback username could lead to authentication failures or unexpected behavior. If neither 'oid' nor 'sub' is present in the token, this indicates a token validation issue that should fail explicitly with a clear error message rather than silently using a placeholder value.

Suggested change

	user_name = decoded_token.get('oid', decoded_token.get('sub', 'default'))
	user_name = decoded_token.get('oid') or decoded_token.get('sub')
	if not user_name:
	raise ValidationError("Failed to extract user identifier ('oid' or 'sub') from Entra access token.")

[Copilot]

The warning message uses logger.warning for informational connection status messages. Similar to earlier in the code, this should use logger.info for informational messages about successful operations rather than logger.warning which implies a problem or potential issue.

[Copilot]

The error message mentions installing both 'redis' and 'PyJWT' packages, but only 'redis' is listed in DEPENDENCIES. Since PyJWT is required for Entra authentication, it should be added to the dependencies or the error message should be updated to clarify that it's an optional dependency for Entra auth.

Suggested change

	result['message'] = (f"Required package not installed: {str(ie)}. "
	"Please install 'redis' and 'PyJWT' packages.")
	result['message'] = (
	f"Required package not installed: {str(ie)}. "
	"Please install the 'redis' package. To enable Entra authentication, "
	"also install the optional 'PyJWT' package."
	)

[Copilot]

Using logger.warning for an informational message about which database is being used. This is normal operational information and should use logger.info instead. The warning log level should be reserved for actual warnings about potential issues.

Suggested change

	logger.warning("Using database: %s", database_name)
	logger.info("Using database: %s", database_name)

[Copilot]

The ssl_cert_reqs parameter is set to None, which disables SSL certificate verification. This is a security risk as it makes the connection vulnerable to man-in-the-middle attacks. Unless there's a specific reason for this (which should be documented), SSL certificate verification should be enabled by using ssl_cert_reqs='required' or removing this parameter to use the default secure setting.

Suggested change

	ssl_cert_reqs=None,
	ssl_cert_reqs="required",

[Copilot]

Using the logger.warning level for informational messages about connection test steps is misleading. These are informational messages showing normal operation progress, not warnings about potential issues. Consider using logger.info for these step-by-step progress messages to better reflect their informational nature.

Suggested change

	test_logger.warning("Step 1: Writing test key '%s' with value '%s'...", test_key, test_value)
	redis_client.set(test_key, test_value, ex=60) # Expire in 60 seconds
	steps.append({'step': 1, 'action': 'write', 'status': 'success', 'key': test_key, 'value': test_value,
	'message': f"Successfully wrote key '{test_key}'"})
	test_logger.warning("Step 1: Successfully wrote test key")
	# Step 2: Read the test key back
	test_logger.warning("Step 2: Reading test key '%s'...", test_key)
	retrieved_value = redis_client.get(test_key)
	steps.append({'step': 2, 'action': 'read', 'status': 'success', 'key': test_key, 'value': retrieved_value,
	'message': f"Successfully read key '{test_key}', value: '{retrieved_value}'"})
	test_logger.warning("Step 2: Successfully read test key, value: '%s'", retrieved_value)
	# Step 3: Verify the value
	test_logger.warning("Step 3: Verifying value matches...")
	if retrieved_value == test_value:
	steps.append({'step': 3, 'action': 'verify', 'status': 'success',
	'message': 'Value verification passed'})
	test_logger.warning("Step 3: Value verification passed")
	else:
	steps.append({'step': 3, 'action': 'verify', 'status': 'failed',
	'message': f"Value mismatch: expected '{test_value}', got '{retrieved_value}'"})
	test_logger.warning("Step 3: Value verification failed")
	return False, f"Value mismatch: expected '{test_value}', got '{retrieved_value}'.", steps
	# Step 4: Delete the test key
	test_logger.warning("Step 4: Deleting test key '%s'...", test_key)
	redis_client.delete(test_key)
	steps.append({'step': 4, 'action': 'delete', 'status': 'success', 'key': test_key,
	'message': f"Successfully deleted key '{test_key}'"})
	test_logger.warning("Step 4: Successfully deleted test key")
	test_logger.info("Step 1: Writing test key '%s' with value '%s'...", test_key, test_value)
	redis_client.set(test_key, test_value, ex=60) # Expire in 60 seconds
	steps.append({'step': 1, 'action': 'write', 'status': 'success', 'key': test_key, 'value': test_value,
	'message': f"Successfully wrote key '{test_key}'"})
	test_logger.info("Step 1: Successfully wrote test key")
	# Step 2: Read the test key back
	test_logger.info("Step 2: Reading test key '%s'...", test_key)
	retrieved_value = redis_client.get(test_key)
	steps.append({'step': 2, 'action': 'read', 'status': 'success', 'key': test_key, 'value': retrieved_value,
	'message': f"Successfully read key '{test_key}', value: '{retrieved_value}'"})
	test_logger.info("Step 2: Successfully read test key, value: '%s'", retrieved_value)
	# Step 3: Verify the value
	test_logger.info("Step 3: Verifying value matches...")
	if retrieved_value == test_value:
	steps.append({'step': 3, 'action': 'verify', 'status': 'success',
	'message': 'Value verification passed'})
	test_logger.info("Step 3: Value verification passed")
	else:
	steps.append({'step': 3, 'action': 'verify', 'status': 'failed',
	'message': f"Value mismatch: expected '{test_value}', got '{retrieved_value}'"})
	test_logger.info("Step 3: Value verification failed")
	return False, f"Value mismatch: expected '{test_value}', got '{retrieved_value}'.", steps
	# Step 4: Delete the test key
	test_logger.info("Step 4: Deleting test key '%s'...", test_key)
	redis_client.delete(test_key)
	steps.append({'step': 4, 'action': 'delete', 'status': 'success', 'key': test_key,
	'message': f"Successfully deleted key '{test_key}'"})
	test_logger.info("Step 4: Successfully deleted test key")

[Copilot]

The PyJWT dependency is used to decode JWT tokens but is not listed in the DEPENDENCIES in setup.py. This will cause ImportError at runtime if PyJWT is not installed. Add 'PyJWT' to the DEPENDENCIES list in setup.py to ensure it's installed along with the extension.

[Copilot]

The warning message uses logger.warning for an informational connection status message. This should use logger.info for informational messages about successful operations.

Suggested change

	logger.warning("Successfully connected to Redis at %s:%s", host_name, port)
	logger.info("Successfully connected to Redis at %s:%s", host_name, port)

[Copilot]

The new test-connection command lacks test coverage. The repository has comprehensive automated testing infrastructure with scenario tests, but no tests are included for the new command. Add test cases covering both authentication methods (Entra and access-key), success scenarios, and failure scenarios (e.g., when databases don't exist, when authentication fails).