Refactor Bicep modules to remove dateTime parameter and improve location handling

Evilazaro Alves · Evilazaro Alves · commit 0a32f2e3eb61 · 2025-12-12T08:23:47.000-06:00
diff --git a/infra/main.bicep b/infra/main.bicep
@@ -31,8 +31,6 @@ param secretValue string
 @maxLength(10)
 param environmentName string
 
-param dateTime string = utcNow('yyyyMMdd-HHmmss')
-
 // Load configuration from YAML
 @description('Landing Zone resource organization')
 var landingZones = loadYamlContent('settings/resourceOrganization/azureResources.yaml')
@@ -96,7 +94,6 @@ output WORKLOAD_AZURE_RESOURCE_GROUP_NAME string = workloadRg.name
 // Module deployments with improved names and organization
 @description('Log Analytics Workspace for centralized monitoring')
 module monitoring '../src/management/logAnalytics.bicep' = {
-  name: 'monitoring-logAnalytics-${environmentName}-${dateTime}'
   scope: resourceGroup(monitoringRgName)
   params: {
     name: 'logAnalytics'
@@ -114,7 +111,6 @@ output AZURE_LOG_ANALYTICS_WORKSPACE_NAME string = monitoring.outputs.AZURE_LOG_
 
 @description('Security components including Key Vault')
 module security '../src/security/security.bicep' = {
-  name: 'security-keyvault-${environmentName}-${dateTime}'
   scope: resourceGroup(securityRgName)
   params: {
     secretValue: secretValue
@@ -137,7 +133,6 @@ output AZURE_KEY_VAULT_ENDPOINT string = security.outputs.AZURE_KEY_VAULT_ENDPOI
 
 @description('DevCenter workload deployment')
 module workload '../src/workload/workload.bicep' = {
-  name: 'workload-${environmentName}-${dateTime}'
   scope: resourceGroup(workloadRgName)
   params: {
     logAnalyticsId: monitoring.outputs.AZURE_LOG_ANALYTICS_WORKSPACE_ID
diff --git a/src/connectivity/connectivity.bicep b/src/connectivity/connectivity.bicep
@@ -10,12 +10,9 @@ param logAnalyticsId string
 @description('Azure region for resource deployment')
 param location string
 
-param dateTime string = utcNow('yyyy-MM-ddTHH:mm:ssZ')
-
 var netConectCreate = (projectNetwork.create && projectNetwork.virtualNetworkType == 'Unmanaged') || (!projectNetwork.create && projectNetwork.virtualNetworkType == 'Unmanaged')
 
 module Rg 'resourceGroup.bicep' = {
-  name: 'projectNetworkRg-${uniqueString(projectNetwork.name, location)}'
   scope: subscription()
   params: {
     name: projectNetwork.resourceGroupName
@@ -28,7 +25,6 @@ module Rg 'resourceGroup.bicep' = {
 var rgName = (netConectCreate) ? projectNetwork.resourceGroupName : resourceGroup().name
 
 module virtualNetwork 'vnet.bicep' = {
-  name: 'virtualNetwork-${uniqueString(projectNetwork.name, resourceGroup().id, dateTime)}'
   scope: resourceGroup(rgName)
   params: {
     logAnalyticsId: logAnalyticsId
@@ -50,20 +46,16 @@ module virtualNetwork 'vnet.bicep' = {
 
 @description('Network Connection resource for DevCenter')
 module networkConnection './networkConnection.bicep' = if (netConectCreate) {
-  name: 'netconn-${uniqueString(projectNetwork.name,resourceGroup().id,dateTime)}'
   scope: resourceGroup()
   params: {
     devCenterName: devCenterName
     name: 'netconn-${virtualNetwork.outputs.AZURE_VIRTUAL_NETWORK.name}'
     subnetId: virtualNetwork.outputs.AZURE_VIRTUAL_NETWORK.subnets[0].id
   }
-  dependsOn: [
-    virtualNetwork
-  ]
 }
 
 output networkConnectionName string = netConectCreate
-  ? networkConnection!.outputs.networkConnectionName
+  ? networkConnection.?outputs.?networkConnectionName ?? projectNetwork.name
   : projectNetwork.name
 
 output networkType string = projectNetwork.virtualNetworkType
diff --git a/src/connectivity/vnet.bicep b/src/connectivity/vnet.bicep
@@ -83,17 +83,17 @@ resource diagnosticSettings 'Microsoft.Insights/diagnosticSettings@2021-05-01-pr
 
 output AZURE_VIRTUAL_NETWORK object = (settings.create && settings.virtualNetworkType == 'Unmanaged')
   ? {
-      name: virtualNetwork!.name
+      name: virtualNetwork.?name ?? ''
       resourceGroupName: resourceGroup().name
       virtualNetworkType: settings.virtualNetworkType
-      subnets: virtualNetwork!.properties.subnets
+      subnets: virtualNetwork.?properties.?subnets ?? []
     }
   : (!settings.create && settings.virtualNetworkType == 'Unmanaged')
       ? {
-          name: existingVirtualNetwork!.name
+          name: existingVirtualNetwork.?name ?? ''
           resourceGroupName: resourceGroup().name
           virtualNetworkType: settings.virtualNetworkType
-          subnets: existingVirtualNetwork!.properties.subnets
+          subnets: existingVirtualNetwork.?properties.?subnets ?? []
         }
       : {
           name: ''
diff --git a/src/security/security.bicep b/src/security/security.bicep
@@ -11,11 +11,8 @@ param logAnalyticsId string
 @description('Azure Key Vault Configuration')
 var securitySettings = loadYamlContent('../../infra/settings/security/security.yaml')
 
-param dateTime string = utcNow('yyyyMMdd-HHmmss')
-
 @description('Azure Key Vault')
 module keyVault 'keyVault.bicep' = if (securitySettings.create) {
-  name: 'keyVault-${securitySettings.keyVault.name}-${dateTime}'
   params: {
     tags: tags
     keyvaultSettings: securitySettings
@@ -30,20 +27,19 @@ resource existingKeyVault 'Microsoft.KeyVault/vaults@2025-05-01' existing = if (
 
 @description('Key vault secret module')
 module secret 'secret.bicep' = {
-  name: 'keyVaultSecret-${securitySettings.keyVault.secretName}-${dateTime}'
   params: {
     name: securitySettings.keyVault.secretName
-    keyVaultName: (securitySettings.create ? keyVault!.outputs.AZURE_KEY_VAULT_NAME : existingKeyVault!.name)
+    keyVaultName: (securitySettings.create ? keyVault.?outputs.?AZURE_KEY_VAULT_NAME : existingKeyVault.?name) ?? ''
     logAnalyticsId: logAnalyticsId
     secretValue: secretValue
   }
 }
 
 @description('The name of the Key Vault')
-output AZURE_KEY_VAULT_NAME string = (securitySettings.create ? keyVault!.outputs.AZURE_KEY_VAULT_NAME : existingKeyVault!.name)
+output AZURE_KEY_VAULT_NAME string = (securitySettings.create ? keyVault.?outputs.?AZURE_KEY_VAULT_NAME : existingKeyVault.?name) ?? ''
 
 @description('The identifier of the secret')
 output AZURE_KEY_VAULT_SECRET_IDENTIFIER string = secret.outputs.AZURE_KEY_VAULT_SECRET_IDENTIFIER
 
 @description('The endpoint URI of the Key Vault')
-output AZURE_KEY_VAULT_ENDPOINT string = (securitySettings.create ? keyVault!.outputs.AZURE_KEY_VAULT_ENDPOINT : existingKeyVault!.properties.vaultUri)
+output AZURE_KEY_VAULT_ENDPOINT string = (securitySettings.create ? keyVault.?outputs.?AZURE_KEY_VAULT_ENDPOINT : existingKeyVault.?properties.?vaultUri) ?? ''
diff --git a/src/workload/core/devCenter.bicep b/src/workload/core/devCenter.bicep
@@ -22,7 +22,8 @@ param secretIdentifier string
 
 param securityResourceGroupName string
 
-param dateTime string = utcNow('yyyyMMdd-HHmmss')
+@description('Azure region for resource deployment')
+param location string = resourceGroup().location
 
 // Type definitions with proper naming conventions
 @description('DevCenter configuration type')
@@ -76,7 +77,7 @@ type OrgRoleType = {
 @description('Dev Center Resource')
 resource devcenter 'Microsoft.DevCenter/devcenters@2025-10-01-preview' = {
   name: devCenterName
-  location: resourceGroup().location
+  location: location
   identity: {
     type: config.identity.type
   }
@@ -124,7 +125,6 @@ resource diagnosticSettings 'Microsoft.Insights/diagnosticSettings@2021-05-01-pr
 @description('Dev Center Identity Role Assignments')
 module devCenterIdentityRoleAssignment '../../identity/devCenterRoleAssignment.bicep' = [
   for (role, i) in config.identity.roleAssignments.devCenter: {
-    name: 'RBACDevCenterSub-${i}-${devCenterName}-${dateTime}'
     scope: subscription()
     params: {
       id: role.id
@@ -137,7 +137,6 @@ module devCenterIdentityRoleAssignment '../../identity/devCenterRoleAssignment.b
 @description('Dev Center Identity Role Assignments')
 module devCenterIdentityRoleAssignmentRG '../../identity/devCenterRoleAssignmentRG.bicep' = [
   for (role, i) in config.identity.roleAssignments.devCenter: {
-    name: 'RBACDevCenterRG-${i}-${devCenterName}-${dateTime}'
     scope: resourceGroup(securityResourceGroupName)
     params: {
       id: role.id
@@ -153,49 +152,35 @@ module devCenterIdentityRoleAssignmentRG '../../identity/devCenterRoleAssignment
 @description('Dev Center Identity User Groups role assignments')
 module devCenterIdentityUserGroupsRoleAssignment '../../identity/orgRoleAssignment.bicep' = [
   for (role, i) in config.identity.roleAssignments.orgRoleTypes: {
-    name: 'RBACUserGroup-${i}-${devCenterName}-${dateTime}'
     scope: resourceGroup()
     params: {
       principalId: role.azureADGroupId
       roles: role.azureRBACRoles
     }
-    dependsOn: [
-      devCenterIdentityRoleAssignment
-    ]
   }
 ]
 
 // Catalog configuration
 @description('Dev Center Catalogs')
 module catalog 'catalog.bicep' = [
   for (catalog, i) in catalogs: {
-    name: 'catalog-${i}-${devCenterName}-${dateTime}'
     scope: resourceGroup()
     params: {
       devCenterName: devCenterName
       catalogConfig: catalog
       secretIdentifier: secretIdentifier
     }
-    dependsOn: [
-      devcenter
-      devCenterIdentityRoleAssignment
-      devCenterIdentityRoleAssignmentRG
-    ]
   }
 ]
 
 // Environment types configuration
 @description('Dev Center Environments')
 module environment 'environmentType.bicep' = [
   for (environment, i) in environmentTypes: {
-    name: 'environmentType-${i}-${devCenterName}-${dateTime}'
     scope: resourceGroup()
     params: {
       devCenterName: devCenterName
       environmentConfig: environment
     }
-    dependsOn: [
-      devcenter
-    ]
   }
 ]
diff --git a/src/workload/project/project.bicep b/src/workload/project/project.bicep
@@ -36,7 +36,8 @@ param identity Identity
 @description('Tags to be applied to all resources')
 param tags object = {}
 
-param dateTime string = utcNow('yyyyMMdd-HHmmss')
+@description('Azure region for resource deployment')
+param location string = resourceGroup().location
 
 @description('Identity configuration for the project')
 type Identity = {
@@ -76,7 +77,7 @@ resource devCenter 'Microsoft.DevCenter/devcenters@2025-10-01-preview' existing
 @description('DevCenter Project resource')
 resource project 'Microsoft.DevCenter/projects@2025-10-01-preview' = {
   name: name
-  location: resourceGroup().location
+  location: location
   identity: {
     type: identity.type
   }
@@ -100,7 +101,6 @@ resource project 'Microsoft.DevCenter/projects@2025-10-01-preview' = {
 @description('Configure project identity role assignments')
 module projectIdentity '../../identity/projectIdentityRoleAssignment.bicep' = [
   for (role, i) in identity.roleAssignments: {
-    name: 'prj-rbac${i}-${uniqueString(project.id, project.name)}-${dateTime}'
     scope: resourceGroup()
     params: {
       projectName: project.name
@@ -114,7 +114,6 @@ module projectIdentity '../../identity/projectIdentityRoleAssignment.bicep' = [
 @description('Configure project identity role assignments')
 module projectIdentityRG '../../identity/projectIdentityRoleAssignmentRG.bicep' = [
   for (role, i) in identity.roleAssignments: {
-    name: 'prj-rbac-RG-${i}-${uniqueString(project.id, project.name)}-${dateTime}'
     scope: resourceGroup(securityResourceGroupName)
     params: {
       projectName: project.name
@@ -128,7 +127,6 @@ module projectIdentityRG '../../identity/projectIdentityRoleAssignmentRG.bicep'
 @description('Add the AD Group to the DevCenter project')
 module projectADGroup '../../identity/projectIdentityRoleAssignment.bicep' = [
   for (role, i) in identity.roleAssignments: {
-    name: 'prj-adgroup-${i}-${uniqueString(project.id, project.name)}-${dateTime}'
     scope: resourceGroup()
     params: {
       projectName: project.name
@@ -142,61 +140,41 @@ module projectADGroup '../../identity/projectIdentityRoleAssignment.bicep' = [
 @description('Configure project catalogs')
 module projectCatalogs 'projectCatalog.bicep' = [
   for (catalog, i) in catalogs: {
-    name: 'catalog-${i}-${uniqueString(project.id, catalog.name)}-${dateTime}'
     scope: resourceGroup()
     params: {
       projectName: project.name
       catalogConfig: catalog
       secretIdentifier: secretIdentifier
     }
-    dependsOn: [
-      projectIdentity
-      projectIdentityRG
-      projectADGroup
-    ]
   }
 ]
 
 @description('Configure project environment types')
 module environmentTypes 'projectEnvironmentType.bicep' = [
   for (envType, i) in projectEnvironmentTypes: {
-    name: 'env-type-${i}-${uniqueString(project.id, envType.name)}-${dateTime}'
     scope: resourceGroup()
     params: {
       projectName: project.name
       environmentConfig: envType
+      location: location
     }
-    dependsOn: [
-      projectIdentity
-      projectIdentityRG
-      projectADGroup
-      projectCatalogs
-    ]
   }
 ]
 
 @description('Connectivity configuration for the project')
 module connectivity '../../connectivity/connectivity.bicep' = {
-  name: 'connectivity-${uniqueString(project.id)}-${dateTime}'
   scope: resourceGroup()
   params: {
     devCenterName: devCenterName
     projectNetwork: projectNetwork
     logAnalyticsId: logAnalyticsId
-    location: resourceGroup().location
+    location: location
   }
-  dependsOn: [
-    projectIdentity
-    projectIdentityRG
-    projectADGroup
-    projectCatalogs
-  ]
 }
 
 @description('Configure DevBox pools for the project')
 module pools 'projectPool.bicep' = [
   for (pool, i) in projectPools: {
-    name: 'pool-${i}-${uniqueString(project.id, pool.name)}-${dateTime}'
     scope: resourceGroup()
     params: {
       name: pool.name
@@ -206,6 +184,7 @@ module pools 'projectPool.bicep' = [
       vmSku: pool.vmSku
       networkConnectionName: connectivity.outputs.networkConnectionName
       networkType: connectivity.outputs.networkType
+      location: location
     }
   }
 ]
diff --git a/src/workload/project/projectEnvironmentType.bicep b/src/workload/project/projectEnvironmentType.bicep
@@ -1,6 +1,9 @@
 @description('Project Name')
 param projectName string
 
+@description('Azure region for resource deployment')
+param location string = resourceGroup().location
+
 @description('Environment Configuration')
 param environmentConfig ProjectEnvironmentType
 
@@ -24,6 +27,7 @@ resource project 'Microsoft.DevCenter/projects@2025-10-01-preview' existing = {
 @description('Dev Center Environments')
 resource environmentType 'Microsoft.DevCenter/projects/environmentTypes@2025-10-01-preview' = {
   name: environmentConfig.name
+  location: location
   parent: project
   identity: {
     type: 'SystemAssigned'
diff --git a/src/workload/project/projectPool.bicep b/src/workload/project/projectPool.bicep
@@ -1,7 +1,7 @@
 @description('Pool Name')
 param name string
 
-@description('Location for the deployment')
+@description('Azure region for resource deployment')
 param location string = resourceGroup().location
 
 @description('The name of the catalog to use for the pool')
@@ -74,7 +74,7 @@ resource pool 'Microsoft.DevCenter/projects/pools@2025-10-01-preview' = [
       singleSignOnStatus: 'Enabled'
       displayName: name
       virtualNetworkType: networkType
-      managedVirtualNetworkRegions: (networkType == 'Managed') ? [resourceGroup().location] : []
+      managedVirtualNetworkRegions: (networkType == 'Managed') ? [location] : []
     }
   }
 ]
diff --git a/src/workload/workload.bicep b/src/workload/workload.bicep

Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`@description('Pool Name')`
`2`	`2`	`param name string`
`3`	`3`
`4`		`-@description('Location for the deployment')`
	`4`	`+@description('Azure region for resource deployment')`
`5`	`5`	`param location string = resourceGroup().location`
`6`	`6`
`7`	`7`	`@description('The name of the catalog to use for the pool')`
`@@ -74,7 +74,7 @@ resource pool 'Microsoft.DevCenter/projects/pools@2025-10-01-preview' = [`
`74`	`74`	`singleSignOnStatus: 'Enabled'`
`75`	`75`	`displayName: name`
`76`	`76`	`virtualNetworkType: networkType`
`77`		`- managedVirtualNetworkRegions: (networkType == 'Managed') ? [resourceGroup().location] : []`
	`77`	`+ managedVirtualNetworkRegions: (networkType == 'Managed') ? [location] : []`
`78`	`78`	`}`
`79`	`79`	`}`
`80`	`80`	`]`