replace mariadb with mysql

agehrig · agehrig · commit 4b6c4eba2fca · 2025-04-11T09:03:15.000+02:00
diff --git a/content/en/docs/06_azure/5-mariadb.md b/content/en/docs/06_azure/5-mariadb.md
@@ -1,5 +1,5 @@
 ---
-title: "6.5. MariaDB"
+title: "6.5. MySQL"
 weight: 65
 sectionnumber: 6.5
 onlyWhen: azure
@@ -8,7 +8,7 @@ onlyWhen: azure
 ## Step {{% param sectionnumber %}}.1: Configure AKS egress IP
 
 By default, AKS routes traffic to the internet via a (randomly assigned) Azure public IP. For some scenarios like
-our MariaDB instance, we want to whitelist the source IP to restrict access to the services.
+our MySQL instance, we want to whitelist the source IP to restrict access to the services.
 
 Add the following content below the resource `azurerm_public_ip.aks_lb_ingress` in `aks.tf`:
 ```terraform
@@ -55,58 +55,57 @@ terraform state show azurerm_public_ip.aks_lb_egress
 ```
 
 
-## Step {{% param sectionnumber %}}.2: Add a MariaDB instance
+## Step {{% param sectionnumber %}}.2: Add a MySQL instance
 
 ```mermaid
 flowchart LR
     classDef red fill:#f96
     subgraph rg: db
-        mServer(mariadb):::red --> mDb(database):::red 
+        mServer(mysql):::red --> mDb(database):::red 
         mFire(firewall):::red --> mDb
     end
 ```
 
-Create a new file named `mariadb.tf` and add the following content:
+Create a new file named `mysql.tf` and add the following content:
 ```terraform
 resource "azurerm_resource_group" "db" {
   name     = "rg-${local.infix}-db"
   location = var.location
 }
 
-resource "random_password" "mariadb" {
+resource "random_password" "mysql" {
   length  = 16
   special = false
 }
 
-resource "azurerm_mariadb_server" "demo" {
-  name                = "mdb-${local.infix}"
-  location            = azurerm_resource_group.db.location
-  resource_group_name = azurerm_resource_group.db.name
-
-  sku_name = "B_Gen5_1"
-
-  storage_mb                   = 5120
+resource "azurerm_mysql_flexible_server" "demo" {
+  name                         = "mdb-${local.infix}"
+  resource_group_name          = azurerm_resource_group.db.name
+  location                     = azurerm_resource_group.db.location
+  administrator_login          = "demo"
+  administrator_password       = random_password.mysql.result
+  sku_name                     = "B_Standard_B1s"
   backup_retention_days        = 7
   geo_redundant_backup_enabled = false
-
-  administrator_login          = "demo"
-  administrator_login_password = random_password.mariadb.result
-  version                      = "10.2"
-  ssl_enforcement_enabled      = false
+  version                      = "8.0.21"
+  
+  storage {
+    size_gb = 20
+  }
 }
 
-resource "azurerm_mariadb_database" "demo_app" {
-  name                = "demo_app"
+resource "azurerm_mysql_flexible_database" "demo_app" {
+  name                ="demo_app"
   resource_group_name = azurerm_resource_group.db.name
-  server_name         = azurerm_mariadb_server.demo.name
+  server_name         = azurerm_mysql_flexible_server.demo.name
   charset             = "utf8"
   collation           = "utf8_general_ci"
 }
 
-resource "azurerm_mariadb_firewall_rule" "lab" {
-  name                = "lab-db-rule"
+resource "azurerm_mysql_flexible_server_firewall_rule" "aks_egress_ip" {
+  name                = "aks-egress-ip"
   resource_group_name = azurerm_resource_group.db.name
-  server_name         = azurerm_mariadb_server.demo.name
+  server_name         = azurerm_mysql_flexible_server.demo.name
   start_ip_address    = azurerm_public_ip.aks_lb_egress.ip_address
   end_ip_address      = azurerm_public_ip.aks_lb_egress.ip_address
 }
@@ -115,13 +114,13 @@ resource "azurerm_mariadb_firewall_rule" "lab" {
 Create a new file named `outputs.tf` and add the following content:
 
 ```terraform
-output "mariadb_uri" {
+output "mysql_uri" {
   sensitive = true
   value     = format("mysql://%s:%s@%s/%s",
-    azurerm_mariadb_server.demo.administrator_login,
-    azurerm_mariadb_server.demo.administrator_login_password,
-    azurerm_mariadb_server.demo.fqdn,
-    azurerm_mariadb_database.demo_app.name
+    azurerm_mysql_flexible_server.demo.administrator_login,
+    azurerm_mysql_flexible_server.demo.administrator_password,
+    azurerm_mysql_flexible_server.demo.fqdn,
+    azurerm_mysql_flexible_database.demo_app.name
   )
 }
 ```
@@ -131,17 +130,17 @@ Now run
 terraform apply -var-file=config/dev.tfvars
 ```
 
-The MariaDB URI can be displayed by running:
+The MySQL URI can be displayed by running:
 ```bash
-terraform output mariadb_uri
+terraform output mysql_uri
 ```
 
 
 ### Explanation
 
-The MariaDB instance is a managed service by Azure and has a public IP. By default, no IPs are allowed to access
-the instance. The resource `azurerm_mariadb_firewall_rule.lab` adds a firewall rule to whitelist the egress IP
-of the Kubernetes AKS cluster, which allows apps deployed on the cluster to access MariaDB.
+The MySQL instance is a managed service by Azure and has a public IP. By default, no IPs are allowed to access
+the instance. The resource `azurerm_mysql_flexible_server_firewall_rule.aks_egress_ip` adds a firewall rule to whitelist the egress IP
+of the Kubernetes AKS cluster, which allows apps deployed on the cluster to access MySQL.
 
-To configure our demo app, we need to generate a MariaDB URI. The Terraform function `format` has familiar syntax to
+To configure our demo app, we need to generate a MySQL URI. The Terraform function `format` has familiar syntax to
 the GLIBC function `snprintf()` and allows better readable code.
diff --git a/content/en/docs/06_azure/6-demo-app.md b/content/en/docs/06_azure/6-demo-app.md
@@ -32,19 +32,19 @@ flowchart LR
     end
     pAc --> mFire
     subgraph rg: db
-        mServer(mariadb) --> mDb(database)
+        mServer(mysql) --> mDb(database)
         mFire(firewall) --> mDb
     end
 ```
 
 To test the setup end-to-end, we deploy an example application on Kubernetes. The app exposes a web service on port
-5000 and writes sample records to the MariaDB.
+5000 and writes sample records to the MySQL.
 
-Create a Kubernetes secret containing the MariaDB URI to be exposed as the POD environment variable `MYSQL_URI`:
+Create a Kubernetes secret containing the MySQL URI to be exposed as the POD environment variable `MYSQL_URI`:
 
 ```bash
 kubectl create namespace workload
-kubectl create secret generic mariadb-uri --namespace workload --from-literal=mariadb_uri=$(terraform output -raw mariadb_uri)
+kubectl create secret generic mysql-uri --namespace workload --from-literal=mysql_uri=$(terraform output -raw mysql_uri)
 ```
 
 Create a new file named `tests/workload.yaml` and add the following content:
@@ -69,8 +69,8 @@ spec:
       - name: MYSQL_URI
         valueFrom:
           secretKeyRef:
-            name: mariadb-uri
-            key: mariadb_uri
+            name: mysql-uri
+            key: mysql_uri
 
 ---
 
@@ -126,7 +126,7 @@ kubectl apply -f tests/workload.yaml
 
 The application is now accessible via web browser at https://workload.YOUR_USERNAME.mobi.terraform-lab.cloud
 
-To verify the application is connected to the MariaDB, run the following command to inspec the log files:
+To verify the application is connected to the MySQL, run the following command to inspec the log files:
 ```bash
 kubectl logs -n workload example | head
 ```
diff --git a/content/en/docs/06_azure/_index.md b/content/en/docs/06_azure/_index.md
@@ -21,7 +21,7 @@ Main components:
 * Static IP + DNS A record
 * Load balancer (Layer 4) + Kubernetes Ingress Controller (NGINX)
 * SSL Cert Manager
-* MariaDB
+* MySQL
 
 
 ### Diagram
