Merge pull request #57 from quortex/feature/azure

moisecahu · web-flow · commit 7d93a8dd0b05 · 2023-03-13T17:38:14.000+01:00
add script azure
diff --git a/README.md b/README.md
@@ -149,6 +149,31 @@ Available options :
 
 ---
 
+## init_tf_backend_azure
+
+Provision the resources needed to store terraform states on AZURE.
+
+A container on Azure Storage Account will be created. State locking is support by default.
+### Usage
+
+```
+Usage : ./init_tf_backend_azure.sh -n NAME [options]
+
+Mandatory arguments :
+    -n NAME      Set the name of created resources.
+Available options :
+    -r          The name of the region (default $REGION).
+    -s          The name of the subscription.
+    -rg         The name of Ressource Group (default $RESOURCE_GROUP_NAME).
+    -st         The name of Storage Account.
+    -ct         The name of Container.
+    -h           Display this help.
+
+
+If you have probleme with write access of state, go to portal.azure.com and assign you the rights "Storage Blob Data Owner" to the subscription or on the storage account.
+
+---
+
 ## get_cluster_config
 
 Compute a cluster Config from a given ServiceAccount.
diff --git a/init_tf_backend_aws.sh b/init_tf_backend_aws.sh
@@ -23,7 +23,7 @@ Usage : $0 -n NAME [options]
 Mandatory arguments :
     -n NAME      Set the name of created resources.
 Available options :
-    -r REGION                   Specify the region in which to create the resources.
+    -r REGION                   Specify the region in which to create the resources (default $REGION).
     -p PREFIXED                 Whether to prefix the name with "<ACCOUNT ID>-tfstate-" (default $PREFIXED)
     -b BLOCK_PUBLIC_ACCESS      Whether to block public access for s3 bucket (default $BLOCK_PUBLIC_ACCESS)
     -y                          Execute script in non interactive mode.
diff --git a/init_tf_backend_azure.sh b/init_tf_backend_azure.sh
@@ -0,0 +1,89 @@
+#!/bin/bash
+#
+# The purpose of this script is to provision the resources needed to store
+# terraform states on AZURE. It will provision a container on Azure Storage account as well as a
+# container to support state locking and consistency checking.
+#
+# Official documentation about terraform state in Azure Storage Account =>
+# https://developer.hashicorp.com/terraform/language/settings/backends/azurerm
+# Bash strict mode
+set -euo pipefail
+
+REGION=westeurope
+NAME=
+RESOURCE_GROUP_NAME=administration
+SUBSCRIPTION=
+
+function help() {
+    cat <<EOF
+Provision the resources needed to store terraform states on Azure.
+A storage account is created and container for store state.
+Usage : $0 -n NAME [options]
+
+Mandatory arguments :
+    -n NAME      Set the name of created resources.
+Available options :
+    -r          The name of the region (default $REGION).
+    -s          The name of the subscription.
+    -rg         The name of Ressource Group (default $RESOURCE_GROUP_NAME).
+    -st         The name of Storage Account.
+    -ct         The name of Container.
+    -h           Display this help.
+EOF
+}
+
+while getopts "n:s:r:h:rg:st:ct" opt; do
+    case "$opt" in
+    h)
+        help
+        exit 0
+        ;;
+    r)
+        REGION=$OPTARG
+        ;;
+    n)
+        NAME=$OPTARG
+        ;;
+    rg)
+        RESOURCE_GROUP_NAME=$OPTARG
+        ;;
+    st) 
+        STORAGE_ACCOUNT_NAME=$OPTARG
+        ;;
+    ct)
+        CONTAINER_NAME=$OPTARG
+        ;;
+    s)
+        SUBSCRIPTION=$OPTARG
+        ;;
+
+    esac
+done
+
+if [ "$NAME" == "" ]; then
+    echo "Name was not specified, aborting !"
+    exit 1
+fi
+
+if [ "$SUBSCRIPTION" == "" ]; then
+    echo "Subscription not specified, the subscription is the default sub of the account."
+    SUBSCRIPTION=$(az account list --query "[?isDefault].id | [0]" -o tsv)
+fi
+
+#Set var with name input
+STORAGE_ACCOUNT_NAME=${NAME}staccount
+CONTAINER_NAME=tfstate${STORAGE_ACCOUNT_NAME}
+
+export AZURE_extension_use_dynamic_install=yes_without_prompt
+user=$(az ad signed-in-user show --query userPrincipalName --output tsv)
+
+# Create Storage Account
+echo "Creating storage account : ${RESOURCE_GROUP_NAME}"
+res=$(az storage account create --resource-group $RESOURCE_GROUP_NAME --name $STORAGE_ACCOUNT_NAME --sku Standard_LRS --encryption-services blob)
+
+echo "Creating Storage Account : ${RESOURCE_GROUP_NAME}"
+# Create Storage Account Container
+res=$(az storage container create --name $CONTAINER_NAME --account-name $STORAGE_ACCOUNT_NAME --auth-mode login)
+
+echo "storage_account_name: $STORAGE_ACCOUNT_NAME"
+echo "container_name: $CONTAINER_NAME"
