Azure
/
Azure-AppServices-Diagnostics
зеркало из https://github.com/Azure/Azure-AppServices-Diagnostics.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность

Add working ARM templates to enable monitoring on RuntimeHost and CompilerHost Web Apps (#251)

This commit is contained in:
Daniel Grooms 2019-09-23 15:37:25 -07:00 коммит произвёл GitHub
Родитель 6cf5429d9c
Коммит 1b5b81cd26
Не найден ключ, соответствующий данной подписи
Идентификатор ключа GPG: 4AEE18F83AFDEB23
4 изменённых файлов: 472 добавлений и 0 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

335
infrastructure/ArmTemplates/antareskvtemplate.json Normal file
Просмотреть файл

@ -0,0 +1,335 @@
{
"$schema": "http://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#",
"contentVersion": "1.0.0.0",
"parameters": {
"subscriptionId": {
"type": "string",
"metadata": {
"description": "The ID of the subscription the Azure App Service Plan belongs to."
}
},
"appServicePlanResourceGroup": {
"type": "string",
"metadata": {
"description": "The name of the resource group the Azure App Service Plan belongs to."
}
},
"appServicePlanName": {
"type": "string",
"metadata": {
"description": "The name of Azure App Service Plan this web app belongs to."
}
},
"sku": {
"type": "string",
"allowedValues": [
"F1",
"D1",
"B1",
"B2",
"B3",
"S1",
"S2",
"S3",
"P1",
"P2",
"P3",
"P4"
],
"defaultValue": "S1",
"metadata": {
"description": "The pricing tier for the Azure App Service Plan."
}
},
"workerSize": {
"type": "string",
"allowedValues": [
"0",
"1",
"2"
],
"defaultValue": "0",
"metadata": {
"description": "The instance size of the Azure App Service Plan (small, medium, or large)."
}
},
"siteName": {
"type": "string",
"metadata": {
"description": "The name of the web app."
}
},
"alwaysOn": {
"type": "bool",
"defaultValue": true,
"metadata": {
"description": "Whether the web app should remain loaded after 20 minutes of inactivity."
}
},
"genevaCertContent": {
"type": "securestring",
"metadata": {
"description": "The PFX to be put in the AntMDS certificate store to be used to decrypt the encrypted storage account key and authenticate to MDM."
}
},
"monitoringTenant": {
"type": "string",
"metadata": {
"description": "Sets the MONITORING_TENANT environment variable "
}
},
"monitoringRole": {
"type": "string",
"metadata": {
"description": "Sets the MONITORING_ROLE environment variable"
}
},
"monitoringGcsEnvironment": {
"type": "string",
"allowedValues": [
"Diagnostics Prod",
"Test",
"Stage",
"FirstPartyProd",
"BillingProd",
"ExternalProd",
"CA BlackForest",
"CA Fairfax",
"CA Mooncake"
],
"metadata": {
"description": "The endpoint for your Geneva Account. Sets the MONITORING_GCS_ENVIRONMENT environment variable."
}
},
"monitoringGcsAccount": {
"type": "string",
"metadata": {
"description": "Sets the MONITORING_GCS_ACCOUNT environment variable."
}
},
"monitoringGcsNamespace": {
"type": "string",
"metadata": {
"description": "Sets the MONITORING_GCS_NAMESPACE environment variable"
}
},
"monitoringGcsAuthId": {
"type": "string",
"metadata": {
"description": "Sets the MONITORING_GCS_AUTH_ID environment variable."
}
},
"monitoringConfigVersion": {
"type": "string",
"metadata": {
"description": "Sets the MONITORING_CONFIG_VERSION environment variable."
}
}
},
"variables": {
"siteLocation": "[resourceGroup().location]",
"configJson": {
"MONITORING_TENANT": "[parameters('monitoringTenant')]",
"MONITORING_ROLE": "[parameters('monitoringRole')]",
"MONITORING_XSTORE_ACCOUNTS": "GCSPlaceholder",
"AdditionalEnvironmentVariables": [
{
"Key": "DATACENTER",
"Value": "[variables('siteLocation')]"
},
{
"Key": "MONITORING_GCS_ENVIRONMENT",
"Value": "[parameters('monitoringGcsEnvironment')]"
},
{
"Key": "MONITORING_GCS_ACCOUNT",
"Value": "[parameters('monitoringGcsAccount')]"
},
{
"Key": "MONITORING_GCS_NAMESPACE",
"Value": "[parameters('monitoringGcsNamespace')]"
},
{
"Key": "MONITORING_GCS_REGION",
"Value": "[variables('siteLocation')]"
},
{
"Key": "MONITORING_GCS_AUTH_ID",
"Value": "[parameters('monitoringGcsAuthId')]"
},
{
"Key": "MONITORING_GCS_AUTH_ID_TYPE",
"Value": "AuthKeyVault"
},
{
"Key": "MONITORING_CONFIG_VERSION",
"Value": "[parameters('monitoringConfigVersion')]"
},
{
"Key": "MONITORING_USE_GENEVA_CONFIG_SERVICE",
"Value": "true"
}
]
},
"configXml": "<MonitoringManagement eventVersion=\"1\" version=\"1.0\" timestamp=\"2017-12-29T00:00:00Z\" namespace=\"PlaceHolder\"></MonitoringManagement>"
},
"resources": [
{
"comments": "Defines an Azure App Service Plan.",
"type": "Microsoft.Web/serverfarms",
"name": "[parameters('appServicePlanName')]",
"apiVersion": "2015-08-01",
"location": "[variables('siteLocation')]",
"sku": {
"name": "[parameters('sku')]",
"capacity": "[parameters('workerSize')]"
},
"properties": {
"name": "[parameters('appServicePlanName')]"
}
},
{
"comments": "Defines an Azure Web App integrated with Geneva.",
"type": "Microsoft.Web/sites",
"name": "[parameters('siteName')]",
"apiVersion": "2015-08-01",
"location": "[variables('siteLocation')]",
"dependsOn": [
"[resourceId('Microsoft.Web/serverfarms', parameters('appServicePlanName'))]"
],
"tags": {
"[concat('hidden-related:', resourceGroup().id, '/providers/Microsoft.Web/serverfarms/', parameters('appServicePlanName'))]": "empty"
},
"properties": {
"sourcePlatform": "Unknown",
"targetPlatform" : "Unknown",
"serverFarmId": "[concat('/subscriptions/', parameters('subscriptionId'),'/resourcegroups/', parameters('appServicePlanResourceGroup'), '/providers/Microsoft.Web/serverfarms/', parameters('appServicePlanName'))]",
"siteConfig": {
"phpVersion": "off",
"scmType": null,
"netFrameworkVersion": "v4.0",
"use32BitWorkerProcess": false,
"webSocketsEnabled": false,
"alwaysOn": "[parameters('alwaysOn')]",
"httpLoggingEnabled": true,
"logsDirectorySizeLimit": 50,
"appSettings": [
{
"Name": "WEBSITE_FIRST_PARTY_ID",
"Value": "AntMDS"
},
{
"Name": "WEBSITE_NODE_DEFAULT_VERSION",
"Value": "6.7.0"
}
]
}
},
"resources": [
{
"comments": "Defines an Azure Web App slot.",
"type": "slots",
"name": "staging",
"apiVersion": "2015-08-01",
"location": "[variables('siteLocation')]",
"dependsOn": [
"[resourceId('Microsoft.Web/sites', parameters('siteName'))]"
],
"tags": {
"[concat('hidden-related:', resourceGroup().id, '/providers/Microsoft.Web/serverfarms/', parameters('appServicePlanName'))]": "empty"
},
"properties": {
"serverFarmId": "[concat('/subscriptions/', parameters('subscriptionId'),'/resourcegroups/', parameters('appServicePlanResourceGroup'), '/providers/Microsoft.Web/serverfarms/', parameters('appServicePlanName'))]",
"siteConfig": {
"phpVersion": "off",
"scmType": "LocalGit",
"netFrameworkVersion": "v4.0",
"use32BitWorkerProcess": false,
"webSocketsEnabled": false,
"alwaysOn": false,
"httpLoggingEnabled": true,
"logsDirectorySizeLimit": 50,
"appSettings": [
{
"Name": "WEBSITE_FIRST_PARTY_ID",
"Value": "AntMDS"
}
]
}
}
},
{
"comments": "Defines how the Geneva Monitoring Agent should be configured.",
"type": "Microsoft.Web/serverfarms/firstPartyApps/settings",
"name": "[concat(parameters('appServicePlanName'), '/AntMDS/ConfigJson')]",
"apiVersion": "2015-08-01",
"location": "[variables('siteLocation')]",
"dependsOn": [
"[resourceId('Microsoft.Web/serverfarms', parameters('appServicePlanName'))]",
"[resourceId('Microsoft.Web/sites', parameters('siteName'))]"
],
"properties": {
"firstPartyId": "AntMDS",
"settingName": "ConfigJson",
"settingValue": "[string(variables('configJson'))]"
}
},
{
"comments": "Defines what events the Geneva Monitoring Agent should upload. This should be a placeholder configuration for services using GCS.",
"type": "Microsoft.Web/serverfarms/firstPartyApps/settings",
"name": "[concat(parameters('appServicePlanName'), '/AntMDS/MdsConfigXml')]",
"apiVersion": "2015-08-01",
"location": "[variables('siteLocation')]",
"dependsOn": [
"[resourceId('Microsoft.Web/serverfarms', parameters('appServicePlanName'))]",
"[resourceId('Microsoft.Web/sites', parameters('siteName'))]"
],
"properties": {
"firstPartyId": "AntMDS",
"settingName": "MdsConfigXml",
"settingValue": "[variables('configXml')]"
}
},
{
"type": "Microsoft.Web/serverfarms/firstPartyApps/settings",
"name": "[concat(parameters('appServicePlanName'), '/AntMDS/CERTIFICATE_PFX_GENEVACERT')]",
"apiVersion": "2015-08-01",
"location": "[variables('siteLocation')]",
"dependsOn": [
"[resourceId('Microsoft.Web/serverfarms', parameters('appServicePlanName'))]",
"[resourceId('Microsoft.Web/sites', parameters('siteName'))]"
],
"properties": {
"firstPartyId": "AntMDS",
"settingName": "CERTIFICATE_PFX_GENEVACERT",
"settingValue": "[parameters('genevaCertContent')]"
}
},
{
"type": "Microsoft.Web/serverfarms/firstPartyApps/settings",
"name": "[concat(parameters('appServicePlanName'), '/AntMDS/CERTIFICATE_PASSWORD_GENEVACERT')]",
"apiVersion": "2015-08-01",
"location": "[variables('siteLocation')]",
"dependsOn": [
"[resourceId('Microsoft.Web/serverfarms', parameters('appServicePlanName'))]",
"[resourceId('Microsoft.Web/sites', parameters('siteName'))]"
],
"properties": {
"firstPartyId": "AntMDS",
"settingName": "CERTIFICATE_PASSWORD_GENEVACERT",
"settingValue": ""
}
}
]
}
],
"outputs": {
"jsonconfig": {
"type": "object",
"value": "[variables('configJson')]"
}
}
}

53
infrastructure/ArmTemplates/compilerhost-antareskvparameters.json Normal file
Просмотреть файл

@ -0,0 +1,53 @@
{
"$schema": "http://schema.management.azure.com/schemas/2015-01-01/deploymentParameters.json",
"contentVersion": "1.0.0.0",
"parameters": {
"subscriptionId": {
"value": "0e7b3183-4428-4c1f-93cd-cb2a26616a8a"
},
"appServicePlanResourceGroup": {
"value": "CompilerHost-RG"
},
"appServicePlanName": {
"value": "CompilerHost-ASP-BAY-001"
},
"sku": {
"value": "S1"
},
"workerSize": {
"value": "0"
},
"siteName": {
"value": "diag-compilerhost-prod-bay-001"
},
"genevaCertContent": {
"reference": {
"keyVault": {
"id": "/subscriptions/0e7b3183-4428-4c1f-93cd-cb2a26616a8a/resourceGroups/AppServiceDiagnosticsResources/providers/Microsoft.KeyVault/vaults/AppServiceDiagnosticsKV"
},
"secretName": "AppServiceDiagnosticsLogging"
}
},
"monitoringGcsAuthId": {
"value": "diag-logging-sample.azurewebsites.net.geneva.keyvault.diag-logging-sample.azurewebsites.net"
},
"monitoringTenant": {
"value": "GSMonAntares"
},
"monitoringRole": {
"value": "DiagWebAppWarm"
},
"monitoringGcsEnvironment": {
"value": "Diagnostics Prod"
},
"monitoringGcsAccount": {
"value": "DiagWebAppWarm"
},
"monitoringGcsNamespace": {
"value": "WebAppWarmWUS"
},
"monitoringConfigVersion": {
"value": "1.0"
}
}
}

53
infrastructure/ArmTemplates/runtimehost-antareskvparameters.json Normal file
Просмотреть файл

@ -0,0 +1,53 @@
{
"$schema": "http://schema.management.azure.com/schemas/2015-01-01/deploymentParameters.json",
"contentVersion": "1.0.0.0",
"parameters": {
"subscriptionId": {
"value": "0e7b3183-4428-4c1f-93cd-cb2a26616a8a"
},
"appServicePlanResourceGroup": {
"value": "RuntimeHost-RG"
},
"appServicePlanName": {
"value": "RuntimeHost-ASP-BAY-001"
},
"sku": {
"value": "S1"
},
"workerSize": {
"value": "0"
},
"siteName": {
"value": "diag-runtimehost-prod-bay-001"
},
"genevaCertContent": {
"reference": {
"keyVault": {
"id": "/subscriptions/0e7b3183-4428-4c1f-93cd-cb2a26616a8a/resourceGroups/AppServiceDiagnosticsResources/providers/Microsoft.KeyVault/vaults/AppServiceDiagnosticsKV"
},
"secretName": "AppServiceDiagnosticsLogging"
}
},
"monitoringGcsAuthId": {
"value": "diag-logging-sample.azurewebsites.net.geneva.keyvault.diag-logging-sample.azurewebsites.net"
},
"monitoringTenant": {
"value": "GSMonAntares"
},
"monitoringRole": {
"value": "DiagWebAppWarm"
},
"monitoringGcsEnvironment": {
"value": "Diagnostics Prod"
},
"monitoringGcsAccount": {
"value": "DiagWebAppWarm"
},
"monitoringGcsNamespace": {
"value": "WebAppWarmWUS"
},
"monitoringConfigVersion": {
"value": "1.0"
}
}
}

31
infrastructure/README.md Normal file
Просмотреть файл

@ -0,0 +1,31 @@
## Intent
The goal of this deployment folder is to fully automate the infrastructure of the App Service Diagnostics application.
This will make it trivial to create the resources needed to deploy ASD into new clouds.
ARM templates also control Geneva configuration upgrades.
#### Note
Currently these deployments only work in the Azure Portal Powershell terminal
## Commands
To deploy an ARM template from Powershell:
- Get portal access for the Diag Production WebApp subscription
- Find the subscription on Azure Portal
- Upload the template and parameter files from this directory to the Portal terminal
- `cd` to the uploaded directory
- Enter the following commands in the Portal Powershell terminal
```PS
Select-AzureRmSubscription `
-SubscriptionId "..."
New-AzureRmResourceGroupDeployment `
-ResourceGroupName "..." `
-TemplateFile ".\antareskvtemplate.json" `
-TemplateParameterFile ".\{appname}-antareskvparameters.json"
```
Useful command to get current settings:
```PS
Get-AzureRmResourceGroupDeployment -ResourceGroupName "..."
```