az-hop/bicep/vm.bicep

targetScope = 'resourceGroup'

param name string
param vm object
param image object
param location string
param resourcePostfix string = '${uniqueString(subscription().subscriptionId, resourceGroup().id)}x'
param subnetId string
param adminUser string
@secure()
param adminPassword string
@secure()
param adminSshPublicKey string
param asgIds object

resource publicIp 'Microsoft.Network/publicIPAddresses@2022-07-01' = if (contains(vm, 'pip') && vm.pip) {
  name: '${name}-pip'
  location: location
  sku: {
    name: 'Standard'
  }
  properties: {
    publicIPAllocationMethod: 'Static'
    publicIPAddressVersion: 'IPv4'
    idleTimeoutInMinutes: 4
    dnsSettings: {
      domainNameLabel : '${name}${resourcePostfix}'
    }
  }
}

// var count = contains(vm, 'count') && vm.count > 1 ? vm.count : 1
// var vmPrefixes = [ for i in range(0, count): count > 1 ? '-${(i + 1)}' : '' ]

resource nic 'Microsoft.Network/networkInterfaces@2022-07-01' = {
  name: '${name}-nic'
  location: location
  properties: {
    ipConfigurations: [
      {
        name: '${name}-ipconfig'
        properties: union(
          {
            applicationSecurityGroups: map(vm.asgs, asg => { id: asgIds[asg] })
            subnet: {
              id: subnetId
            }
            privateIPAllocationMethod: 'Dynamic'
          }, contains(vm, 'pip') && vm.pip ? {
            publicIpAddress: {
              id: publicIp.id
            }
          } : {}
        )
      }
    ]
  }
}

var datadisks = contains(vm, 'datadisks') ? vm.datadisks : []

resource virtualMachine 'Microsoft.Compute/virtualMachines@2022-11-01' = {
  name: name
  location: location
  plan: contains(image, 'plan') && empty(image.plan) == false ? {
    publisher: split(image.plan,':')[0]
    product: split(image.plan,':')[1]
    name: split(image.plan,':')[2]
  } : null
  identity: {
    type: 'SystemAssigned'
  }
  properties: {
    hardwareProfile: {
      vmSize: vm.sku
    }
    storageProfile: {
      dataDisks: [ for (disk, idx) in datadisks: union({
        name: disk.name
        managedDisk: {
          storageAccountType: disk.disksku
        }
        lun: idx
        createOption: disk.createOption
        },
        disk.createOption == 'FromImage' ? {} : {diskSizeGB: disk.size},
        contains(disk, 'caching') ? {
          caching: disk.caching
        } : {}
      )]
      osDisk: union(
        {
          createOption: 'FromImage'
          managedDisk: {
            storageAccountType: vm.osdisksku
          }
          caching: 'ReadWrite'
        }, contains(vm, 'osdisksize') ? {
          diskSizeGB: vm.osdisksize
        } : {}
      )
      imageReference: image.ref
    }
    networkProfile: {
      networkInterfaces: [
        {
          id: nic.id
        }
      ]
    }
    osProfile: union(
      {
        computerName: name
        adminUsername: adminUser
      }, contains(vm, 'deploy_script') && vm.deploy_script != '' ? { // deploy script not empty
        customData: base64(vm.deploy_script)
      } : {}, contains(vm, 'windows') && vm.windows == true ? { // windows
        adminPassword: adminPassword
        windowsConfiguration: {
          winRM: {
            listeners: [
              {
                protocol: 'Http'
              }
            ]
          }
        }
      } : {}, ! contains(vm, 'windows') || vm.windows == false ? { // linux
        linuxConfiguration: {
          disablePasswordAuthentication: true
          ssh: {
            publicKeys: [
              {
                path: '/home/${adminUser}/.ssh/authorized_keys'
                keyData: adminSshPublicKey
              }
            ]
          }
        }
      } : {}, contains(vm, 'ahub') && vm.ahub == true ? { // ahub
        licenseType: 'Windows_Server'
      } : {}
    )
  }
}

//output private_ip string = nic.properties.ipConfigurations[0].properties.privateIPAddress
output fqdn string = contains(vm, 'pip') && vm.pip ? publicIp.properties.dnsSettings.fqdn : ''
output publicIp string = contains(vm, 'pip') && vm.pip ? publicIp.properties.ipAddress : ''
output privateIp string = nic.properties.ipConfigurations[0].properties.privateIPAddress
output principalId string = virtualMachine.identity.principalId
//output privateIps array = [ for i in range(0, count): nic[i].properties.ipConfigurations[0].properties.privateIPAddress ]
//output principalIds array = [ for i in range(0, count): virtualMachine[i].identity.principalId ]
start of vm module 2022-12-15 21:05:12 +03:00			`targetScope = 'resourceGroup'`

latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`param name string`
			`param vm object`
			`param image object`
Updates for arm-tkk - still more to do 2023-05-10 18:41:46 +03:00			`param location string`
start of vm module 2022-12-15 21:05:12 +03:00			`param resourcePostfix string = '${uniqueString(subscription().subscriptionId, resourceGroup().id)}x'`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`param subnetId string`
			`param adminUser string`
			`@secure()`
Fixes to remove any secrets from logs in portal 2023-05-31 17:25:32 +03:00			`param adminPassword string`
			`@secure()`
			`param adminSshPublicKey string`
working - but now needing to merge with main 2023-01-13 14:21:57 +03:00			`param asgIds object`
start of vm module 2022-12-15 21:05:12 +03:00
Updates for arm-tkk - still more to do 2023-05-10 18:41:46 +03:00			`resource publicIp 'Microsoft.Network/publicIPAddresses@2022-07-01' = if (contains(vm, 'pip') && vm.pip) {`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`name: '${name}-pip'`
start of vm module 2022-12-15 21:05:12 +03:00			`location: location`
			`sku: {`
public IP for CycleCloud if OnDemand is not deployed (#1836) * add pip to cycle when ondemand is not deployed * automatic branch retrieval 2024-02-13 20:01:50 +03:00			`name: 'Standard'`
start of vm module 2022-12-15 21:05:12 +03:00			`}`
			`properties: {`
public IP static 2023-05-04 13:24:50 +03:00			`publicIPAllocationMethod: 'Static'`
start of vm module 2022-12-15 21:05:12 +03:00			`publicIPAddressVersion: 'IPv4'`
			`idleTimeoutInMinutes: 4`
			`dnsSettings: {`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`domainNameLabel : '${name}${resourcePostfix}'`
start of vm module 2022-12-15 21:05:12 +03:00			`}`
			`}`
			`}`

single VM module 2023-02-13 20:07:46 +03:00			`// var count = contains(vm, 'count') && vm.count > 1 ? vm.count : 1`
			`// var vmPrefixes = [ for i in range(0, count): count > 1 ? '-${(i + 1)}' : '' ]`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00
Updates for arm-tkk - still more to do 2023-05-10 18:41:46 +03:00			`resource nic 'Microsoft.Network/networkInterfaces@2022-07-01' = {`
single VM module 2023-02-13 20:07:46 +03:00			`name: '${name}-nic'`
start of vm module 2022-12-15 21:05:12 +03:00			`location: location`
			`properties: {`
			`ipConfigurations: [`
			`{`
single VM module 2023-02-13 20:07:46 +03:00			`name: '${name}-ipconfig'`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`properties: union(`
			`{`
working - but now needing to merge with main 2023-01-13 14:21:57 +03:00			`applicationSecurityGroups: map(vm.asgs, asg => { id: asgIds[asg] })`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`subnet: {`
			`id: subnetId`
			`}`
			`privateIPAllocationMethod: 'Dynamic'`
			`}, contains(vm, 'pip') && vm.pip ? {`
fix public Ip 2023-03-28 13:01:09 +03:00			`publicIpAddress: {`
			`id: publicIp.id`
			`}`
start of vm module 2022-12-15 21:05:12 +03:00			`} : {}`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`)`
start of vm module 2022-12-15 21:05:12 +03:00			`}`
			`]`
			`}`
single VM module 2023-02-13 20:07:46 +03:00			`}`
start of vm module 2022-12-15 21:05:12 +03:00
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`var datadisks = contains(vm, 'datadisks') ? vm.datadisks : []`
start of vm module 2022-12-15 21:05:12 +03:00
Updates for arm-tkk - still more to do 2023-05-10 18:41:46 +03:00			`resource virtualMachine 'Microsoft.Compute/virtualMachines@2022-11-01' = {`
single VM module 2023-02-13 20:07:46 +03:00			`name: name`
start of vm module 2022-12-15 21:05:12 +03:00			`location: location`
all params from config.yml 2023-02-06 13:14:05 +03:00			`plan: contains(image, 'plan') && empty(image.plan) == false ? {`
			`publisher: split(image.plan,':')[0]`
			`product: split(image.plan,':')[1]`
			`name: split(image.plan,':')[2]`
start of vm module 2022-12-15 21:05:12 +03:00			`} : null`
use SMI 2023-02-09 20:49:11 +03:00			`identity: {`
			`type: 'SystemAssigned'`
			`}`
start of vm module 2022-12-15 21:05:12 +03:00			`properties: {`
			`hardwareProfile: {`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`vmSize: vm.sku`
start of vm module 2022-12-15 21:05:12 +03:00			`}`
			`storageProfile: {`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`dataDisks: [ for (disk, idx) in datadisks: union({`
start of vm module 2022-12-15 21:05:12 +03:00			`name: disk.name`
			`managedDisk: {`
			`storageAccountType: disk.disksku`
			`}`
			`lun: idx`
Support CycleCloud marketplace image for ccportal (#1747) * image with datadisk attached * flag to install CC RPMs 2023-10-18 18:35:18 +03:00			`createOption: disk.createOption`
			`},`
			`disk.createOption == 'FromImage' ? {} : {diskSizeGB: disk.size},`
			`contains(disk, 'caching') ? {`
			`caching: disk.caching`
			`} : {}`
start of vm module 2022-12-15 21:05:12 +03:00			`)]`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`osDisk: union(`
			`{`
			`createOption: 'FromImage'`
			`managedDisk: {`
			`storageAccountType: vm.osdisksku`
			`}`
			`caching: 'ReadWrite'`
			`}, contains(vm, 'osdisksize') ? {`
			`diskSizeGB: vm.osdisksize`
			`} : {}`
start of vm module 2022-12-15 21:05:12 +03:00			`)`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`imageReference: image.ref`
start of vm module 2022-12-15 21:05:12 +03:00			`}`
			`networkProfile: {`
			`networkInterfaces: [`
			`{`
single VM module 2023-02-13 20:07:46 +03:00			`id: nic.id`
start of vm module 2022-12-15 21:05:12 +03:00			`}`
			`]`
			`}`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`osProfile: union(`
			`{`
single VM module 2023-02-13 20:07:46 +03:00			`computerName: name`
			`adminUsername: adminUser`
don't create custom-data when empty (#1860) 2024-02-26 16:55:46 +03:00			`}, contains(vm, 'deploy_script') && vm.deploy_script != '' ? { // deploy script not empty`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`customData: base64(vm.deploy_script)`
			`} : {}, contains(vm, 'windows') && vm.windows == true ? { // windows`
Fixes to remove any secrets from logs in portal 2023-05-31 17:25:32 +03:00			`adminPassword: adminPassword`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`windowsConfiguration: {`
			`winRM: {`
			`listeners: [`
			`{`
			`protocol: 'Http'`
			`}`
			`]`
			`}`
			`}`
			`} : {}, ! contains(vm, 'windows') \|\| vm.windows == false ? { // linux`
			`linuxConfiguration: {`
			`disablePasswordAuthentication: true`
			`ssh: {`
			`publicKeys: [`
			`{`
			`path: '/home/${adminUser}/.ssh/authorized_keys'`
Fixes to remove any secrets from logs in portal 2023-05-31 17:25:32 +03:00			`keyData: adminSshPublicKey`
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`}`
			`]`
			`}`
			`}`
			`} : {}, contains(vm, 'ahub') && vm.ahub == true ? { // ahub`
			`licenseType: 'Windows_Server'`
			`} : {}`
			`)`
start of vm module 2022-12-15 21:05:12 +03:00			`}`
single VM module 2023-02-13 20:07:46 +03:00			`}`
start of vm module 2022-12-15 21:05:12 +03:00
latest pure bicep updates - vms creating 2023-01-06 20:59:37 +03:00			`//output private_ip string = nic.properties.ipConfigurations[0].properties.privateIPAddress`
			`output fqdn string = contains(vm, 'pip') && vm.pip ? publicIp.properties.dnsSettings.fqdn : ''`
configure ssh tunnel public IP 2023-06-26 16:41:26 +03:00			`output publicIp string = contains(vm, 'pip') && vm.pip ? publicIp.properties.ipAddress : ''`
single VM module 2023-02-13 20:07:46 +03:00			`output privateIp string = nic.properties.ipConfigurations[0].properties.privateIPAddress`
			`output principalId string = virtualMachine.identity.principalId`
			`//output privateIps array = [ for i in range(0, count): nic[i].properties.ipConfigurations[0].properties.privateIPAddress ]`
			`//output principalIds array = [ for i in range(0, count): virtualMachine[i].identity.principalId ]`