Azure
/
devops-governance
зеркало из https://github.com/Azure/devops-governance.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
devops-governance/CHANGELOG.md

6.7 KiB
Исходник Постоянная ссылка Ответственный История

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

0.4.0 (2022-01-27)

Features

  • aad: add owners to application objects #49 (712e236)
  • azuread-provider: upgrade to v2 #49 (fd7a1e6)
  • ci-cd: enable automation for multiple environments (#27) (54fb1ce)
  • devops: mask tenant and user principal ids (c8b43c9)
  • pipelines: more debugging output, update docs (#42) (c02d2d0)
  • terraform: enable local deployment, closes #35 (#44) (7322197)

Bug Fixes

  • pipeline: load kv based on branch in scheduled drift detection (#31) (65f7bb4)
  • pipeline: scheduled drift detection (#28) (3e4906b)
  • pipeline-debug: backticks in bash is command substitution (#32) (f5c5002)
  • pipelines: readonly property does not exist for var groups (#43) (1582aff)
  • pipelines: remove broken bash step, clean up vars (#39) (7ba5c65)
  • pipelines: var group conditioal must use compile time syntax (#40) (8045ea4)

0.3.0 (2021-06-14)

Features

  • concept: remove drafts, link to now published official AAC and CAF docs, closes #24 (d2f14b2)
  • docs-terraform: update for clarity (16cd300)
  • naming: clean up variable name and output schema, improve conventions (fcff295)
  • terraform: default to local backend for lower barrier to entry (2a2ab95)
  • terraform: simplify for single plan and deploy, use Key Vault RBAC instead of access policies #22 (c2d3d95)

Bug Fixes

  • ado permissions errors by specifying dependency, closes #24 (f4c68eb)

0.2.0 (2021-03-19)

Updates and Fixes

  • concept: update and newer end-to-end overview graphic (ee1167a)
  • permissions: use admin aad group for project admins (#7) (c0bece4)
  • roles: introduce 3rd AAD group for total devs, admins, and all, #12 (02524a6)

0.1.0 (2020-12-02)

Initial Release

Governance Model

  • Azure AD (AAD)
    • create demo AAD groups used for RBAC across ARM and Azure DevOps
  • Azure Resource Manager (ARM)
    • Deploys different deployment environments to different Resource Groups (for convenience. See README.md for details.)
  • Azure DevOps (AzDO)
    • Bootstrap organization with projects
    • Setup Service Connections
    • Apply RBAC

Sample Project Features

  • Includes Azure Pipelines
    • Terraform code quality checks
    • automated and scheduled configuration drift detection - results are posted to GitHub Pull Requests.
    • automated deployments
  • Documentation with detailed explanations:

Linked Git Commits

Note: initial release did not follow strictly to conventional commits standard. Those that did are left here for reference.

  • aad-groups: for demo org team structure (314f52c)
  • azure-devops: create projects and respective service connections to ARM resources (7c1f8d9)
  • rbac: key vault data plane access example (455a5df)
  • setup: setup.azcli for blob account for terraform statefile, #1 (5afe3ee)