AzureTRE/devops/scripts/check_dependencies.sh

#!/bin/bash
set -o errexit
set -o pipefail
set -o nounset
# Uncomment this line to see each command for debugging (careful: this will show secrets!)
# set -o xtrace

# Get the directory that this script is in
DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" >/dev/null 2>&1 && pwd )"

echo -e "\n\e[34m╔══════════════════════════════════════╗"
echo -e "║          \e[33mAzure TRE Makefile\e[34m          ║"
echo -e "╚══════════════════════════════════════╝"

echo -e "\n\e[34m»»» ✅ \e[96mChecking pre-reqs\e[0m..."

echo -e "\n\e[96mChecking for Azure CLI\e[0m..."
if ! command -v az &> /dev/null; then
  echo -e "\e[31m»»» ⚠️ Azure CLI is not installed! 😥 Please go to http://aka.ms/cli to set it up or rebuild your devcontainer"
  exit 1
fi


if [[ "${1:-?}" == *"env"* ]]; then
  if [ -z "${USE_ENV_VARS_NOT_FILES:-}" ]; then
    # We only do this for local builds
    echo -e "\n\e[96mLoading local environment variables\e[0m..."
    if [ ! -f "config.yaml" ]; then
      echo -e "\e[31m»»» ⚠️ Your config.yaml file has not been setup! 😥 Please create a config.yaml file."
      exit 1
    fi
    # shellcheck disable=SC1091
    . "$DIR/load_and_validate_env.sh"
  fi
fi

if [[ "${1:-?}" != *"nodocker"* ]]; then
  echo -e "\n\e[96mChecking for Docker\e[0m..."
  if ! command -v docker &> /dev/null; then
    echo -e "\e[31m»»» ⚠️ Docker is not installed! 😥 Please go to https://docs.docker.com/engine/install/ to set it up or rebuild your devcontainer"
    exit 1
  fi
fi

if  [[ "${1:-?}" == *"certbot"* ]]; then
  echo -e "\n\e[96mChecking for Certbot\e[0m..."
  if ! /opt/certbot/bin/certbot --version > /dev/null 2>&1; then
    echo -e "\e[31m»»» ⚠️ Certbot is not installed! 😥 Please go to https://certbot.eff.org/lets-encrypt/pip-other to set it up or rebuild your devcontainer"
    exit 1
  fi
fi

if [[ "${1:-?}" == *"porter"* ]]; then
  echo -e "\n\e[96mChecking for porter\e[0m..."
  if ! command -v porter &> /dev/null; then
    echo -e "\e[31m»»» ⚠️ Porter is not installed! 😥 Please go to https://porter.sh/install/ to set it up or rebuild your devcontainer"
    exit 1
  fi
fi

# This is called if we are in a CI system and we will login
# with a Service Principal.
if [ -n "${TF_IN_AUTOMATION:-}" ]; then
    az cloud set --name "$AZURE_ENVIRONMENT"
    az login --service-principal -u "$ARM_CLIENT_ID" -p "$ARM_CLIENT_SECRET" --tenant "$ARM_TENANT_ID"
    az account set -s "$ARM_SUBSCRIPTION_ID"
fi

SUB_NAME=$(az account show --query name -o tsv)
SUB_ID=$(az account show --query id -o tsv)
export SUB_ID
TENANT_ID=$(az account show --query tenantId -o tsv)
export TENANT_ID

# Configure AzureRM provider and backend to use Azure AD to connect to storage accounts
export ARM_STORAGE_USE_AZUREAD=true
export ARM_USE_AZUREAD=true
export ARM_USE_OIDC=true

if [ -z "$SUB_NAME" ]; then
  echo -e "\n\e[31m»»» ⚠️ You are not logged in to Azure!"
  exit 1
fi

echo -e "\e[34m»»» 🔨 \e[96mAzure details from logged on user \e[0m"
echo -e "\e[34m»»»   • \e[96mSubscription: \e[33m$SUB_NAME\e[0m"
echo -e "\e[34m»»»   • \e[96mTenant:       \e[33m$TENANT_ID\e[0m\n"

# This shouldn't be here but since other scripts don't use this option we must reset it.
# For tracking: https://github.com/microsoft/AzureTRE/issues/1672
set +o nounset
Add bootstrap and deployment scripts (#93) Add scripts to bootstrap TF environment, build and push docker images, and deploy the TRE. - Add TF bootstrap scripts and templates to create TF state storage and ACR - Add scripts to build and push the docker images - Add deployment scripts to core TF templates - Remove GitHub packages integration - Set linter to run locally as we have already checkout out the files 2021-05-21 15:27:21 +03:00			`#!/bin/bash`
Specify porter mixins (#1662) * devcontainer optimizations * install firewall extension on demand * e2e requirements * fix check_dependencies * fix bash bug * fix build param bug * reset option in check_dependencies script * porter install script * export porter home in script 2022-04-11 23:31:06 +03:00			`set -o errexit`
			`set -o pipefail`
			`set -o nounset`
			`# Uncomment this line to see each command for debugging (careful: this will show secrets!)`
			`# set -o xtrace`
Add bootstrap and deployment scripts (#93) Add scripts to bootstrap TF environment, build and push docker images, and deploy the TRE. - Add TF bootstrap scripts and templates to create TF state storage and ACR - Add scripts to build and push the docker images - Add deployment scripts to core TF templates - Remove GitHub packages integration - Set linter to run locally as we have already checkout out the files 2021-05-21 15:27:21 +03:00
Create an auth.env when you `make auth` and load all the .env in automatically. (#2259) * Removed scripts folder * Linting * Linting #3 * Added in build step * PR comment * Revert db-migrate * Admin Consent * Workspace Admin Consent * Removed unsued variables * Split AAD scripts up * Working on bash read prompt * Add a final check * Removing private file * Moving to Az cli 2.37 for Graph * Removed appName from credential reset * update_resource_access * Remove AAD_TENANT_ID * Rp should use 2.37 az cli * increase mgmt AzureRM version * Bump version * Pinning versions of apt-get packages * pipe and copy * WORKDIR * Move requirements to /tmp folder * --no-install-recommends * --no-install-recommends * Create auth.env * removed debug * Update documentation * Bump version * Merge the .env files for local debugging 2022-07-14 17:27:07 +03:00			`# Get the directory that this script is in`
			`DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" >/dev/null 2>&1 && pwd )"`

Add bootstrap and deployment scripts (#93) Add scripts to bootstrap TF environment, build and push docker images, and deploy the TRE. - Add TF bootstrap scripts and templates to create TF state storage and ACR - Add scripts to build and push the docker images - Add deployment scripts to core TF templates - Remove GitHub packages integration - Set linter to run locally as we have already checkout out the files 2021-05-21 15:27:21 +03:00			`echo -e "\n\e[34m╔══════════════════════════════════════╗"`
			`echo -e "║ \e[33mAzure TRE Makefile\e[34m ║"`
			`echo -e "╚══════════════════════════════════════╝"`

			`echo -e "\n\e[34m»»» ✅ \e[96mChecking pre-reqs\e[0m..."`

Consolidate variables and make file (#262) 2021-06-15 11:05:47 +03:00			`echo -e "\n\e[96mChecking for Azure CLI\e[0m..."`
Specify porter mixins (#1662) * devcontainer optimizations * install firewall extension on demand * e2e requirements * fix check_dependencies * fix bash bug * fix build param bug * reset option in check_dependencies script * porter install script * export porter home in script 2022-04-11 23:31:06 +03:00			`if ! command -v az &> /dev/null; then`
add rebuild container warning (#1407) Co-authored-by: Jamie D <jamie.dalton@microsoft.com> Co-authored-by: Ross Smith <ross-p-smith@users.noreply.github.com> 2022-03-03 08:38:34 +03:00			`echo -e "\e[31m»»» ⚠️ Azure CLI is not installed! 😥 Please go to http://aka.ms/cli to set it up or rebuild your devcontainer"`
set exit codes to 1 (#1364) 2022-02-23 17:08:06 +03:00			`exit 1`
Add bootstrap and deployment scripts (#93) Add scripts to bootstrap TF environment, build and push docker images, and deploy the TRE. - Add TF bootstrap scripts and templates to create TF state storage and ACR - Add scripts to build and push the docker images - Add deployment scripts to core TF templates - Remove GitHub packages integration - Set linter to run locally as we have already checkout out the files 2021-05-21 15:27:21 +03:00			`fi`
Remove PowerShell from container (#1149) * Goodbye PowerShell * Add check for az cli extension Add more verbose output Co-authored-by: Jamie D <jamie.dalton@microsoft.com> 2022-01-21 00:35:24 +03:00
Create an auth.env when you `make auth` and load all the .env in automatically. (#2259) * Removed scripts folder * Linting * Linting #3 * Added in build step * PR comment * Revert db-migrate * Admin Consent * Workspace Admin Consent * Removed unsued variables * Split AAD scripts up * Working on bash read prompt * Add a final check * Removing private file * Moving to Az cli 2.37 for Graph * Removed appName from credential reset * update_resource_access * Remove AAD_TENANT_ID * Rp should use 2.37 az cli * increase mgmt AzureRM version * Bump version * Pinning versions of apt-get packages * pipe and copy * WORKDIR * Move requirements to /tmp folder * --no-install-recommends * --no-install-recommends * Create auth.env * removed debug * Update documentation * Bump version * Merge the .env files for local debugging 2022-07-14 17:27:07 +03:00
			`if [[ "${1:-?}" == "env" ]]; then`
			`if [ -z "${USE_ENV_VARS_NOT_FILES:-}" ]; then`
			`# We only do this for local builds`
			`echo -e "\n\e[96mLoading local environment variables\e[0m..."`
Environment files consolidation (#2944) * Condolidate env files * Update changelog. * Revert changes in devcontainer * Remove devops sample env file * Revert makefile load envs * Remove auth from makefile check dependencies * Update version * Update core version * Fix sourcing * Fix yaml lint * Fix lint in bash * Fix usage in bash * CR fixes * Update comment on var * Fix lint * Fix lint * CR fixes + Disable hyphens in tre_id * Update docs * Update config file structure * Remove tre_id from tre section * CR fixes * CR changes * Fix version * CR changes * Update migration script 2022-12-12 15:09:03 +03:00			`if [ ! -f "config.yaml" ]; then`
			`echo -e "\e[31m»»» ⚠️ Your config.yaml file has not been setup! 😥 Please create a config.yaml file."`
Create an auth.env when you `make auth` and load all the .env in automatically. (#2259) * Removed scripts folder * Linting * Linting #3 * Added in build step * PR comment * Revert db-migrate * Admin Consent * Workspace Admin Consent * Removed unsued variables * Split AAD scripts up * Working on bash read prompt * Add a final check * Removing private file * Moving to Az cli 2.37 for Graph * Removed appName from credential reset * update_resource_access * Remove AAD_TENANT_ID * Rp should use 2.37 az cli * increase mgmt AzureRM version * Bump version * Pinning versions of apt-get packages * pipe and copy * WORKDIR * Move requirements to /tmp folder * --no-install-recommends * --no-install-recommends * Create auth.env * removed debug * Update documentation * Bump version * Merge the .env files for local debugging 2022-07-14 17:27:07 +03:00			`exit 1`
			`fi`
			`# shellcheck disable=SC1091`
Environment files consolidation (#2944) * Condolidate env files * Update changelog. * Revert changes in devcontainer * Remove devops sample env file * Revert makefile load envs * Remove auth from makefile check dependencies * Update version * Update core version * Fix sourcing * Fix yaml lint * Fix lint in bash * Fix usage in bash * CR fixes * Update comment on var * Fix lint * Fix lint * CR fixes + Disable hyphens in tre_id * Update docs * Update config file structure * Remove tre_id from tre section * CR fixes * CR changes * Fix version * CR changes * Update migration script 2022-12-12 15:09:03 +03:00			`. "$DIR/load_and_validate_env.sh"`
Create an auth.env when you `make auth` and load all the .env in automatically. (#2259) * Removed scripts folder * Linting * Linting #3 * Added in build step * PR comment * Revert db-migrate * Admin Consent * Workspace Admin Consent * Removed unsued variables * Split AAD scripts up * Working on bash read prompt * Add a final check * Removing private file * Moving to Az cli 2.37 for Graph * Removed appName from credential reset * update_resource_access * Remove AAD_TENANT_ID * Rp should use 2.37 az cli * increase mgmt AzureRM version * Bump version * Pinning versions of apt-get packages * pipe and copy * WORKDIR * Move requirements to /tmp folder * --no-install-recommends * --no-install-recommends * Create auth.env * removed debug * Update documentation * Bump version * Merge the .env files for local debugging 2022-07-14 17:27:07 +03:00			`fi`
			`fi`

Specify porter mixins (#1662) * devcontainer optimizations * install firewall extension on demand * e2e requirements * fix check_dependencies * fix bash bug * fix build param bug * reset option in check_dependencies script * porter install script * export porter home in script 2022-04-11 23:31:06 +03:00			`if [[ "${1:-?}" != "nodocker" ]]; then`
Consolidate variables and make file (#262) 2021-06-15 11:05:47 +03:00			`echo -e "\n\e[96mChecking for Docker\e[0m..."`
Specify porter mixins (#1662) * devcontainer optimizations * install firewall extension on demand * e2e requirements * fix check_dependencies * fix bash bug * fix build param bug * reset option in check_dependencies script * porter install script * export porter home in script 2022-04-11 23:31:06 +03:00			`if ! command -v docker &> /dev/null; then`
add rebuild container warning (#1407) Co-authored-by: Jamie D <jamie.dalton@microsoft.com> Co-authored-by: Ross Smith <ross-p-smith@users.noreply.github.com> 2022-03-03 08:38:34 +03:00			`echo -e "\e[31m»»» ⚠️ Docker is not installed! 😥 Please go to https://docs.docker.com/engine/install/ to set it up or rebuild your devcontainer"`
set exit codes to 1 (#1364) 2022-02-23 17:08:06 +03:00			`exit 1`
Consolidate variables and make file (#262) 2021-06-15 11:05:47 +03:00			`fi`
Add bootstrap and deployment scripts (#93) Add scripts to bootstrap TF environment, build and push docker images, and deploy the TRE. - Add TF bootstrap scripts and templates to create TF state storage and ACR - Add scripts to build and push the docker images - Add deployment scripts to core TF templates - Remove GitHub packages integration - Set linter to run locally as we have already checkout out the files 2021-05-21 15:27:21 +03:00			`fi`

Specify porter mixins (#1662) * devcontainer optimizations * install firewall extension on demand * e2e requirements * fix check_dependencies * fix bash bug * fix build param bug * reset option in check_dependencies script * porter install script * export porter home in script 2022-04-11 23:31:06 +03:00			`if [[ "${1:-?}" == "certbot" ]]; then`
Consolidate variables and make file (#262) 2021-06-15 11:05:47 +03:00			`echo -e "\n\e[96mChecking for Certbot\e[0m..."`
Specify porter mixins (#1662) * devcontainer optimizations * install firewall extension on demand * e2e requirements * fix check_dependencies * fix bash bug * fix build param bug * reset option in check_dependencies script * porter install script * export porter home in script 2022-04-11 23:31:06 +03:00			`if ! /opt/certbot/bin/certbot --version > /dev/null 2>&1; then`
add rebuild container warning (#1407) Co-authored-by: Jamie D <jamie.dalton@microsoft.com> Co-authored-by: Ross Smith <ross-p-smith@users.noreply.github.com> 2022-03-03 08:38:34 +03:00			`echo -e "\e[31m»»» ⚠️ Certbot is not installed! 😥 Please go to https://certbot.eff.org/lets-encrypt/pip-other to set it up or rebuild your devcontainer"`
set exit codes to 1 (#1364) 2022-02-23 17:08:06 +03:00			`exit 1`
Consolidate variables and make file (#262) 2021-06-15 11:05:47 +03:00			`fi`
add certbot check and check for certbot string (#168) 2021-06-02 15:29:13 +03:00			`fi`
Add bootstrap and deployment scripts (#93) Add scripts to bootstrap TF environment, build and push docker images, and deploy the TRE. - Add TF bootstrap scripts and templates to create TF state storage and ACR - Add scripts to build and push the docker images - Add deployment scripts to core TF templates - Remove GitHub packages integration - Set linter to run locally as we have already checkout out the files 2021-05-21 15:27:21 +03:00
Specify porter mixins (#1662) * devcontainer optimizations * install firewall extension on demand * e2e requirements * fix check_dependencies * fix bash bug * fix build param bug * reset option in check_dependencies script * porter install script * export porter home in script 2022-04-11 23:31:06 +03:00			`if [[ "${1:-?}" == "porter" ]]; then`
Consolidate variables and make file (#262) 2021-06-15 11:05:47 +03:00			`echo -e "\n\e[96mChecking for porter\e[0m..."`
Specify porter mixins (#1662) * devcontainer optimizations * install firewall extension on demand * e2e requirements * fix check_dependencies * fix bash bug * fix build param bug * reset option in check_dependencies script * porter install script * export porter home in script 2022-04-11 23:31:06 +03:00			`if ! command -v porter &> /dev/null; then`
add rebuild container warning (#1407) Co-authored-by: Jamie D <jamie.dalton@microsoft.com> Co-authored-by: Ross Smith <ross-p-smith@users.noreply.github.com> 2022-03-03 08:38:34 +03:00			`echo -e "\e[31m»»» ⚠️ Porter is not installed! 😥 Please go to https://porter.sh/install/ to set it up or rebuild your devcontainer"`
set exit codes to 1 (#1364) 2022-02-23 17:08:06 +03:00			`exit 1`
Consolidate variables and make file (#262) 2021-06-15 11:05:47 +03:00			`fi`
Update naming conventions, porter workflow in vanilla workspace (#173) * Update naming convention, porter workflow and dev container 2021-06-04 15:22:09 +03:00			`fi`

Auto az login if in CI pipeline (#1157) 2022-01-21 19:37:11 +03:00			`# This is called if we are in a CI system and we will login`
			`# with a Service Principal.`
Create an auth.env when you `make auth` and load all the .env in automatically. (#2259) * Removed scripts folder * Linting * Linting #3 * Added in build step * PR comment * Revert db-migrate * Admin Consent * Workspace Admin Consent * Removed unsued variables * Split AAD scripts up * Working on bash read prompt * Add a final check * Removing private file * Moving to Az cli 2.37 for Graph * Removed appName from credential reset * update_resource_access * Remove AAD_TENANT_ID * Rp should use 2.37 az cli * increase mgmt AzureRM version * Bump version * Pinning versions of apt-get packages * pipe and copy * WORKDIR * Move requirements to /tmp folder * --no-install-recommends * --no-install-recommends * Create auth.env * removed debug * Update documentation * Bump version * Merge the .env files for local debugging 2022-07-14 17:27:07 +03:00			`if [ -n "${TF_IN_AUTOMATION:-}" ]; then`
Support Gov cloud in CI/CD (#3366) * fix typos * use az cloud show to get AZ_CLOUD_ENVIRONMENT * set TRE_URL and AZ_CLOUD_ENVIRONMENT in action.yml * add AZURE_ENVIRONMENT to ci/cd - it's required for az login * set cloud for CI in check_dependencies.sh * remove hardcoded acr name from CI-CD + fix TRE_URL * fix ACR domain suffix * fix ACR_DOMAIN_SUFFIX not being evaluated lazily * change acr_name assignment * add AZURE_ENVIRONMENT to the docs * remove OmsAgentForLinux extension * pass arm_environment as terraform var * Add private links * Support for vm * Upgrade versions and services * rename AZ_CLOUD_ENVIRONMENT to AZURE_ENVIRONMENT * Fix terraform formatting * Source module from modules repository * Fix terraform format * Temorary Disable versioning for module * Remove arm env * CR changes * Fix lint issues * Install git in devcontainer * Remove from vm unused var * Fix lint issues * Install git in devcontainer * remove duplicate git installation * add default value to AZURE_ENVIRONMENT in CI * update AZURE_ENVIRONMENT in ci/cd docs * fix azure_env default assignment * update core version * fix tf lint errors by removing unused vars * fix linting error in deploy_tre_reusable * fix linting errors in deploy_tre_reusable * fix linting errors in deploy_tre_reusable --------- Co-authored-by: LizaShak <iliza@outlook.com> 2023-03-27 11:08:02 +03:00			`az cloud set --name "$AZURE_ENVIRONMENT"`
Auto az login if in CI pipeline (#1157) 2022-01-21 19:37:11 +03:00			`az login --service-principal -u "$ARM_CLIENT_ID" -p "$ARM_CLIENT_SECRET" --tenant "$ARM_TENANT_ID"`
			`az account set -s "$ARM_SUBSCRIPTION_ID"`
			`fi`

Specify porter mixins (#1662) * devcontainer optimizations * install firewall extension on demand * e2e requirements * fix check_dependencies * fix bash bug * fix build param bug * reset option in check_dependencies script * porter install script * export porter home in script 2022-04-11 23:31:06 +03:00			`SUB_NAME=$(az account show --query name -o tsv)`
			`SUB_ID=$(az account show --query id -o tsv)`
			`export SUB_ID`
			`TENANT_ID=$(az account show --query tenantId -o tsv)`
			`export TENANT_ID`

Move AZ AD Environment Variables to check_dependencies (#4131) set azure ad environment variables in check_dependencies rather than in load_and_validate_env 2024-11-11 12:38:28 +03:00			`# Configure AzureRM provider and backend to use Azure AD to connect to storage accounts`
			`export ARM_STORAGE_USE_AZUREAD=true`
			`export ARM_USE_AZUREAD=true`
			`export ARM_USE_OIDC=true`

Creates GitHub Action to deploy core infra to dev subscription (#107) Creates GitHub Action to deploy core infra to dev subscription 2021-05-26 19:58:43 +03:00			`if [ -z "$SUB_NAME" ]; then`
Add bootstrap and deployment scripts (#93) Add scripts to bootstrap TF environment, build and push docker images, and deploy the TRE. - Add TF bootstrap scripts and templates to create TF state storage and ACR - Add scripts to build and push the docker images - Add deployment scripts to core TF templates - Remove GitHub packages integration - Set linter to run locally as we have already checkout out the files 2021-05-21 15:27:21 +03:00			`echo -e "\n\e[31m»»» ⚠️ You are not logged in to Azure!"`
set exit codes to 1 (#1364) 2022-02-23 17:08:06 +03:00			`exit 1`
Add bootstrap and deployment scripts (#93) Add scripts to bootstrap TF environment, build and push docker images, and deploy the TRE. - Add TF bootstrap scripts and templates to create TF state storage and ACR - Add scripts to build and push the docker images - Add deployment scripts to core TF templates - Remove GitHub packages integration - Set linter to run locally as we have already checkout out the files 2021-05-21 15:27:21 +03:00			`fi`

			`echo -e "\e[34m»»» 🔨 \e[96mAzure details from logged on user \e[0m"`
			`echo -e "\e[34m»»» • \e[96mSubscription: \e[33m$SUB_NAME\e[0m"`
Remove PowerShell from container (#1149) * Goodbye PowerShell * Add check for az cli extension Add more verbose output Co-authored-by: Jamie D <jamie.dalton@microsoft.com> 2022-01-21 00:35:24 +03:00			`echo -e "\e[34m»»» • \e[96mTenant: \e[33m$TENANT_ID\e[0m\n"`
Specify porter mixins (#1662) * devcontainer optimizations * install firewall extension on demand * e2e requirements * fix check_dependencies * fix bash bug * fix build param bug * reset option in check_dependencies script * porter install script * export porter home in script 2022-04-11 23:31:06 +03:00
			`# This shouldn't be here but since other scripts don't use this option we must reset it.`
			`# For tracking: https://github.com/microsoft/AzureTRE/issues/1672`
			`set +o nounset`