microsoft
/
azure-data-services-go-fast-codebase
зеркало из https://github.com/microsoft/azure-data-services-go-fast-codebase.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность

Radme changes

This commit is contained in:
John Rampono 2022-08-22 20:48:10 +08:00
Родитель e2be6aceb5
Коммит 3617312d53
1 изменённых файлов: 5 добавлений и 2 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

7
solution/DeploymentV2/README.md
Просмотреть файл

@ -76,9 +76,12 @@ The configuration for this environment creation is read from the following locat
## :green_circle: PART 3. Deployment Details
### Deployment Layers - Summary
[Deploy.ps1](Deploy.ps1) provides a simple way for you to deploy all of the terraform layers included in this deployment at once. In practice, when setting up a CICD based deployment you will most likely choose to break this up and deploy each layer separately. The table below provides a summary of the different terraform layers included in this solution. Click the links in the first column to browse detailed layer documentation prodcued using [https://terraform-docs.io/](https://terraform-docs.io/)
Layer | Description | Permissions Required when using Service Principal | Permissions Required when using User Principal
| --- | --- | --- | --- |
[Terraform Layer Zero](./terraform_layer0/tformdocs.md) | Deploys the spoke VNET with subnets, dns zones, bastion & a VM for the CICD agent | Resouce Group Owner <br /> <br /> Blob Contributor on Terraform's State Storage Account | Resouce Group Owner <br /> <br /> Blob Contributor on Terraform's State Storage Account
[Terraform Layer One](./terraform_layer1/tformdocs.md)| Register AAD Enterprise Applications & Service Principals | Application.ReadWrite.OwnedBy <br /><br /> Blob Contributor on Terraform's State Storage Account| Application Administrator (Role) <br /> <br /> Blob Contributor on Terraform's State Storage Account
Terraform Layer Two | Core IAC deployment for approx. 70 ADS Go fast resources | Resource Group Owner <br /> <br /> Blob Contributor on Terraform's State Storage Account| Resource Group Owner <br /><br /> Blob Contributor on Terraform's State Storage Account
Terraform Layer Three | Update AAD Enterprise Applications by granting required roles and permissions to managed service identities created in Layer Two <br /> <br /> Create Private Endpoints for Purview | Application.ReadWrite.OwnedBy <br /> (Must be same identity as that which was used to run Layer One) <br /> <br /> Blob Contributor on Terraform's State Storage Account | Application Administrator (Role), <br /> <br /> Network Contributor <br /> <br /> Blob Contributor on Terraform's State Storage Account
[Terraform Layer Two](./terraform_layer2/tformdocs.md)| Core IAC deployment for approx. 70 ADS Go fast resources | Resource Group Owner <br /> <br /> Blob Contributor on Terraform's State Storage Account| Resource Group Owner <br /><br /> Blob Contributor on Terraform's State Storage Account
[Terraform Layer Three](./terraform_layer3/tformdocs.md)| Update AAD Enterprise Applications by granting required roles and permissions to managed service identities created in Layer Two <br /> <br /> Create Private Endpoints for Purview | Application.ReadWrite.OwnedBy <br /> (Must be same identity as that which was used to run Layer One) <br /> <br /> Blob Contributor on Terraform's State Storage Account | Application Administrator (Role), <br /> <br /> Network Contributor <br /> <br /> Blob Contributor on Terraform's State Storage Account