Enabled Postgresql Database (#162)

Azure · Aug 22, 2024 · f478792 · f478792
1 parent 23c8fed
commit f478792
Show file tree

Hide file tree

Showing 30 changed files with 241 additions and 1,076 deletions.
diff --git a/bicep/modules/blade_common.bicep b/bicep/modules/blade_common.bicep
@@ -153,6 +153,22 @@ var vaultSecrets = [
     secretName: 'app-dev-sp-id'
     secretValue: applicationClientId
   }
+  {
+    secretName: 'cpng-user-name'
+    secretValue: 'dbuser'
+  }
+  {
+    secretName: 'cpng-user-password'
+    secretValue: substring(uniqueString('dbuser', resourceGroup().id, bladeConfig.sectionName), 0, 8)
+  }
+  {
+    secretName: 'cpng-superuser-name'
+    secretValue: 'dbadmin'
+  }
+  {
+    secretName: 'cpng-superuser-password'
+    secretValue: substring(uniqueString('dbadmin', resourceGroup().id, bladeConfig.sectionName), 0, 8)
+  }
 ]
 
 var roleAssignment = {

diff --git a/bicep/modules/blade_service.bicep b/bicep/modules/blade_service.bicep
@@ -427,16 +427,16 @@ module federatedCredsOduInitNamespace './federated_identity.bicep' = {
   ]
 }
 
-module federatedCredsDevSampleNamespace './federated_identity.bicep' = {
-  name: '${bladeConfig.sectionName}-federated-cred-ns_dev-sample'
+module federatedCredsPostgreSqlNamespace './federated_identity.bicep' = {
+  name: '${bladeConfig.sectionName}-federated-cred-ns_postgresql'
   params: {
-    name: 'federated-ns_dev-sample'
+    name: 'federated-ns_postgresql'
     audiences: [
       'api://AzureADTokenExchange'
     ]
     issuer: cluster.outputs.aksOidcIssuerUrl
     userAssignedIdentityName: appIdentity.name
-    subject: 'system:serviceaccount:dev-sample:workload-identity-sa'
+    subject: 'system:serviceaccount:postgresql:workload-identity-sa'
   }
   dependsOn: [
     federatedCredsOduInitNamespace
@@ -455,7 +455,7 @@ module federatedCredsConfigMapsNamespace './federated_identity.bicep' = {
     subject: 'system:serviceaccount:azappconfig-system:az-appconfig-k8s-provider'
   }
   dependsOn: [
-    federatedCredsDevSampleNamespace
+    federatedCredsPostgreSqlNamespace
   ]
 }
 
@@ -524,7 +524,6 @@ module federatedCredsOsduReference './federated_identity.bicep' = {
 }
 
 
-
 module appRoleAssignments './app_assignments.bicep' = {
   name: '${bladeConfig.sectionName}-user-managed-identity-rbac'
   params: {
@@ -536,7 +535,7 @@ module appRoleAssignments './app_assignments.bicep' = {
     federatedCredsDefaultNamespace
     federatedCredsOsduCoreNamespace
     federatedCredsOduInitNamespace
-    federatedCredsDevSampleNamespace
+    federatedCredsPostgreSqlNamespace
     federatedCredsConfigMapsNamespace
     federatedCredsElasticNamespace
     federatedCredsOsduSystem
@@ -555,7 +554,7 @@ module appRoleAssignments2 './app_assignments.bicep' = [for (name, index) in par
     federatedCredsDefaultNamespace
     federatedCredsOsduCoreNamespace
     federatedCredsOsduReference
-    federatedCredsDevSampleNamespace
+    federatedCredsPostgreSqlNamespace
     federatedCredsConfigMapsNamespace
   ]
 }]

diff --git a/charts/config-maps/templates/config-map-devsample.yaml b/charts/config-maps/templates/config-map-devsample.yaml
diff --git a/charts/env-debug/.helmignore b/charts/env-debug/.helmignore
diff --git a/charts/env-debug/Chart.yaml b/charts/env-debug/Chart.yaml
diff --git a/charts/env-debug/README.md b/charts/env-debug/README.md
diff --git a/charts/env-debug/templates/_helpers.tpl b/charts/env-debug/templates/_helpers.tpl
diff --git a/charts/env-debug/templates/config-map.yaml b/charts/env-debug/templates/config-map.yaml