Introduction

This is the subscription deployment for the Azure IPAM solution in Terraform. This is translated copy for the Bicep code provided with the solution.

The code is a little rough around the edges, but will deploy the solution with the normal topology on Azure Web Apps. It is intended that the code is consumed and aligned to individual requirements.

The solution is not currently integrated with the deploy.ps1 deployment scripts. This assumes that the relevant app registrations are created prior to the execution of the terraform and the required values are passed in (so that they can be deployed into the relevant key vault).

Variables/parameters reside in the files locals.tf and .deploy_pipeline.yml, and have been replaced with [ ], so that these are easy to locate and update.

Requirements

Name	Version
terraform	>= 1.0
azurerm	~> 3.97.0

Providers

Name	Version
azurerm	~> 3.97.0

Modules

Name	Source	Version
app_service	./modules/app_service	n/a
container_registry	./modules/container_registry	n/a
cosmos_db	./modules/cosmos_db	n/a
function_app	./modules/function_app	n/a
key_vault	./modules/key_vault	n/a
log_analytics_workspace	./modules/log_analytics_workspace	n/a
managed_identity	./modules/managed_identity	n/a
storage_account	./modules/storage_account	n/a

Resources

Name	Type
azurerm_key_vault_access_policy.policy	resource
azurerm_resource_group.ipam	resource
azurerm_client_config.current	data source

Inputs

Name	Description	Type	Default	Required
engineappid	IPAM-Engine App Registration Client/App ID	string	n/a	yes
engineappsecret	IPAM-Engine App Registration Client Secret	string	n/a	yes
uiappid	IPAM-UI App Registration Client/App ID	string	n/a	yes

Outputs

Name	Description
app_service_host_name	The full app name e.g. 'app.azurewebsites.net'.
app_service_name	The globally-unique name of the app service.
resource_group_name	The resource group name for the deployed resources.