Chris Woolum cwoolum

## cluster.tf
resource "azurerm_resource_group" "example" {
  name     = "example-resources"
  location = "West US 2"
}

data "azurerm_client_config" "current" {
}

resource "azurerm_kubernetes_cluster" "example" {
  name                = "example-aks1"

## azure-pipelines.yaml
resources:
  containers:
  - container: nuget
    image: cwoolum/thin-nuget-proxy
    ports:
    - 8080:80
    env:
      MIRROR__ACCESSTOKEN: $(System.AccessToken)
      MIRROR__PACKAGESOURCE: "https://pkgs.dev.azure.com/mypackages/_packaging/mypackages/nuget/v3/index.json"

## tear-down.sh
echo Enter the name of the environment you would like to delete

read envName

echo "Deleting Resource Group"
az group delete --name rg-$envName

echo "Deleting Service Principal"
az ad sp delete --id http://sp-kube-api-$envName

## helm-rbac.yaml
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
 name: contoso-cluster-admins
roleRef:
 apiGroup: rbac.authorization.k8s.io
 kind: ClusterRole
 name: cluster-admin
subjects:
- apiGroup: rbac.authorization.k8s.io

## AKS-Deploy Part 4
echo "Creating AKS Cluster"
az aks create \
    --resource-group $resourceGroupName \
    --name kube-api-$envName \
    --node-count 2 \
    --node-vm-size Standard_A2_v2 \
    --enable-addons monitoring \
    --network-plugin azure \
    --service-cidr 10.0.0.0/16 \
    --dns-service-ip 10.0.0.10 \

## configure.sh
spPass="$(openssl rand -base64 30)"

echo "Creating Service Principal"
spId="$(az ad sp create-for-rbac --name sp-kube-api-$envName --password $spPass --skip-assignment --query appId --output tsv)"

echo "Setting permissions for Service Principal on VNet"
az role assignment create --assignee $spId --scope $vNetResourceId --role Contributor

## configure.sh
resourceGroupName="rg-$envName"

echo "Creating Resource Group"
az group create -l westus -n $resourceGroupName

echo "Creating VNet"
az network vnet create \
    --resource-group $resourceGroupName \
    --name vnet-api-$envName \
    --address-prefixes 10.0.0.0/8 \

## configure.sh
echo Enter the name of the environment you would like to create

read envName

serverApplicationSecret="$(openssl rand -base64 30)"
serverApplicationId="$(az ad app create --display-name kube-aad-server-$envName --identifier-uris "https://kube-aad-server-$envName" --end-date "2050-1-1" --password $serverApplicationSecret --query appId -o tsv)"
az ad app update --id $serverApplicationId --set groupMembershipClaims=All
az ad app permission add --id $serverApplicationId --api 00000003-0000-0000-c000-000000000000 --api-permissions e1fe6dd8-ba31-4d61-89e7-88639da4683d=Scope 06da0dbc-49e2-44d2-8312-53f166ab848a=Scope 7ab1d382-f21e-4acd-a863-ba3e13f7da61=Role
az ad app permission grant --id $serverApplicationId --api 00000003-0000-0000-c000-000000000000

## ionic-migration.json
{
  "rulesDirectory": ["@ionic/v4-migration-tslint/rules"],
  "rules": {
    "ion-action-sheet-method-create-parameters-renamed": true,
    "ion-alert-method-create-parameters-renamed": true,
    "ion-datetime-capitalization-changed": true,
    "ion-item-option-method-get-sliding-percent-renamed": true,
    "ion-overlay-method-create-should-use-await": true,
    "ion-overlay-method-present-should-use-await": true,
    "ion-back-button-not-added-by-default": { "options": [true], "severity": "warning" },

## build.yml
resources:
  repositories:
    - repository: templates
      type: git
      name: BuildTemplates

trigger:
  branches:
    include:
    - master
	resource "azurerm_resource_group" "example" {
	name = "example-resources"
	location = "West US 2"
	}

	data "azurerm_client_config" "current" {
	}

	resource "azurerm_kubernetes_cluster" "example" {
	name = "example-aks1"
	resources:
	containers:
	- container: nuget
	image: cwoolum/thin-nuget-proxy
	ports:
	- 8080:80
	env:
	MIRROR__ACCESSTOKEN: $(System.AccessToken)
	MIRROR__PACKAGESOURCE: "https://pkgs.dev.azure.com/mypackages/_packaging/mypackages/nuget/v3/index.json"
	echo Enter the name of the environment you would like to delete

	read envName

	echo "Deleting Resource Group"
	az group delete --name rg-$envName

	echo "Deleting Service Principal"
	az ad sp delete --id http://sp-kube-api-$envName
	apiVersion: rbac.authorization.k8s.io/v1
	kind: ClusterRoleBinding
	metadata:
	name: contoso-cluster-admins
	roleRef:
	apiGroup: rbac.authorization.k8s.io
	kind: ClusterRole
	name: cluster-admin
	subjects:
	- apiGroup: rbac.authorization.k8s.io
	echo "Creating AKS Cluster"
	az aks create \
	--resource-group $resourceGroupName \
	--name kube-api-$envName \
	--node-count 2 \
	--node-vm-size Standard_A2_v2 \
	--enable-addons monitoring \
	--network-plugin azure \
	--service-cidr 10.0.0.0/16 \
	--dns-service-ip 10.0.0.10 \
	spPass="$(openssl rand -base64 30)"

	echo "Creating Service Principal"
	spId="$(az ad sp create-for-rbac --name sp-kube-api-$envName --password $spPass --skip-assignment --query appId --output tsv)"

	echo "Setting permissions for Service Principal on VNet"
	az role assignment create --assignee $spId --scope $vNetResourceId --role Contributor
	resourceGroupName="rg-$envName"

	echo "Creating Resource Group"
	az group create -l westus -n $resourceGroupName

	echo "Creating VNet"
	az network vnet create \
	--resource-group $resourceGroupName \
	--name vnet-api-$envName \
	--address-prefixes 10.0.0.0/8 \
	echo Enter the name of the environment you would like to create

	read envName

	serverApplicationSecret="$(openssl rand -base64 30)"
	serverApplicationId="$(az ad app create --display-name kube-aad-server-$envName --identifier-uris "https://kube-aad-server-$envName" --end-date "2050-1-1" --password $serverApplicationSecret --query appId -o tsv)"
	az ad app update --id $serverApplicationId --set groupMembershipClaims=All
	az ad app permission add --id $serverApplicationId --api 00000003-0000-0000-c000-000000000000 --api-permissions e1fe6dd8-ba31-4d61-89e7-88639da4683d=Scope 06da0dbc-49e2-44d2-8312-53f166ab848a=Scope 7ab1d382-f21e-4acd-a863-ba3e13f7da61=Role
	az ad app permission grant --id $serverApplicationId --api 00000003-0000-0000-c000-000000000000
	{
	"rulesDirectory": ["@ionic/v4-migration-tslint/rules"],
	"rules": {
	"ion-action-sheet-method-create-parameters-renamed": true,
	"ion-alert-method-create-parameters-renamed": true,
	"ion-datetime-capitalization-changed": true,
	"ion-item-option-method-get-sliding-percent-renamed": true,
	"ion-overlay-method-create-should-use-await": true,
	"ion-overlay-method-present-should-use-await": true,
	"ion-back-button-not-added-by-default": { "options": [true], "severity": "warning" },
	resources:
	repositories:
	- repository: templates
	type: git
	name: BuildTemplates

	trigger:
	branches:
	include:
	- master