rudolphjacksonm/upload_cosmosdb_secret.sh

## upload_cosmosdb_secret.sh
function update_keyvault_secret() {
  local keyKind=$1              # The kind of CosmosDB account key, which must be either primary or secondary.
  local secretValue=$2
  local cosmosDBAccountName=$3
  local vaultNames=("${cosmosDBAccountName%-mongo}" "${cosmosDBAccountName%-mongo}-ukw")
  local secretName

  if [[ "${keyKind}" == "primary" ]]; then
    secretName='cosmosDBPrimaryConnectionString'
  else
    secretName='cosmosDBSecondaryConnectionString'
  fi

  for v in "${vaultNames[@]}"; do
    echo "Updating secret ${secretName} in Key Vault ${v}..."
    currentVersion=$(az keyvault secret show --vault-name "${v}" --name "${secretName}" -o tsv --query id | awk -F '/' '{ print $6 }')
    az keyvault secret set \
      --vault-name "${v}" \
      --name "${secretName}" \
      --value "${secretValue}"

    newVersion=$(az keyvault secret show --vault-name "${v}" --name "${secretName}" -o tsv --query id | awk -F '/' '{ print $6 }')
    until [[ "${currentVersion}" != "${newVersion}" ]]; do
      echo 'Stale secret version returned, retrying again 5 seconds...'
      sleep 5
      newVersion=$(az keyvault secret show --vault-name "${v}" --name "${secretName}" -o tsv --query id | awk -F '/' '{ print $6 }')
    done

    echo "Key Vault secret ${secretName} in Key Vault ${v} has been successfully updated!"
    echo "Previous version: ${currentVersion}"
    echo "New version: ${newVersion}"
  done
}
	function update_keyvault_secret() {
	local keyKind=$1 # The kind of CosmosDB account key, which must be either primary or secondary.
	local secretValue=$2
	local cosmosDBAccountName=$3
	local vaultNames=("${cosmosDBAccountName%-mongo}" "${cosmosDBAccountName%-mongo}-ukw")
	local secretName

	if [[ "${keyKind}" == "primary" ]]; then
	secretName='cosmosDBPrimaryConnectionString'
	else
	secretName='cosmosDBSecondaryConnectionString'
	fi

	for v in "${vaultNames[@]}"; do
	echo "Updating secret ${secretName} in Key Vault ${v}..."
	currentVersion=$(az keyvault secret show --vault-name "${v}" --name "${secretName}" -o tsv --query id \| awk -F '/' '{ print $6 }')
	az keyvault secret set \
	--vault-name "${v}" \
	--name "${secretName}" \
	--value "${secretValue}"

	newVersion=$(az keyvault secret show --vault-name "${v}" --name "${secretName}" -o tsv --query id \| awk -F '/' '{ print $6 }')
	until [[ "${currentVersion}" != "${newVersion}" ]]; do
	echo 'Stale secret version returned, retrying again 5 seconds...'
	sleep 5
	newVersion=$(az keyvault secret show --vault-name "${v}" --name "${secretName}" -o tsv --query id \| awk -F '/' '{ print $6 }')
	done

	echo "Key Vault secret ${secretName} in Key Vault ${v} has been successfully updated!"
	echo "Previous version: ${currentVersion}"
	echo "New version: ${newVersion}"
	done
	}