bicep refmt

.github/workflows/dev-infrastructure.yml

@@ -27,10 +27,11 @@ jobs:
       - name: 'az bicep format and lint'
         working-directory: './dev-infrastructure'
         run: |
+          az bicep version
           make fmt
           make lint
 
       - name: Check for uncommitted changes
         working-directory: './dev-infrastructure'
         run: |
-          git diff --exit-code || (echo "::error::Uncommitted changes detected in OpenAPI spec. Please regenerate and commit them." && exit 1)
+          git diff --exit-code || (echo "::error::Uncommitted changes detected in bicep templates" && exit 1)

dev-infrastructure/modules/aks-cluster-base.bicep

@@ -333,28 +333,26 @@ resource aksCluster 'Microsoft.ContainerService/managedClusters@2024-01-01' = {
 }
 
 // az aks command invoke --resource-group hcp-standalone-mshen --name aro-hcp-cluster-001 --command "kubectl get ns"
-resource currentUserAksClusterAdmin 'Microsoft.Authorization/roleAssignments@2022-04-01' =
-  if (length(currentUserId) > 0) {
-    scope: aksCluster
-    name: guid(location, aksClusterName, aksClusterAdminRoleId, currentUserId)
-    properties: {
-      roleDefinitionId: aksClusterAdminRoleId
-      principalId: currentUserId
-      principalType: 'User'
-    }
+resource currentUserAksClusterAdmin 'Microsoft.Authorization/roleAssignments@2022-04-01' = if (length(currentUserId) > 0) {
+  scope: aksCluster
+  name: guid(location, aksClusterName, aksClusterAdminRoleId, currentUserId)
+  properties: {
+    roleDefinitionId: aksClusterAdminRoleId
+    principalId: currentUserId
+    principalType: 'User'
   }
+}
 
 // az aks command invoke --resource-group hcp-standalone-mshen --name aro-hcp-cluster-001 --command "kubectl get ns"
-resource currentUserAksRbacClusterAdmin 'Microsoft.Authorization/roleAssignments@2022-04-01' =
-  if (length(currentUserId) > 0) {
-    scope: aksCluster
-    name: guid(location, aksClusterName, aksClusterRbacClusterAdminRoleId, currentUserId)
-    properties: {
-      roleDefinitionId: aksClusterRbacClusterAdminRoleId
-      principalId: currentUserId
-      principalType: 'User'
-    }
+resource currentUserAksRbacClusterAdmin 'Microsoft.Authorization/roleAssignments@2022-04-01' = if (length(currentUserId) > 0) {
+  scope: aksCluster
+  name: guid(location, aksClusterName, aksClusterRbacClusterAdminRoleId, currentUserId)
+  properties: {
+    roleDefinitionId: aksClusterRbacClusterAdminRoleId
+    principalId: currentUserId
+    principalType: 'User'
   }
+}
 
 resource uami 'Microsoft.ManagedIdentity/userAssignedIdentities@2023-01-31' = [
   for wi in workloadIdentities: {

dev-infrastructure/templates/svc-cluster.bicep

@@ -54,18 +54,17 @@ module svcCluster '../modules/aks-cluster-base.bicep' = {
 }
 var frontendMI = filter(svcCluster.outputs.userAssignedIdentities, id => id.uamiName == 'frontend')[0]
 
-module rpCosmosDb '../modules/rp-cosmos.bicep' =
-  if (deployFrontendCosmos) {
-    name: 'rp_cosmos_db'
-    scope: resourceGroup()
-    params: {
-      location: location
-      aksNodeSubnetId: svcCluster.outputs.aksNodeSubnetId
-      vnetId: svcCluster.outputs.aksVnetId
-      disableLocalAuth: disableLocalAuth
-      userAssignedMI: frontendMI.uamiID
-      uamiPrincipalId: frontendMI.uamiPrincipalID
-    }
+module rpCosmosDb '../modules/rp-cosmos.bicep' = if (deployFrontendCosmos) {
+  name: 'rp_cosmos_db'
+  scope: resourceGroup()
+  params: {
+    location: location
+    aksNodeSubnetId: svcCluster.outputs.aksNodeSubnetId
+    vnetId: svcCluster.outputs.aksVnetId
+    disableLocalAuth: disableLocalAuth
+    userAssignedMI: frontendMI.uamiID
+    uamiPrincipalId: frontendMI.uamiPrincipalID
   }
+}
 
 output frontend_mi_client_id string = frontendMI.uamiClientID