Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Solved issue 45: Add optional private endpoints for AI Services and Storage Accounts #55

Merged
merged 20 commits into from
May 31, 2024
Merged

Solved issue 45: Add optional private endpoints for AI Services and Storage Accounts #55

merged 20 commits into from
May 31, 2024

Conversation

rliberoff
Copy link
Contributor

This PR would solve issue #45.

All private endpoints are set when the new variable use_private_endpoints is true. Also, the current IP address of the machine executing these templates is used as an allowed IP address to facilitate managing these services.

  • Increased the size of the subnet for Private Endpoints, from /29 to /28 since currently near 9 services requires them.
  • Increased the size of the subnet for the APIM to /27 as recommended by Microsoft's documentation.
    • Also, added delegation in the subnet for the APIM as specified by Microsoft's documentation.
  • Added support for private endpoints and related variables in Azure AI Search module.
  • Added support for private endpoints and related variables in OpenAI module.
  • Added support for private endpoints and related variables in Document Intelligence (a.k.a. Forms) module.
  • Added support for private endpoints and related variables in Cognitive Services module.
  • Added support for private endpoints and related variables for Storage Account services.
  • Now the Azure API Management is deployed with (External) VNet support when the use_private_endpoints variable is set to true.

rliberoff added 12 commits May 29, 2024 15:01
@rliberoff
Added new output variable virtual_network_id in module vnet to re…
1876121 
…turn the unique identifier of the created virtual network.
@rliberoff
Updated st module to create an optional private endpoints infrastru…
12ad1b1 
…cture for Blog Storage and File Shares.
@rliberoff
- Now the Azure API Management is deployed with (External) VNet suppo…
78581ec 
…rt when the `use_private_endpoints` variable is set to `true`.
@rliberoff
Add use_private_endpoints variable to APIM module.
368829a
@rliberoff
- Added support to set private endpoints for AI Services and Storage …
6a8bce9 
…Account services. This private endpoints are set when the variable `use_private_endpoints` is `true`. Also, the current IP address of the machine executing these templates is used as a allowed IP address to facilitate managing these services.
@rliberoff
- Increased the size of the subnet for Private Endpoints, since curre…
a9231a4 
…ntly near 9 services requires them.

- Increased the size of the subnet for the APIM as recommended by Microsoft's documentation.
- Also, added delegation in the subnet for the APIM as specified by Microsoft's documentation.
@rliberoff
- Improved names for Private Endpoints and related resources in Stora…
1916ee1 
…ge Account module.
@rliberoff
Add support for private endpoints and related variables in Cognitive …
befbf96 
…Services module.
@rliberoff
Add support for private endpoints in Document Intelligence (a.k.a. `F…
384e17d 
…orms`) module.
@rliberoff
Add support for private endpoints in OpenAI module.
1416008
@rliberoff
Add support for private endpoints in Azure AI Search module.
180d50b
@rliberoff
Merge branch 'main' into 45_add_optional_private_endpoints_for_storag…
4a8d678 
…e_account_and_ai_services
@rliberoff rliberoff added the enhancement New feature or request label May 30, 2024
@rliberoff rliberoff self-assigned this May 30, 2024
cmendible
cmendible requested changes May 31, 2024
View reviewed changes
Copy link
Member

@cmendible cmendible left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Change the private DNS zone names and we'll be read to merge 🎉🎉🎉

@rliberoff
Copy link
Contributor Author

Change the private DNS zone names and we'll be read to merge 🎉🎉🎉

Done. Changed as agreed!

cmendible
cmendible approved these changes May 31, 2024
View reviewed changes
Copy link
Member

@cmendible cmendible left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@cmendible cmendible merged commit 5171865 into Azure:main May 31, 2024
4 checks passed
@rliberoff rliberoff deleted the 45_add_optional_private_endpoints_for_storage_account_and_ai_services branch June 4, 2024 08:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@cmendible cmendible cmendible approved these changes

@heblasco heblasco Awaiting requested review from heblasco heblasco is a code owner

@rag2111 rag2111 Awaiting requested review from rag2111 rag2111 is a code owner

@aniturza aniturza Awaiting requested review from aniturza aniturza is a code owner

@monicacalleja monicacalleja Awaiting requested review from monicacalleja monicacalleja is a code owner

Assignees

@rliberoff rliberoff

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rliberoff @cmendible