Feature/52005 key vault ip update script (#2173)

* create build def file * finish script * use bash script for azure CLI
DFEAGILEDEVOPS · Apr 5, 2022 · c15ce57 · c15ce57
1 parent 73cea4c
commit c15ce57
Show file tree

Hide file tree

Showing 3 changed files with 41 additions and 3 deletions.
diff --git a/deploy/build-defs/add-key-vault-ip.sh b/deploy/build-defs/add-key-vault-ip.sh
@@ -0,0 +1,25 @@
+#!/bin/bash
+set -e
+
+if [ -z "$1" ]
+  then
+    echo "azure key vault instance name required"
+    exit 1
+fi
+
+if [ -z "$2" ]
+  then
+    echo "azure resource group name required"
+    exit 1
+fi
+
+if [ -z "$3" ]
+  then
+    echo "ip address required"
+    exit 1
+fi
+
+KEY_VAULT_NAME=$1
+RES_GRP=$2
+IP_ADDRESS=$3
+az keyvault network-rule add --name $KEY_VAULT_NAME --resource-group $RES_GRP --ip-address $IP_ADDRESS
diff --git a/deploy/build-defs/add-key-vault-ip.yml b/deploy/build-defs/add-key-vault-ip.yml
@@ -0,0 +1,13 @@
+trigger: none
+
+pool:
+  name: 'Azure Pipelines'
+
+steps:
+- task: AzureCLI@2
+  displayName: 'Add IPv4 Address to KeyVault'
+  inputs:
+    azureSubscription: $(AzureSubscription)
+    scriptType: bash
+    scriptPath: 'deploy/build-defs/add-key-vault-ip.sh'
+    arguments: $(KeyVaultName) $(ResourceGroup) $(IpAddress)
diff --git a/deploy/build-defs/rotate-azure-keys.yml b/deploy/build-defs/rotate-azure-keys.yml
@@ -26,7 +26,7 @@ jobs:
     inputs:
       azureSubscription: $(AzureSubscription)
       scriptType: bash
-      scriptPath: 'deploy/azure/key-vault/key-rotation/redis.sh'
+      scriptPath: 'deploy/key-rotation/redis.sh'
       arguments: $(ResourceGroupName) $(KeyVaultName) $(RedisName) $(KeyType)
       failOnStandardError: true
 - job: ServiceBusKey
@@ -36,7 +36,7 @@ jobs:
     inputs:
       azureSubscription: $(AzureSubscription)
       scriptType: bash
-      scriptPath: 'deploy/azure/key-vault/key-rotation/service-bus.sh'
+      scriptPath: 'deploy/key-rotation/service-bus.sh'
       arguments: $(ResourceGroupName) $(KeyVaultName) $(ServiceBusName) $(KeyType) $(ServiceBusUser)
       failOnStandardError: true
 - job: StorageAccountKey
@@ -46,6 +46,6 @@ jobs:
     inputs:
       azureSubscription: $(AzureSubscription)
       scriptType: bash
-      scriptPath: 'deploy/azure/key-vault/key-rotation/storage.sh'
+      scriptPath: 'deploy/key-rotation/storage.sh'
       arguments: $(ResourceGroupName) $(KeyVaultName) $(StorageAccountName) $(KeyType)
       failOnStandardError: true