Skip to content
This repository has been archived by the owner on Jun 25, 2024. It is now read-only.

Example of how to connect via Service Principal in DevOps YAML #188

Open
dvasdekis opened this issue Dec 1, 2021 · 0 comments
Open

Example of how to connect via Service Principal in DevOps YAML #188

dvasdekis opened this issue Dec 1, 2021 · 0 comments

Comments

@dvasdekis
Copy link

dvasdekis commented Dec 1, 2021
edited
Loading

Thanks for an awesome tool! I did spend way too long though trying to get the tool to connect to the databricks instance via Devops. Now that it's working, I thought I might share it in the docs.

For the below use case, I wanted to deploy any code from a folder (/azure/databricks) on main branch to a folder (/repo) on my databricks instance, and refresh that folder on any change to main. It uses MANAGED connection type, so Databricks will automatically provision the service user - vital for real CI across multiple environments.

The below assumes you have an Azure Resource Manger connection set up in Devops that points to the Azure resource group, and that you have granted the ARM Devops Service Principal 'Contributor' level permissions in Databricks.

Where should I stick this example in the repo?

trigger:
  - main

jobs:
- job: Deploy_notebooks_to_dbworkspace 
  pool:
    vmImage: 'windows-latest'  # Haven't tried on Linux
  steps:
  - task: AzureCLI@2
    inputs:
      azureSubscription: 'my-devops-connection-name'  # Name of devops service connection to Azure
      scriptType: ps
      scriptLocation: inlineScript
      inlineScript: |
        Install-Module -Name azure.databricks.cicd.tools -Scope CurrentUser -force
        Import-Module -Name azure.databricks.cicd.tools
        Connect-Databricks -Region "australiaeast" -ApplicationId "$env:servicePrincipalId" -Secret "$env:servicePrincipalKey" -ResourceGroupName "my-azure-rg-name" -SubscriptionId "$(az account show --query id --output tsv)" -TenantId "$env:tenantId" -WorkspaceName "my-Correctly-Capitalised-DB-workspace-name"
        Import-DatabricksFolder -Region australiaeast -LocalPath '$(Build.SourcesDirectory)/azure/databricks' -DatabricksPath '/repo' -Clean
      addSpnToEnvironment: true  # Injects $env:servicePrincipalId, $env:servicePrincipalKey, $env:tenantId
      powerShellErrorActionPreference: 'stop' # Optional
      failOnStandardError: false # Optional
      azurePowerShellVersion: 'latestVersion' # Required. Options: latestVersion, otherVersion
      pwsh: false # Optional. If true, then will use PowerShell Core pwsh.exe
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@dvasdekis