-
Notifications
You must be signed in to change notification settings - Fork 77
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge branch 'main' into SQL-MI-changes2
- Loading branch information
Showing
22 changed files
with
225 additions
and
60 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,18 @@ | ||
{ | ||
"log_level": "info", | ||
"ado": { | ||
"organization": "CSUSolEng", | ||
"project": "Well-Architected Framework", | ||
"wit": "GitHub Issue", | ||
"states": { | ||
"new": "New", | ||
"closed": "Closed", | ||
"reopened": "New", | ||
"deleted": "Removed", | ||
"active": "In Progress" | ||
}, | ||
"bypassRules": true, | ||
"autoCreate": true, | ||
"areaPath": "Well-Architected Framework" | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,31 @@ | ||
name: Sync Issues to Azure DevOps Work Items | ||
|
||
permissions: | ||
contents: read | ||
|
||
on: | ||
issues: | ||
types: [opened, closed, deleted, reopened, edited, labeled, unlabeled, assigned, unassigned] | ||
issue_comment: | ||
types: [created] | ||
|
||
jobs: | ||
alert: | ||
runs-on: ubuntu-latest | ||
name: Sync workflow | ||
if: github.repository == 'Azure/Azure-Proactive-Resiliency-Library-v2' | ||
|
||
steps: | ||
- name: Checkout code | ||
uses: actions/checkout@v4 | ||
with: | ||
fetch-depth: 0 | ||
|
||
- name: GitHub/ADO Sync | ||
uses: a11smiles/GitSync@v1.2.3 | ||
env: | ||
ado_token: '${{ secrets.ADO_PERSONAL_ACCESS_TOKEN }}' | ||
github_token: '${{ secrets.GH_PERSONAL_ACCESS_TOKEN }}' | ||
config_file: './.github/actions-config/gh-ado-sync-config.json' | ||
with: | ||
ado: ${{ secrets.ADO_MAPPINGS_HANDLES }} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
1 change: 0 additions & 1 deletion
1
.../4b1a45af-d35f-442d-922a-a3e7b6052de1.kql → .../b14ee8ed-7d27-447b-b6fb-6472cb5f4b75.kql
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,2 +1 @@ | ||
// under-development | ||
|
1 change: 1 addition & 0 deletions
1
azure-resources/Compute/galleries/kql/b3c3ba1d-7de6-442d-8c50-023330fbf765.kql
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
// under-development |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
2 changes: 2 additions & 0 deletions
2
azure-resources/Compute/virtualMachines/kql/587ca3e4-113b-4c4f-b4e0-92cd8d2065b6.kql
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
// cannot-be-validated-with-arg | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,5 @@ | ||
--- | ||
title: Dashboard | ||
geekdocCollapseSection: true | ||
geekdocHidden: false | ||
--- |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,7 @@ | ||
--- | ||
title: grafana | ||
geekdocCollapseSection: true | ||
geekdocHidden: false | ||
--- | ||
|
||
{{< azure-resources-recommendationlist name="azure-resources-recommendationlist" >}} |
14 changes: 14 additions & 0 deletions
14
azure-resources/Dashboard/grafana/kql/6cd57b65-ef84-4088-9ada-c0d8de74c2f7.kql
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,14 @@ | ||
// Azure Resource Graph Query | ||
// Provides a list of Azure Managed Grafana resources that do not zone redundancy enabled. | ||
resources | ||
| where type =~ "Microsoft.Dashboard/grafana" | ||
| extend zoneRedundancy = properties.zoneRedundancy | ||
| where zoneRedundancy !~ "Enabled" | ||
| project | ||
recommendationId = "6cd57b65-ef84-4088-9ada-c0d8de74c2f7", | ||
name, | ||
id, | ||
tags, | ||
param1 = strcat("location: ", location), | ||
param2 = strcat("sku: ", sku.name), | ||
param3 = strcat("zoneRedundancy: ", zoneRedundancy) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,19 @@ | ||
- description: Enable zone redundancy in Managed Grafana | ||
aprlGuid: 6cd57b65-ef84-4088-9ada-c0d8de74c2f7 | ||
recommendationTypeId: null | ||
recommendationControl: High Availability | ||
recommendationImpact: Medium | ||
recommendationResourceType: Microsoft.Dashboard/grafana | ||
recommendationMetadataState: Active | ||
longDescription: | | ||
Managed Grafana Standard tier is hosted on a dedicated set of VMs to provide redundancy. With zone redundancy enabled, VMs are spread across availability zones (AZ). Related resources are also configured for AZ. Zone redundancy can only be enabled when creating the Azure Managed Grafana instance. | ||
potentialBenefits: Enhanced Managed Grafana resilience to failures | ||
pgVerified: false | ||
publishedToLearn: false | ||
automationAvailable: true | ||
tags: null | ||
learnMoreLink: | ||
- name: Azure Managed Grafana service reliability | ||
url: "https://learn.microsoft.com/azure/managed-grafana/high-availability" | ||
- name: Enable zone redundancy in Azure Managed Grafana | ||
url: "https://learn.microsoft.com/Azure/managed-grafana/how-to-enable-zone-redundancy" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
4 changes: 2 additions & 2 deletions
4
azure-resources/DesktopVirtualization/scalingPlans/recommendations.yaml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
21 changes: 19 additions & 2 deletions
21
azure-resources/Network/connections/kql/f6a14b32-a727-4ace-b5fa-7b1c6bdff402.kql
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,2 +1,19 @@ | ||
// under-development | ||
|
||
// Azure Resource Graph Query | ||
// Find all ExpressRoute Connections that are connected to ErGw3AZ or UltraPerformance gateway sku that don't have | ||
// FastPath enabled for both the Gateway Bypass or Private Endpoint/Link service. | ||
resources | ||
| where type == "microsoft.network/connections" | ||
| where properties.connectionType =~ 'expressroute' | ||
| extend gatewayId = tostring(properties.virtualNetworkGateway1.id) | ||
| join kind=inner ( | ||
resources | ||
| where type =~ "Microsoft.Network/virtualNetworkGateways" | ||
| where properties.sku.name in~ ("ErGw3AZ", "UltraPerformance") | ||
| extend gatewayId = tostring(id) | ||
) on gatewayId | ||
| extend erGatewayBypass = tobool(properties.expressRouteGatewayBypass) | ||
| extend privateLinkFastPath = tobool(properties.enablePrivateLinkFastPath) | ||
| where not(erGatewayBypass) or not(privateLinkFastPath) | ||
| project recommendationId = "f6a14b32-a727-4ace-b5fa-7b1c6bdff402", id, name, tags, | ||
param1 = iff(erGatewayBypass, "Enabled: Gateway Bypass", "Disabled: Gateway Bypass"), | ||
param2 = iff(privateLinkFastPath, "Enabled: PE FastPath", "Disabled: PE FastPath"), |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
31 changes: 20 additions & 11 deletions
31
azure-resources/Resources/resourceGroups/kql/98bd7098-49d6-491b-86f1-b143d6b1a0ff.kql
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,13 +1,22 @@ | ||
// Azure Resource Graph Query | ||
// Provides a list of Azure Resource Groups that have resources deployed in a region different than the Resource Group region | ||
resources | ||
| project id, name, tags, resourceGroup, location | ||
| where location != "global" // exclude global resources | ||
| where resourceGroup != "networkwatcherrg" // exclude networkwatcherrg | ||
| where split(id, "/", 3)[0] =~ "resourceGroups" // resource is in a resource group | ||
| extend resourceGroupId = strcat_array(array_slice(split(id, "/"),0,4), "/") // create resource group resource id | ||
| join (resourcecontainers | project containerid=id, containerlocation=location ) on $left.resourceGroupId == $right.['containerid'] // join to resourcecontainers table | ||
| where location != containerlocation | ||
| project recommendationId="98bd7098-49d6-491b-86f1-b143d6b1a0ff", name, id, tags | ||
| order by id asc | ||
|
||
resourcecontainers | ||
| where type =~ "Microsoft.Resources/subscriptions/resourceGroups" | ||
| project resourceGroupId = tolower(id), resourceGroupLocation = location | ||
| join kind = inner ( | ||
resources | ||
| where location !~ "Global" and // Exclude global resources | ||
resourceGroup !~ "NetworkWatcherRG" and // Exclude resources in the NetworkWatcherRG | ||
id has "/resourceGroups/" // Exclude resources not in a resource group | ||
| project id, name, tags, resourceGroup, location, resourceGroupId = tolower(strcat_array(array_slice(split(id, "/"), 0, 4), "/")) | ||
) | ||
on resourceGroupId | ||
| where resourceGroupLocation !~ location | ||
| project | ||
recommendationId = "98bd7098-49d6-491b-86f1-b143d6b1a0ff", | ||
name, | ||
id, | ||
tags, | ||
param1 = strcat("resourceLocation: ", location), | ||
param2 = strcat("resourceGroupLocation: ", resourceGroupLocation), | ||
param3 = strcat("resourceGroup: ", resourceGroup) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.