-
Notifications
You must be signed in to change notification settings - Fork 133
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Investigate enabling idempotency for the core MLZ deployment #695
Comments
Note: some ARM idempotency issues may be related to calculated names of the deployments. If the names change then ARM sees it as a new resource. |
Can very likely be implemented in bicep using conditional resource deployment; ie:
|
This error showed up again from a customer implementation who is looking to use MLZ Bicep as the "root" stamp and deploy on top of it with new resources: {
...
"status": "Failed",
"error": {
"code": "InUseSubnetCannotBeDeleted",
"message": "Subnet <subnet ID> is in use by /subscriptions/<subscription id>/resourceGroups/<resource group name>/providers/Microsoft.Network/networkInterfaces/<network interface name>/ipConfigurations/<private endpoint name> and cannot be deleted. In order to delete the subnet, delete all the resources within the subnet. See aka.ms/deletesubnet.",
"details": []
}
} |
This is the resource that caused this error for my team. Relevant doc we found. missionlz/src/bicep/modules/hubNetwork.bicep Lines 154 to 172 in f261f1d
|
Please consider the concerns in #700 as part of this work. |
Closing due to consensus that some resource providers will not be idempotent, like networking and keyvault. |
Benefit/Result/Outcome
So that an IT Admin can manage ongoing MLZ configuration changes from Bicep code.
Description
Deploying MLZ a second time without modifications results in a deployment error because at least one resource provider tries to destroy and re-create resources rather than performing an update.
For example, a second deployment of MLZ to the same subscription with no changes in parameters or Bicep code results in this error:
The goal of the spike is to determine if we can make simple changes to the structure of the Bicep code to enable idempotent deployments.
**Work on this spike is limited to: 16 hours
Possible Outcomes
The spike will result in either one of the following outcomes (not both):
The text was updated successfully, but these errors were encountered: