Skip to content

ci: Enhance Azure Dev workflow with submodule support and service principal configuration#126

Open
Harmanpreet-Microsoft wants to merge 20 commits intomicrosoft:mainfrom
Harmanpreet-Microsoft:main
Open

ci: Enhance Azure Dev workflow with submodule support and service principal configuration#126
Harmanpreet-Microsoft wants to merge 20 commits intomicrosoft:mainfrom
Harmanpreet-Microsoft:main

Conversation

@Harmanpreet-Microsoft
Copy link
Copy Markdown
Contributor

@Harmanpreet-Microsoft Harmanpreet-Microsoft commented Apr 6, 2026

Purpose

This pull request updates the GitHub Actions workflows for Azure deployments to improve CI/CD automation and reliability, especially for service principal-based deployments. The main changes include ensuring submodules are checked out, dynamically configuring Bicep parameters for service principals, automating resource group and environment setup, and adding a robust retry mechanism for infrastructure provisioning.

Key changes include:

Service Principal and Environment Configuration:

  • Added steps in both .github/workflows/azd-template-validation.yml and .github/workflows/azure-dev.yml to dynamically set principalType and principalId in infra/main.bicepparam using environment variables, enabling support for service principal authentication in CI/CD scenarios. [1] [2]
  • Added logic to fetch the service principal object ID and set it as an environment variable for use in subsequent steps.
  • Automated the creation of the resource group and Azure Developer CLI environment if they do not already exist, improving idempotency and reducing manual setup.

Workflow Reliability and Robustness:

  • Implemented a retry mechanism for the infrastructure provisioning step: if the first attempt fails, the workflow re-authenticates, checks the resource group status, waits for deletion if necessary, recreates the group, and retries provisioning.

General Workflow Improvements:

  • Ensured all submodules are checked out recursively in both workflows to avoid missing dependencies. [1] [2]
  • Set additional environment variables (TEMP, principalId, principalType, etc.) to ensure consistency and compatibility across workflow steps. [1] [2]

These changes make the workflows more robust, automate key setup steps, and better support service principal-based deployments in CI/CD pipelines.

  • ...

Does this introduce a breaking change?

  • Yes
  • No

Golden Path Validation

  • I have tested the primary workflows (the "golden path") to ensure they function correctly without errors.

Deployment Validation

  • I have validated the deployment process successfully and all services are running as expected with this change.

What to Check

Verify that the following are valid

  • ...

Other Information

@Harmanpreet-Microsoft
Add submodule support in checkout step and set principalId in environ…
78f93e9 
…ment variables
@Harmanpreet-Microsoft
Add timeout to template validation job and update principalId handling
58f1e44
@Harmanpreet-Microsoft
Add TEMP environment variable and ensure timeout is set for template …
33dd3c2 
…validation job
@Harmanpreet-Microsoft
Configure bicepparam for service principal in template validation wor…
08a473b 
…kflow
@Harmanpreet-Microsoft
Add submodule support in checkout step of Azure Dev workflow
480b376
@Harmanpreet-Microsoft
Add TEMP environment variable to Azure Dev workflow
9211252
@Harmanpreet-Microsoft
Add support for service principal in Azure Dev workflow
b2524f6
@Harmanpreet-Microsoft
Merge pull request #3 from microsoft/main
4ba6f45 
chore: Update post-release process steps and fix deployment issues
@Harmanpreet-Microsoft
feat: Configure Power BI API permissions for service principal in Azu…
517abd6 
…re Dev workflow
@Harmanpreet-Microsoft
feat: Enhance infrastructure provisioning with retry mechanism and fr…
aaf5167 
…esh authentication token
@Harmanpreet-Microsoft
feat: Add Power BI API access check before infrastructure provisioning
ff47a00
@Harmanpreet-Microsoft
refactor: Remove Power BI API permissions configuration and access ch…
beaaacf 
…eck from deployment workflow
@Harmanpreet-Microsoft
feat: Update AZD environment configuration to set principal type and …
6574965 
…ID for Service Principal
@Harmanpreet-Microsoft
feat: Add resource group creation and environment setup in AZD workflow
6297fe0
@Harmanpreet-Microsoft
feat: Enhance resource group creation logic to derive name from envir…
983e5ca 
…onment if not provided
@Harmanpreet-Microsoft
feat: Add re-authentication and retry logic for infrastructure provis…
586e2bd 
…ioning failures
@Harmanpreet-Microsoft
feat: Add resource group deletion check and retry logic during provis…
b365ea2 
…ioning
@Harmanpreet-Microsoft
feat: Update fabricWorkspaceMode to 'none' for consistent environment…
1c1e6a5 
… configuration
@Harmanpreet-Microsoft
feat: Remove re-authentication and retry logic from infrastructure pr…
5e2408e 
…ovisioning
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Avijit-Microsoft Avijit-Microsoft Awaiting requested review from Avijit-Microsoft Avijit-Microsoft is a code owner

@Roopan-Microsoft Roopan-Microsoft Awaiting requested review from Roopan-Microsoft Roopan-Microsoft is a code owner

@Prajwal-Microsoft Prajwal-Microsoft Awaiting requested review from Prajwal-Microsoft Prajwal-Microsoft is a code owner

@Vinay-Microsoft Vinay-Microsoft Awaiting requested review from Vinay-Microsoft Vinay-Microsoft is a code owner

@aniaroramsft aniaroramsft Awaiting requested review from aniaroramsft aniaroramsft is a code owner

@dgp10801 dgp10801 Awaiting requested review from dgp10801 dgp10801 is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Harmanpreet-Microsoft