Anyone have any luck configuring with azure native...
# azureg
gentle-exabyte-99244
11/26/2024, 4:00 PMAnyone have any luck configuring with azure native front door? I am trying to connect with private endpoint and call web app but wow is it hard to find a sample and the combinations of settings are a bit crazy
l
little-library-54601
11/26/2024, 4:18 PMIMO, this is Pulumi's biggest weakness. Their scope is so ambitious that the basics that are needed to truly use everything that's available are left behind, e.g. documentation and meaningful samples.
What I've generally done to try to figure this kind of thing out is:
a) manually create the resource you want in the Azure portal, e.g. in a "poc" resource group
b) use "pulumi import" against that "poc" resource into a dummy stack to generate the pulumi code needed to create the desired resource
c) use the generated code as a template / sample and adjust accordingly
g
gentle-exabyte-99244
11/26/2024, 4:19 PMReally you can import arm?
gentle-exabyte-99244
11/26/2024, 4:19 PMI was actually picking through the poc I did as that was stupid easy to do
gentle-exabyte-99244
11/26/2024, 4:19 PMWithout iac
l
little-library-54601
11/26/2024, 4:22 PMI've imported a lot of Azure resources, specifically to see what the generated code looks like.
The trickiest thing is usually figuring out the correct full resource ID (pseudo-URL) of the resource you want to import.
little-library-54601
11/26/2024, 4:22 PMBut I haven't specifically done front door.
g
gentle-exabyte-99244
11/26/2024, 4:23 PMI will say looking at my arm template is giving me some light bulbs. Fingers crossed. Thx for the tip though
gentle-exabyte-99244
11/26/2024, 4:23 PM(Never had this problem in AWS but man are azures APIs a bit insane)
l
little-library-54601
11/26/2024, 4:23 PMThat's the other thing I've done a lot - export the arm template and try to deduce property names and values for the Pulumi objects.
g
gentle-exabyte-99244
11/26/2024, 4:25 PMIt doesn’t help that routes are combined with the front door resource when they are separate otherwise
l
little-library-54601
11/26/2024, 4:28 PMI haven't had to use front door for anything to this point. My "back of napkin" mental plan for the occasion when I think I need it is to use CloudFlare instead and move anything that reasonably can be hosted on CloudFlare to CloudFlare workers.
g
gentle-exabyte-99244
11/26/2024, 4:29 PMThis is a poc for work I am trying to show teams there are better options than terraform. I don’t blame Pulumi per say it’s the APIs they build from but pain is pain
l
little-library-54601
11/26/2024, 4:34 PMPulumi auto-generates all this stuff from the provider (e.g. Azure) APIs. At a minimum it would be useful for the Pulumi docs to have links to the provider docs.
g
gentle-exabyte-99244
11/26/2024, 4:40 PMSomething for sure
gentle-exabyte-99244
11/26/2024, 4:40 PMFor instance the arm right now works to a point then you hit a mismatch with fd routes and fd resources because Pulumi combined them for some reason
t
tall-librarian-49374
11/26/2024, 6:54 PMMaybe not quite related, but a hint:
For huge resources like Frontdoor, a lot of folks miss that you can use relative IDs to define links between its different parts, e.g.
$self/frontEndConfigurations/my-frontend$selfg
gentle-exabyte-99244
11/26/2024, 6:55 PMTurns out the problem is front door falls under cdn and network namespace. And guess what chatgpt thinks you asked for front door here is front door classic
gentle-exabyte-99244
11/26/2024, 6:55 PMI figured it out but there went 5 hours of my life I won’t get back lol
m
microscopic-arm-69377
11/26/2024, 7:07 PMoof...
8 Views