Provisions Azure SQL Database and Azure Application Insights to be used with web application hosted in App Service.
// Copyright 2016-2019, Pulumi Corporation. All rights reserved.
import * as insights from "@pulumi/azure-native/insights";
import * as resource from "@pulumi/azure-native/resources";
import * as sql from "@pulumi/azure-native/sql";
import * as storage from "@pulumi/azure-native/storage";
import * as web from "@pulumi/azure-native/web";
import * as pulumi from "@pulumi/pulumi";
const resourceGroup = new resource.ResourceGroup("rg");
// Storage Account name must be lowercase and cannot have any dash characters
const storageAccount = new storage.StorageAccount("sa", {
resourceGroupName: resourceGroup.name,
kind: storage.Kind.StorageV2,
sku: {
name: storage.SkuName.Standard_LRS,
},
});
const appServicePlan = new web.AppServicePlan("asp", {
resourceGroupName: resourceGroup.name,
kind: "App",
sku: {
name: "B1",
tier: "Basic",
},
});
const storageContainer = new storage.BlobContainer("container", {
resourceGroupName: resourceGroup.name,
accountName: storageAccount.name,
publicAccess: storage.PublicAccess.None,
});
const blob = new storage.Blob("blob", {
resourceGroupName: resourceGroup.name,
accountName: storageAccount.name,
containerName: storageContainer.name,
source: new pulumi.asset.FileArchive("wwwroot"),
});
const codeBlobUrl = getSASToken(storageAccount.name, storageContainer.name, blob.name, resourceGroup.name);
const appInsights = new insights.Component("ai", {
resourceGroupName: resourceGroup.name,
kind: "web",
ingestionMode: "ApplicationInsights",
applicationType: insights.ApplicationType.Web,
});
const username = "pulumi";
// Get the password to use for SQL from config.
const config = new pulumi.Config();
const pwd = config.require("sqlPassword");
const sqlServer = new sql.Server("sqlserver", {
resourceGroupName: resourceGroup.name,
administratorLogin: username,
administratorLoginPassword: pwd,
version: "12.0",
});
const database = new sql.Database("db", {
resourceGroupName: resourceGroup.name,
serverName: sqlServer.name,
sku: {
name: "S0",
},
});
const app = new web.WebApp("webapp", {
resourceGroupName: resourceGroup.name,
serverFarmId: appServicePlan.id,
siteConfig: {
appSettings: [
{
name: "APPINSIGHTS_INSTRUMENTATIONKEY",
value: appInsights.instrumentationKey,
},
{
name: "APPLICATIONINSIGHTS_CONNECTION_STRING",
value: pulumi.interpolate`InstrumentationKey=${appInsights.instrumentationKey}`,
},
{
name: "ApplicationInsightsAgent_EXTENSION_VERSION",
value: "~2",
},
{
name: "WEBSITE_RUN_FROM_PACKAGE",
value: codeBlobUrl,
},
],
connectionStrings: [{
name: "db",
connectionString:
pulumi.all([sqlServer.name, database.name]).apply(([server, db]) =>
`Server=tcp:${server}.database.windows.net;initial catalog=${db};user ID=${username};password=${pwd};Min Pool Size=0;Max Pool Size=30;Persist Security Info=true;`),
type: web.ConnectionStringType.SQLAzure,
}],
},
});
export const endpoint = pulumi.interpolate `https://${app.defaultHostName}`;
function getSASToken(storageAccountName: pulumi.Input<string>,
storageContainerName: pulumi.Input<string>,
blobName: pulumi.Input<string>,
resourceGroupName: pulumi.Input<string>): pulumi.Output<string> {
const blobSAS = storage.listStorageAccountServiceSASOutput({
accountName: storageAccountName,
protocols: storage.HttpProtocol.Https,
sharedAccessStartTime: "2021-01-01",
sharedAccessExpiryTime: "2030-01-01",
resource: storage.SignedResource.C,
resourceGroupName: resourceGroupName,
permissions: storage.Permissions.R,
canonicalizedResource: pulumi.interpolate `/blob/${storageAccountName}/${storageContainerName}`,
contentType: "application/json",
cacheControl: "max-age=5",
contentDisposition: "inline",
contentEncoding: "deflate",
});
const token = blobSAS.apply(x => x.serviceSasToken);
return pulumi.interpolate `https://${storageAccountName}.blob.core.windows.net/${storageContainerName}/${blobName}?${token}`;
}
git clone https://github.com/pulumi/examplescd examples/azure-ts-appservice