Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add support for HANA Scaleout with HSR #637

Merged
merged 652 commits into from
Sep 24, 2024
Merged

Add support for HANA Scaleout with HSR #637

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
652 commits
Select commit Hold shift + click to select a range
9360375
Update fence_kdump_nodes configuration in /etc/kdump.conf
hdamecharla Mar 6, 2024
d4605ac
Update DNS check in OS configuration playbook
Mar 6, 2024
e03a388
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
Mar 6, 2024
a1a351d
Update database cluster IP address variable
hdamecharla Mar 6, 2024
faa8c53
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
hdamecharla Mar 6, 2024
b32a178
Update disk configuration variables
Mar 6, 2024
10819bc
Fix domain\service account names in mssql-alwayson-prerequisites.yaml
Mar 6, 2024
1120dbb
Update domain account names in mssql-alwayson-config.yaml
Mar 6, 2024
982d4bb
Update SQL Server service account format
Mar 6, 2024
3061b20
Update domain service account format in SQL login
Mar 6, 2024
74c339f
Add mount for local kdump file path
hdamecharla Mar 6, 2024
9af377d
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
hdamecharla Mar 6, 2024
fb6ba46
Update SQL Server service account names***
Mar 6, 2024
eeff402
Update supported_tiers to node_tier in main.yaml
hdamecharla Mar 6, 2024
f275cf0
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
hdamecharla Mar 6, 2024
118b108
Fix formatting in mssql-alwayson-prerequisites.yaml
Mar 6, 2024
3611b24
Update SQL service account names in mssql-alwayson-prerequisites.yaml
Mar 6, 2024
2575da6
Fix proximity placement group logic in vm-scs.tf
Mar 7, 2024
bfb62d6
Update kdump mount path, update kdump path and restart kdump service
hdamecharla Mar 7, 2024
df46fbd
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
hdamecharla Mar 7, 2024
b069f2b
Refactor proximity_placement_group_id calculation in vm-app.tf
Mar 7, 2024
898df8b
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
Mar 7, 2024
799e2a6
Fix SQL Server Always On configuration
Mar 7, 2024
96fac4c
Update SQL Server SPNs and service account
Mar 7, 2024
13353dc
Update SQL Server AlwaysOn configuration
hdamecharla Mar 7, 2024
00b9735
Add error handling for deployment account access
Mar 7, 2024
dd5286b
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
Mar 7, 2024
77e29b7
Update AMS subnet configuration
Mar 8, 2024
d7b5738
Update default_action in key_vault.tf
Mar 8, 2024
d72dade
Update ams.tf to use arm_id for subnet name and network name
Mar 8, 2024
1ee1e04
Refactor Agent_IP variable to conditionally include it in storage and…
Mar 8, 2024
30c45d3
Refactor admin password authentication in vm-deployer.tf
Mar 8, 2024
895755f
Add Agent IP configuration option
Mar 8, 2024
505c919
Add USE_MSI check before ARM_CLIENT_ID check
Mar 8, 2024
e21bf8b
Refactor password handling in sap_deployer module
Mar 8, 2024
c344737
Update login process in deployment pipeline
Mar 8, 2024
d3ddd03
Add random password generation for deployer and update dns_label vari…
Mar 8, 2024
6db6d15
Update Azure Pipeline script to handle MSI usage***
Mar 8, 2024
5412a91
Remove unnecessary echo statement in login section
Mar 8, 2024
f85a186
Update transform.tf to include additional conditions for app_use_avset
Mar 8, 2024
d947a48
Fix zone ignore_changes in app_tier VMs
Mar 8, 2024
a30dde3
Add azure-devops extension installation if not already installed
Mar 8, 2024
35dbb3e
Add files.pythonhosted.org to list of URLs
Mar 8, 2024
7274f36
Update tf_version to 1.7.4 in SDAF-General variable group
Mar 8, 2024
b1f5625
Add log file functionality to Test-SDAFReadiness.ps1 script
hdamecharla Mar 8, 2024
3021cba
Refactor sbd_device variable assignment in 1.17.1.2-sbd.yaml
hdamecharla Mar 8, 2024
20281c6
Refactor sbd_device variable assignment
hdamecharla Mar 8, 2024
6545b5f
Fix variable naming inconsistency in ANF HANA data and log volumes
Mar 8, 2024
136e8e2
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
Mar 8, 2024
e8ad413
Update Agent_IP handling in sap_landscape module
Mar 8, 2024
bbca7dc
Add conditional logic for Agent IP in module.tf and add add_Agent_IP …
Mar 8, 2024
229c5b3
Fix virtual host assignment in hosts file task
hdamecharla Mar 8, 2024
bb6dcd7
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
hdamecharla Mar 8, 2024
aa1aee9
Variable name adjustments
Mar 8, 2024
7009623
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
Mar 8, 2024
4dfa924
Remove create_vaults_and_storage_dns_a_records variable
Mar 8, 2024
58ccb83
Add systemd reload and stop SBD service in cluster setup
hdamecharla Mar 8, 2024
d73d479
Refactor 2.4 Hosts: Remove unnecessary condition and update debug mes…
hdamecharla Mar 8, 2024
ce6600d
Update crm resource command to use status instead of show
Mar 8, 2024
8c88dee
Update proximity_placement_group_id in vm-app.tf
Mar 8, 2024
3578115
Update proximity_placement_group_id in vm-app.tf
Mar 8, 2024
3a6bd42
Add proximity placement group ID to virtual machine scale set resource
Mar 8, 2024
390981a
AvSet logic
Mar 8, 2024
f70e592
Refactor STONITH Azure fence agent creation in 1.17 Generic Pacemaker…
hdamecharla Mar 8, 2024
844b449
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
hdamecharla Mar 8, 2024
567bf9c
Add file share and key vault creation
Mar 9, 2024
4a83c6c
Remove unnecessary blank lines in Test-SDAFReadiness.ps1 script
Mar 9, 2024
56a3c81
Refactor cluster configuration and stop SBD service
hdamecharla Mar 11, 2024
d51686e
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
hdamecharla Mar 11, 2024
485499c
convert to list
hdamecharla Mar 11, 2024
91df5f2
Refactor virtual host retrieval in 2.4 Hosts playbook
hdamecharla Mar 11, 2024
3738a18
Add a script for just checking URLs
Mar 11, 2024
43e2b47
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
Mar 11, 2024
132cbd9
Refactor virtual host retrieval logic in main.yaml
hdamecharla Mar 11, 2024
57d63e9
- Add cluster restart and wait tasks
hdamecharla Mar 11, 2024
33afa31
refactor the hosts file
hdamecharla Mar 11, 2024
aaafd21
This commit refactors the logic for retrieving the virtual host in th…
hdamecharla Mar 11, 2024
2fa060f
Refactor 2.4 Hosts: Set virtual_host fact from the fetched PAS server…
hdamecharla Mar 11, 2024
75c2695
Refactor 2.4 Hosts file tasks to use pas_server_temp for virtual host
hdamecharla Mar 11, 2024
20ed517
Fix pas_virtual_hostname assignment in 2.4-hosts-file
hdamecharla Mar 11, 2024
e61d122
Fix virtual host duplication issue in 2.4 Hosts file
hdamecharla Mar 11, 2024
65b67f4
Remove the wait for the first run
Mar 11, 2024
3fd8795
Update Stonith SBD configuration in cluster
hdamecharla Mar 11, 2024
49ea369
When Terraform plan failed, stop the script from executing Terraform …
rdeveen Mar 11, 2024
3a7f5e2
Remove unnecessary variable assignment in Test-SDAFURLs.ps1 script
Mar 11, 2024
24fdd2f
Fix syntax error in installer.sh
Mar 11, 2024
b468fc9
Merge branch 'main' into experimental
hdamecharla Mar 11, 2024
4dd161c
Update github-actions-ansible-lint.yml
hdamecharla Mar 11, 2024
180bdd1
Fix firewalld module fqcn in pre_checks.yml
hdamecharla Mar 11, 2024
9449925
Add optional extended log collection, fix kdump_enabled undefined var…
daradicscsaba Mar 11, 2024
d21f7c4
Fix conditional check for sapinst_instdir_exists
Mar 11, 2024
a413d2a
Add additional destination port ranges to NSG rule
hdamecharla Mar 11, 2024
6d1ab6c
Merge commit 'db20ac2a47d9d00329385330cb4af6b3c726c400' into experime…
hdamecharla Mar 12, 2024
620a096
Merge commit 'fa802c9c7418e9f0305479e2f84c64097f5524ca' into experime…
hdamecharla Mar 12, 2024
06893e6
Merge commit 'ce9cb251f69a4216f08105d17f38b3408056acaa' into experime…
hdamecharla Mar 14, 2024
52c19ba
Merge commit '7decc6e108cc93d29d4a68b641cc78a088f62d2c' into experime…
hdamecharla Mar 15, 2024
3ad61a4
Oracle-non-asm (#566)
msftvapolasa Mar 16, 2024
e1e14a3
Remove whitespace
Mar 16, 2024
368aceb
Linting
Mar 16, 2024
50d96c2
More linting
Mar 16, 2024
ce6a6ef
Fixing typo
Mar 16, 2024
1fff160
Support zonal shared disks (#567)
KimForss Mar 19, 2024
98fed1d
Hotfix/scaleout anf multi-node standby (optional ) (#568)
shekharsorot Mar 25, 2024
44aee32
Bring in Scale out improvements (#569)
KimForss Mar 25, 2024
429219f
Refactor networking tasks for HANA scaleout
hdamecharla Mar 26, 2024
8fe40b8
Update network interface conditions in main.yaml
Mar 26, 2024
4e99d6a
Add ability to deploy the Monitoring extension (#570)
KimForss Mar 27, 2024
e4312e7
Update subnet prefixes to use CIDR notation
hdamecharla Mar 27, 2024
641f415
Control Private Endpoint DNS registration (#571)
KimForss Mar 27, 2024
d2d7cf4
Update SAP HANA network details extraction and display
hdamecharla Mar 28, 2024
9344c27
Update SAP OS configuration playbook and hosts file configuration tasks
hdamecharla Mar 28, 2024
c5a26af
Update count condition for azurerm_private_dns_zone
hdamecharla Mar 28, 2024
8d5572f
Fix subnet_client_cidr calculation in SAP OS configuration playbook
Mar 28, 2024
086df3c
Update DB virtual hostname resolution in 2.4 Hosts file
Mar 28, 2024
f9cc7ed
Fix calculation of db_so_virtualhost_ip in 2.4-hosts-file
hdamecharla Mar 29, 2024
e7b0351
Install defender extension (#572)
KimForss Mar 29, 2024
5e751e7
add calculation of virtual host for scaleout
hdamecharla Mar 29, 2024
1af6382
Fix IP address resolution in main.yaml
hdamecharla Mar 29, 2024
2480209
Update github-actions-ansible-lint.yml
KimForss Apr 2, 2024
bbee0d7
Change to use import_role instead of include_role (#574)
KimForss Apr 2, 2024
797df19
Add No log for access token and SAP Media Share as part of Install ex…
jaskisin Apr 2, 2024
64c232e
Update enable_db_lb_deployment condition in variables_local.tf
Apr 2, 2024
31d8ea2
Remove redundant code for monitoring defender extensions
Apr 2, 2024
ac6d345
Refactor monitoring defender extensions for app and scs tiers
Apr 2, 2024
b8a941d
Refactor enable_db_lb_deployment logic in variables_local.tf
Apr 2, 2024
089dada
Update enable_db_lb_deployment logic in variables_local.tf
Apr 2, 2024
fe13037
Remove redundant code for iscsi monitoring defender
Apr 2, 2024
ed849d0
Update enable_db_lb_deployment logic in variables_local.tf
Apr 3, 2024
9694666
Update failed_when condition in oracle-postprocessing.yaml
Apr 3, 2024
6927441
Refactor enable_db_lb_deployment logic in variables_local.tf
Apr 7, 2024
314c50b
Add AVG support for Scale out scenarios (#577)
KimForss Apr 8, 2024
2c44110
Update subnet_cidr_storage in sap-parameters.tmpl
Apr 8, 2024
5971b18
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
Apr 8, 2024
34545ba
Update hosts jinja for client subnet
Apr 10, 2024
0c52a83
Update SAP-specific configuration playbook for HANA database scale-ou…
Apr 10, 2024
8e8e93c
Version update
Apr 10, 2024
59082da
Simplify Web App Identity management
Apr 11, 2024
1e05433
Update Azure package versions in SDAFWebApp.csproj
Apr 11, 2024
54156d7
Update Web Application authentication configuration script
Apr 11, 2024
4f98331
Update Web Application authentication configuration script
Apr 11, 2024
c62b371
Update Web Application authentication configuration script
Apr 11, 2024
e4a8724
Add SLES 15.3, 15.4, and 15.5 repositories
Apr 11, 2024
08c516d
Update Web Application authentication configuration script and simpli…
Apr 11, 2024
25b0097
Refactor Web App Identity management and update authentication config…
Apr 11, 2024
f805acc
Update Web Application authentication configuration script
Apr 11, 2024
bd47a8d
Update Web Application authentication configuration script and simpli…
Apr 11, 2024
09cd30d
Commented out SSH trust relationship checks in 1.17.2-provision.yml
devanshjainms Apr 11, 2024
ecf5b33
Revert "Commented out SSH trust relationship checks in 1.17.2-provisi…
devanshjainms Apr 11, 2024
6b55090
ACSS updates
Apr 15, 2024
c0ad23c
Oracle simplification
Apr 15, 2024
3591604
Add AutoUpdate.Enabled configuration in 1.1-swap role and enable pack…
Apr 15, 2024
3bbaeb1
Update deployment type configuration in OS and SAP specific playbooks
Apr 15, 2024
1472a1b
Update AutoUpdate.Enabled configuration in 1.1-swap role and add Exte…
Apr 15, 2024
5b8860f
Update AutoUpdate.Enabled configuration in 1.1-swap role and add Exte…
Apr 15, 2024
c720925
Update WAAgent package and restart service in 1.1-swap role
Apr 15, 2024
3faf5d1
Update WAAgent package and restart service in 1.1-swap role
Apr 15, 2024
fee5a67
Update AutoUpdate.Enabled configuration in 1.1-swap role and add Exte…
Apr 15, 2024
8f18d14
Update WAAgent package and restart service in 1.4-packages role
Apr 15, 2024
43cce2b
Update waagent configuration check in 1.4-packages role
Apr 16, 2024
046a05e
Update waagent configuration check and systemd service reload in 1.4-…
Apr 16, 2024
268b4ef
Update AutoUpdate.Enabled configuration and add Extensions.WaitForClo…
Apr 16, 2024
c1fa510
Update waagent configuration check and systemd service reload in 1.1-…
Apr 16, 2024
5b5925a
Update waagent configuration check and systemd service reload in 1.1-…
Apr 16, 2024
84f75ee
Update database_high_availability condition in playbook_04_00_01_db_h…
Apr 16, 2024
c408a4b
Add the ability to block app registration
Apr 17, 2024
015b557
Update systemd service file path in 5.6.7-config-systemd-sap-start.yml
Apr 17, 2024
46ffa2b
Update systemd service file path in 5.6.7-config-systemd-sap-start.yml
Apr 17, 2024
e19406b
Update systemd service file path in 5.6.7-config-systemd-sap-start.yml
Apr 17, 2024
ad31c8a
Update web_instance_number and add web_sid variable in sap_system/tra…
Apr 17, 2024
a3c6504
Fix validation error message for web dispatcher sid in variables_glob…
Apr 17, 2024
d47e2c8
Remove chkconfig package from os-packages.yaml
Apr 17, 2024
57e8c6a
Update systemd service file path in 5.6.7-config-systemd-sap-start.yml
Apr 17, 2024
d8f95ba
Update OS version check for RHEL 8.2 and SLES 15 in 5.6.1-set_runtime…
Apr 17, 2024
f0255c3
Update OS version check for RHEL 9.0 or newer in 1.4.0-packages-RedHa…
Apr 17, 2024
448c26b
Update Oracle ASM backup process and fix file permissions
Apr 17, 2024
c482664
Fix file path in 1.4.0-packages-RedHat-prep.yaml
Apr 17, 2024
29a5216
Update OS version check for RHEL 9.0 or newer in 1.4.0-packages-RedHa…
Apr 17, 2024
b2aebae
Update file path and preserve file permissions in 1.4.0-packages-RedH…
Apr 17, 2024
ed45a50
Fix action values in playbook_04_00_01_db_ha.yaml and roles-db/4.1.3-…
Apr 17, 2024
2875bc3
Fix action values in playbook_04_00_01_db_ha.yaml and roles-db/4.1.3-…
Apr 17, 2024
f377dd9
Update wait time for StartService in 5.6 SCS/ERS Validation
Apr 18, 2024
41751f2
Update Terraform version to 1.8.0 in deployment scripts and tfvar_var…
Apr 18, 2024
d461c99
Fix missing else statement in deploy control plane pipeline
Apr 18, 2024
68d5474
Fix missing else statement in deploy control plane pipeline
Apr 18, 2024
69538ca
Fix missing else statement in deploy control plane pipeline
Apr 18, 2024
626be75
Fix missing else statement in deploy control plane pipeline
Apr 18, 2024
ebd8a4e
Fix missing else statement in deploy control plane pipeline
Apr 18, 2024
c7b007e
Fix missing else statement in deploy control plane pipeline
Apr 18, 2024
50378f7
Fix missing else statement in deploy control plane pipeline
Apr 19, 2024
f7a2435
Update virtual machine extension reference in vm.tf
Apr 19, 2024
e137a98
Update virtual machine extension version to 1.0 in vm.tf
Apr 19, 2024
f5d6c43
Add Observer VM for HANA
Apr 19, 2024
c94cb32
Local Feature/scaleout hsr to upstream scale-out HSR branch (#581)
shekharsorot Apr 27, 2024
58922f6
Merge main into scaleout-hsr
May 17, 2024
48442ba
chore: Refactor deployment scripts and Terraform modules
May 17, 2024
1469ca4
Refactor deployment scripts and Terraform modules
May 17, 2024
edd6341
chore: Mount SAP TransFilesystems and handle remounting when not usin…
May 17, 2024
9c14766
Fix zonal code for observer
May 17, 2024
acc579b
Don't add the client network if not used
May 17, 2024
f97a4e2
Add become: true for reboot
May 17, 2024
79fe094
Don't fail the reboot
May 17, 2024
3e36458
Fix the merge conflicts
May 19, 2024
7c504bb
Rename variables
May 19, 2024
9c44a03
chore: Remove commented out code for database_high_availability in AN…
May 19, 2024
e566b8e
chore: Update variable names and fix merge conflicts
May 19, 2024
94c7446
Use UID and not the actual account
May 19, 2024
5935860
Remove SAS tokes from storage account
May 25, 2024
1d63049
chore: Refactor ANF Mount task to improve readability and remove comm…
May 25, 2024
c626bed
Split the task
May 25, 2024
0a0558c
Use AzureAD provider for storage
May 26, 2024
c222d17
Move network rules outside the storage account
May 26, 2024
eeb231f
Support SAS less deployments
May 26, 2024
5e43add
SAS less deployer
May 26, 2024
607c729
Refactor backend.tf files to use Azure AD authentication for storage
May 26, 2024
cdbbc07
chore: Enable Azure AD authentication for Terraform remote state imports
May 26, 2024
4fa2213
chore: Refactor ANF Mount task to improve readability and remove comm…
May 27, 2024
a347a4a
Refactor ANF Mount task to improve readability and remove unnecessary…
hdamecharla May 27, 2024
8cc1b62
Fix shared volume
May 27, 2024
25353c8
Fix the outputs
May 27, 2024
d7ffe7d
Change the if statement
May 27, 2024
d63c4d3
Fix Mount output
May 27, 2024
a9f7106
Fixes for secondary
May 28, 2024
3d18b25
Add hana_shared_basepath
May 28, 2024
046623e
feat: Add hana_usrsap_basepath variable to ansible-input-api.yaml
May 28, 2024
bc4c3f6
fixed typo
May 28, 2024
292bc0f
Refactor ANF Mount task to for SHA scaleout
May 28, 2024
086dd49
Change the until condition
May 28, 2024
c1ae319
Make the HANA packages
May 28, 2024
8fd497b
remove the package
May 28, 2024
cc60322
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
May 28, 2024
41c5f25
Fix path
May 29, 2024
c553965
remove duplicate
May 29, 2024
9376a1c
chore: Update count condition in dns.tf for local private DNS usage
May 30, 2024
64f294e
chore: Update and remove duplicate resource definitions for kdump dis…
hdamecharla May 30, 2024
136f8e5
Merge branch 'experimental' of https://github.com/Azure/sap-automatio…
May 31, 2024
88cf409
Add tags for deployer
May 31, 2024
22262a1
refactor: Update tags assignment in sap_deployer module
Jun 1, 2024
85a8c55
Use the built in token to authenticate to ADO
Jun 1, 2024
22b57c1
Updates to scale out HSR code (#598)
shekharsorot Sep 11, 2024
b9d9b4b
Refactor models to include LastModified property
Sep 11, 2024
341dcbe
Merging experimental into scaleout-hsr prior to unit testing (#630)
shekharsorot Sep 13, 2024
de42112
Terraform updates (#631)
KimForss Sep 13, 2024
e7b66cd
Squashed commit of the following:
Sep 14, 2024
ebe1621
Scaleout hsr - naming fix (#632)
KimForss Sep 15, 2024
25d33e1
Scaleout hsr - debugging info (#633)
KimForss Sep 15, 2024
26934fd
Add support for HANA Scale Out with HSR (#635)
KimForss Sep 23, 2024
ba14919
Merge commit '4123b96e5fed6eb728190af9753467f4d1759304' into scaleout…
hdamecharla Sep 24, 2024
53fd32f
delete the duplicate ossf-scorecard
hdamecharla Sep 24, 2024
e9cde89
Remove shared access key from sapmnt storage account configuration
Sep 24, 2024
6a51b6d
Merge branch 'experimental' into scaleout-hsr
hdamecharla Sep 24, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions .github/workflows/github-actions-ansible-lint.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,10 +6,10 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout the code
uses: actions/checkout@v4
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 #v4.1.7

- name: Setup Python
uses: actions/setup-python@v5
uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 #v5.2.0
with:
python-version: '3.x'

Expand Down
73 changes: 73 additions & 0 deletions .github/workflows/ossf-scorecard.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,73 @@
# This workflow uses actions that are not certified by GitHub. They are provided
# by a third-party and are governed by separate terms of service, privacy
# policy, and support documentation.

name: Scorecard supply-chain security
on:
# For Branch-Protection check. Only the default branch is supported. See
# https://github.com/ossf/scorecard/blob/main/docs/checks.md#branch-protection
branch_protection_rule:
# To guarantee Maintained check is occasionally updated. See
# https://github.com/ossf/scorecard/blob/main/docs/checks.md#maintained
schedule:
- cron: '32 4 * * 5'
push:
branches: [ "main" ]

# Declare default permissions as read only.
permissions: read-all

jobs:
analysis:
name: Scorecard analysis
runs-on: ubuntu-latest
permissions:
# Needed to upload the results to code-scanning dashboard.
security-events: write
# Needed to publish results and get a badge (see publish_results below).
id-token: write
# Uncomment the permissions below if installing in a private repository.
# contents: read
# actions: readhttps://github.com/hdamecharla/sap-automation-kimforss/tree/main

steps:
- name: "Checkout code"
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
with:
persist-credentials: false

- name: "Run analysis"
uses: ossf/scorecard-action@0864cf19026789058feabb7e87baa5f140aac736 # v2.3.1
with:
results_file: results.sarif
results_format: sarif
# (Optional) "write" PAT token. Uncomment the `repo_token` line below if:
# - you want to enable the Branch-Protection check on a *public* repository, or
# - you are installing Scorecard on a *private* repository
# To create the PAT, follow the steps in https://github.com/ossf/scorecard-action?tab=readme-ov-file#authentication-with-fine-grained-pat-optional.
# repo_token: ${{ secrets.SCORECARD_TOKEN }}

# Public repositories:
# - Publish results to OpenSSF REST API for easy access by consumers
# - Allows the repository to include the Scorecard badge.
# - See https://github.com/ossf/scorecard-action#publishing-results.
# For private repositories:
# - `publish_results` will always be set to `false`, regardless
# of the value entered here.
publish_results: true

# Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
# format to the repository Actions tab.
- name: "Upload artifact"
uses: actions/upload-artifact@97a0fba1372883ab732affbe8f94b823f91727db # v3.pre.node20
with:
name: SARIF file
path: results.sarif
retention-days: 5

# Upload the results to GitHub's code scanning dashboard (optional).
# Commenting out will disable upload of results to your repo's Code Scanning dashboard
- name: "Upload to code-scanning"
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: results.sarif
2 changes: 1 addition & 1 deletion Webapp/SDAF/Models/EnvironmentModel.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -42,7 +42,7 @@ public class Variables

public class Variable
{
public string? value { get; set; }
public string value { get; set; }
[JsonIgnore]
public bool? isSecret { get; set; }
[JsonIgnore]
Expand Down
2 changes: 1 addition & 1 deletion Webapp/SDAF/SDAFWebApp.csproj
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,7 @@
<PackageReference Include="Azure.ResourceManager" Version="1.13.0" />
<PackageReference Include="Azure.ResourceManager.Compute" Version="1.6.0" />
<PackageReference Include="Azure.ResourceManager.KeyVault" Version="1.3.0" />
<PackageReference Include="Azure.ResourceManager.Network" Version="1.8.0" />
<PackageReference Include="Azure.ResourceManager.Network" Version="1.9.0" />
<PackageReference Include="Azure.ResourceManager.Resources" Version="1.8.0" />
<PackageReference Include="Azure.ResourceManager.Storage" Version="1.3.0" />
<PackageReference Include="Azure.Storage.Blobs" Version="12.21.2" />
Expand Down
4 changes: 2 additions & 2 deletions deploy/ansible/configuration_menu.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -61,7 +61,7 @@ export ANSIBLE_PASSWORD=$password_secret
# entry associated with the specific setting.
#
export ANSIBLE_HOST_KEY_CHECKING=False
export ANSIBLE_INVENTORY="${sap_sid}_hosts.yaml"
export ANSIBLE_INVENTORY="${sap_sid%$'\r'}_hosts.yaml"
export ANSIBLE_PRIVATE_KEY_FILE=sshkey
export ANSIBLE_COLLECTIONS_PATHS=/opt/ansible/collections:${ANSIBLE_COLLECTIONS_PATHS:+${ANSIBLE_COLLECTIONS_PATHS}}

Expand Down Expand Up @@ -149,7 +149,7 @@ all_playbooks=(

# Set of options that will be passed to the ansible-playbook command
playbook_options=(
--inventory-file="${sap_sid}_hosts.yaml"
--inventory-file="${sap_sid%$'\r'}_hosts.yaml"
--private-key=${ANSIBLE_PRIVATE_KEY_FILE}
--extra-vars="_workspace_directory=`pwd`"
--extra-vars="@${sap_params_file}"
Expand Down
6 changes: 3 additions & 3 deletions deploy/ansible/playbook_02_os_sap_specific_config.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -162,12 +162,12 @@

# we do not need to add the same assertion for subnet_cidr_client as it is
# calculated for specific deployment scenarios.
- name: "SAP OS configuration playbook: - Set the subnet_client_cidr fact"
- name: "SAP OS configuration playbook: - Set the subnet_cidr_client fact"
ansible.builtin.set_fact:
subnet_client_cidr: "{{ subnet_cidr_client | default(azure_network_metadata.json.interface[0].ipv4.subnet[0].address + '/' + azure_network_metadata.json.interface[0].ipv4.subnet[0].prefix) }}"
subnet_cidr_client: "{{ subnet_cidr_client | default(azure_network_metadata.json.interface[0].ipv4.subnet[0].address + '/' + azure_network_metadata.json.interface[0].ipv4.subnet[0].prefix) }}"
when:
- platform == 'HANA'
- db_scale_out
- database_scale_out
- not database_high_availability
tags:
- always
Expand Down
Loading