search

oracle / weblogic-azure

This project offers support for running Oracle WebLogic Server in the Azure Virtual Machines and Azure Kubernetes Service (AKS)
Universal Permissive License v1.0
9 stars 19 forks source link

Support passwordless MySQL connection in AKS offer #219

Closed galiacheng closed 1 year ago

galiacheng commented 1 year ago

Required PR: #220.

This PR includes:

File changes: weblogic-azure-aks/pom.xml Increase pom version

weblogic-azure-aks/src/main/arm/createUiDefinition.json Modify UI to input passwordless MySQL connection parameters

weblogic-azure-aks/src/main/arm/scripts/createVMAndBuildImage.sh weblogic-azure-aks/src/main/arm/scripts/buildWLSDockerImage.sh Download and build database driver and azure libraries to image

weblogic-azure-aks/src/main/arm/scripts/common.sh Const variable for MySQL

weblogic-azure-aks/src/main/arm/scripts/dbUtility.sh Use com.mysql.cj.jdbc.Driver for MySQL passwordless connection.

weblogic-azure-aks/src/main/arm/scripts/genDomainConfig.sh Specify MySQL driver and azure libraries in CLASSPATH and PRE_CLASSPATH

weblogic-azure-aks/src/main/arm/scripts/inline-scripts/validateParameters.sh Enable existing AKS managed identity

weblogic-azure-aks/src/main/arm/scripts/setupDBConnections.sh Reset database password with empty string if enabling passwordless connection Validate kubectl patch status

weblogic-azure-aks/src/main/bicep/mainTemplate.bicep weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds-create-wls-cluster.bicep weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds-datasource-connection.bicep weblogic-azure-aks/src/main/bicep/modules/setupWebLogicCluster.bicep Increase AZ CLI version Add parameters for passwordless connection

weblogic-azure-aks/src/main/bicep/modules/_azure-resoruces/_aks.bicep Use Azure CNI Reset vmSize parameter name

weblogic-azure-aks/src/main/bicep/modules/_azure-resoruces/_aksPodIdentity.bicep Enable AKS aad pod identity

weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds-validate-parameters.bicep Set default value to aksAgentPoolVMSize

weblogic-azure-aks/src/main/bicep/modules/_pids/_pid-dev.bicep weblogic-azure-aks/src/main/bicep/modules/_pids/_pid.bicep Pids for passwordless connection

weblogic-azure-aks/src/main/bicep/modules/_rolesAssignment/_aksClusterMioRoleOverDbIdentity.bicep Assign Managed Identity Operator role to AKS cluster over DB identity

weblogic-azure-aks/src/main/bicep/modules/_rolesAssignment/_roleAssignmentinRgScope.bicep Template to assign roles in resource group scope.

weblogic-azure-aks/src/main/bicep/modules/_setupPasswordlessDBConnection.bicep Template to enable AKS pod identity and provision passwordless db connection.

weblogic-azure-aks/src/main/bicep/modules/_uamiAndRoles.bicep Remove unused script

galiacheng commented 1 year ago

We found dependencies of azure-identity-providers-jdbc-mysql-1.0.0-beta.1 contain vulnerabilities, see https://github.com/Azure/azure-sdk-for-java/issues/32212.

I am working to work around the issue.