search

wls-eng / arm-oraclelinux-wls

Microsoft Azure ARM Templates to create Oracle Linux VM with pre-installed Weblogic Server
Apache License 2.0
0 stars 7 forks source link

AAD template validation fails with WLS SSL certificate uploading #277

Closed sanjaymantoor closed 3 years ago

sanjaymantoor commented 3 years ago

This issue is noticed only when WLS SSL is configured with SSL certificate uploading option. Issue is happening for all 3 offers wls admin, cluster and dynamic cluster.

Issue noticed: The resource identifier of the KeyVault parameter 'keyVaultCustomTrustKeyStorePassPhrase' is invalid. Please specify the value following '/subscriptions/{subscriptionId}/resourcegroups/{resourceGroupName}/providers/Microsoft.KeyVault/vaults/{vaultName}' format. See https://aka.ms/arm-keyvault for usage details. (Code: KeyVaultParameterReferenceInvalidResourceId)

{ "code": "KeyVaultParameterReferenceInvalidResourceId", "message": "The resource identifier of the KeyVault parameter 'keyVaultCustomTrustKeyStorePassPhrase' is invalid. Please specify the value following '/subscriptions/{subscriptionId}/resourcegroups/{resourceGroupName}/providers/Microsoft.KeyVault/vaults/{vaultName}' format. See https://aka.ms/arm-keyvault for usage details." }

sanjaymantoor commented 3 years ago

Issue Noticed

sanjaymantoor commented 3 years ago

AAD issue.zip

All the input parameters and issue screen shots are available with this AAD.issue.zip file.

zhengchang907 commented 3 years ago 
"keyVaultCustomTrustKeyStorePassPhrase": {
                        "reference": {
                            "keyVault": {
                                "id": "[resourceId(variables('const_currentSubscription'),  parameters('adminSSLKeyVaultResourceGroup'), 'Microsoft.KeyVault/vaults', parameters('adminSSLKeyVaultName'))]"
                            },
                            "secretName": "[parameters('keyVaultCustomTrustKeyStorePassPhraseSecretName')]"
                        }
                    },
                    "keyVaultCustomTrustKeyStoreType": {
                        "value": "[parameters('keyVaultCustomTrustKeyStoreType')]"
                    }

In AAD with customSSL enabled, related Secrets need to be referenced

zhengchang907 commented 3 years ago

PRs: Admin: https://github.com/wls-eng/arm-oraclelinux-wls-admin/pull/90 Configured Cluster: https://github.com/wls-eng/arm-oraclelinux-wls-cluster/pull/127 Dynamic Cluster: https://github.com/wls-eng/arm-oraclelinux-wls-dynamic-cluster/pull/114

zhengchang907 commented 3 years ago

@sanjaymantoor Hi Sanjay, I've fixed the templates and the PRs are merged, can you check on that to double confirm?

Will close the issue now.