# Telescope Azure Local Development

This notebook provides a comprehensive, step-by-step guide for manually running Terraform for Azure telescope testing. All commands should be run from the root of the repository and in a bash shell (Linux or WSL).

## Overview

This guide covers how to manually run Terraform for Azure. This interactive notebook version allows you to execute each step individually and see the results in real-time.

## Prerequisites

Before running this notebook, ensure you have the following tools installed:

* [Terraform - 1.7.3](https://developer.hashicorp.com/terraform/tutorials/azure-get-started/install-cli)
* [Azure CLI - 2.57.0](https://learn.microsoft.com/en-us/cli/azure/install-azure-cli-linux?pivots=apt)
* [jq - 1.6-2.1ubuntu3](https://stedolan.github.io/jq/download/)

### Install Python Packages for Jupyter (if not already installed)
```bash
pip install jupyter notebook ipykernel bash_kernel
python -m bash_kernel.install
```

You can install the Jupyter Extension from the VS Code marketplace: https://marketplace.visualstudio.com/items?itemName=ms-toolsai.jupyter

## Interactive Notebooks

For easy local development and testing, we provide Jupyter notebooks for each cloud provider:
- **Azure Notebook:** Interactive notebook for Azure telescope testing

### Quick Start with Notebooks

To run this notebook locally:
```bash
jupyter notebook azure.ipynb
```
Once you run the command, go to http://localhost:8888/tree to access the Jupyter Notebook UI.

The notebooks provide:
- Prerequisites checking and cloud authentication
- Step-by-step Terraform workflow (init, plan, apply, destroy)
- Variable configuration and customization options

**Note**: All commands should be run from the root of the repository in a bash shell (Linux or WSL).

## 1. Prerequisites Check

First, let's verify that all required tools are installed and accessible.

In [None]:
# Check prerequisites
echo "🔍 Checking prerequisites..."
echo "==========================================="

# Check Terraform
if command -v terraform &> /dev/null; then
    TERRAFORM_VERSION=$(terraform version -json | jq -r '.terraform_version')
    echo "✅ Terraform: $TERRAFORM_VERSION"
else
    echo "❌ Terraform not found"
fi

# Check Azure CLI
if command -v az &> /dev/null; then
    AZ_VERSION=$(az version --output tsv --query '"azure-cli"')
    echo "✅ Azure CLI: $AZ_VERSION"
else
    echo "❌ Azure CLI not found"
fi

# Check jq
if command -v jq &> /dev/null; then
    JQ_VERSION=$(jq --version)
    echo "✅ jq: $JQ_VERSION"
else
    echo "❌ jq not found"
fi

echo ""
echo "📍 Current directory: $(pwd)"
echo "💡 Make sure you're running from the telescope repository root"

# Navigate to repository root if not already there
if [ ! -f "scenarios" ] && [ ! -d "scenarios" ]; then
    echo "🔄 Navigating to repository root..."
    cd ../../../
    echo "📍 New directory: $(pwd)"
    export ROOT_DIR=$(pwd)
fi

## 2. Define Variables

Set environment variables for a specific test scenario. In this guide, we'll use `perf-eval/nap` scenario as the example and set the following variables:

**Note**: 
* `RUN_ID` should be a unique identifier since it is used to name the resource group in Azure.
* These variables are not exhaustive and may vary depending on the scenario.

In [None]:

# Define test scenario variables
export SCENARIO_TYPE=perf-eval
export SCENARIO_NAME=nap
export OWNER=$(whoami)
export RUN_ID=$(date +%s)
export CLOUD=azure
export REGION=eastus2
export AZURE_SUBSCRIPTION_ID="f6e2f77f-9959-42ad-87f0-c30a6abc0133"
export SKU_TIER=""
export KUBERNETES_VERSION=""
export NETWORK_POLICY=""
export NETWORK_DATAPLANE=""
export TERRAFORM_MODULES_DIR=$ROOT_DIR/modules/terraform/$CLOUD
export TERRAFORM_INPUT_FILE=$ROOT_DIR/scenarios/$SCENARIO_TYPE/$SCENARIO_NAME/terraform-inputs/${CLOUD}.tfvars
export SYSTEM_NODE_POOL=${SYSTEM_NODE_POOL:-null}
export USER_NODE_POOL=${USER_NODE_POOL:-null}

echo "📋 Configuration Summary:"
echo "========================"
echo "Scenario: $SCENARIO_TYPE/$SCENARIO_NAME"
echo "Owner: $OWNER"
echo "Run ID: $RUN_ID"
echo "Cloud: $CLOUD"
echo "Region: $REGION"
echo "SKU Tier: $SKU_TIER"
echo "Kubernetes Version: $KUBERNETES_VERSION"
echo "Network Policy: $NETWORK_POLICY"
echo "Network Dataplane: $NETWORK_DATAPLANE"
echo "Terraform Input File: $TERRAFORM_INPUT_FILE"
echo ""
echo "⚠️  Note: RUN_ID should be unique as it's used to name the Azure resource group"

## 3. Azure Authentication

Login to Azure and set up the subscription for testing.

### Authentication Methods
You can authenticate with Azure using:
- **Web browser access**: `az login` (recommended for interactive use)
- **Device code**: `az login --use-device-code` (for remote/headless environments)
- **Service Principal**: For automated workflows

### Set Subscription
After login, set the subscription for testing and export the ARM_SUBSCRIPTION_ID environment variable for Terraform.

In [None]:
# Azure login
echo "🔐 Azure Authentication"
echo "======================"

# Check if already logged in
if az account show &> /dev/null; then
    echo "✅ Already logged into Azure"
    az account set -s $AZURE_SUBSCRIPTION_ID
    CURRENT_SUB=$(az account show --query name -o tsv)
    echo "Current subscription: $CURRENT_SUB"    
else
    echo "🌐 Logging into Azure..."
    az login --use-device-code
    az account set -s $AZURE_SUBSCRIPTION_ID
fi

echo ""
export ARM_SUBSCRIPTION_ID=$(az account show --query id -o tsv)
export ARM_TENANT_ID=$(az account show --query tenantId -o tsv)

# Verify subscription
az account show --query "{Name:name, SubscriptionId:id, State:state}" --output table

## 4. Create Resource Group

Create an Azure resource group for the telescope testing resources.

The resource group is created with appropriate tags for tracking:
- `run_id`: Unique identifier for this test run
- `scenario`: The test scenario being executed
- `owner`: The user running the test
- `creation_date`: When the resources were created
- `deletion_due_time`: When resources should be cleaned up (2 hours from creation)

In [None]:
# Create Resource Group
echo "🏗️  Creating Azure Resource Group"
echo "================================="

# Create resource group with appropriate tags
az group create \
  --name $RUN_ID \
  --location $REGION \
  --tags \
    "run_id=$RUN_ID" \
    "scenario=${SCENARIO_TYPE}-${SCENARIO_NAME}" \
    "owner=${OWNER}" \
    "creation_date=$(date -u +'%Y-%m-%dT%H:%M:%SZ')" \
    "deletion_due_time=$(date -u -d '+2 hour' +'%Y-%m-%dT%H:%M:%SZ')"

echo ""
echo "✅ Resource Group Created: $RUN_ID"
echo "📍 Location: $REGION"
echo "⏰ Deletion due time: $(date -u -d '+2 hour' +'%Y-%m-%dT%H:%M:%SZ')"

## 5. Prepare Terraform Input JSON

Create the JSON input for Terraform with all the configuration parameters.

This variable is not exhaustive and may vary depending on the scenario. For a full list of what can be set, look for `json_input` in file `modules/terraform/azure/variables.tf` as the list will keep changing as we add more features.

**Note**: The `jq` command will remove any null or empty values from the JSON object. Variables surrounded by double quotes are optional and can be removed if not needed.

In [None]:
# Create INPUT_JSON variable
echo "📝 Preparing Terraform Input JSON"
echo "================================="

export INPUT_JSON=$(jq -n \
  --arg run_id $RUN_ID \
  --arg region $REGION \
  --arg aks_sku_tier "$SKU_TIER" \
  --arg aks_kubernetes_version "$KUBERNETES_VERSION" \
  --arg aks_network_policy "$NETWORK_POLICY" \
  --arg aks_network_dataplane "$NETWORK_DATAPLANE" \
  --arg k8s_machine_type "$K8S_MACHINE_TYPE" \
  --arg k8s_os_disk_type "$K8S_OS_DISK_TYPE" \
  --argjson aks_cli_system_node_pool "$SYSTEM_NODE_POOL" \
  --argjson aks_cli_user_node_pool "$USER_NODE_POOL" \
  '{
    run_id: $run_id,
    region: $region,
    aks_sku_tier: $aks_sku_tier,
    aks_kubernetes_version: $aks_kubernetes_version,
    aks_network_policy: $aks_network_policy,
    aks_network_dataplane: $aks_network_dataplane,
    k8s_machine_type: $k8s_machine_type,
    k8s_os_disk_type: $k8s_os_disk_type,
    aks_cli_system_node_pool: $aks_cli_system_node_pool,
    aks_cli_user_node_pool: $aks_cli_user_node_pool
  }' | jq 'with_entries(select(.value != null and .value != ""))')

echo "📋 Terraform Input JSON:"
echo "$INPUT_JSON" | jq .

echo ""
echo "📂 Terraform Input File: $TERRAFORM_INPUT_FILE"
if [ -f "$TERRAFORM_INPUT_FILE" ]; then
    echo "✅ Terraform input file exists"
    echo "📄 Contents of terraform input file:"
    cat "$TERRAFORM_INPUT_FILE"
else
    echo "⚠️  Terraform input file not found at: $TERRAFORM_INPUT_FILE"
fi

echo ""
echo "💡 Note: The jq command removes any null or empty values from the JSON object"
echo "💡 Note: Variables surrounded by double quotes are optional and can be removed if not needed"

## 6. Terraform Initialization & Plan

Initialize Terraform in the Azure modules directory and run Terraform Plan.

This step will:
- Initialize the Terraform working directory
- Download required providers
- Create a plan showing what resources will be created

In [None]:
# Terraform initialization
echo "🚀 Terraform Initialization"
echo "==========================="

# Change to terraform directory
pushd $TERRAFORM_MODULES_DIR

echo "📂 Current directory: $(pwd)"
echo "🔧 Initializing Terraform..."
terraform init
echo "🚀 Terraform Plan"
echo "==========================="
terraform plan \
  -var json_input="$(echo $INPUT_JSON | jq -c .)" \
  -var-file $TERRAFORM_INPUT_FILE

echo ""
popd

## 7. Terraform Apply

Apply the Terraform configuration to provision Azure resources.

**⚠️ WARNING**: This will create actual Azure resources and may incur costs.

In [None]:
# Terraform apply
echo "🚀 Terraform Apply"
echo "=================="

echo "⚠️  WARNING: This will provision actual Azure resources!"
echo "💰 This may incur costs in your Azure subscription"
echo "⏰ Resources will be tagged for deletion in 2 hours"
echo ""

pushd $TERRAFORM_MODULES_DIR
terraform apply -var json_input="$(echo $INPUT_JSON | jq -c .)" -var-file $TERRAFORM_INPUT_FILE --auto-approve
popd

## 8. Cleanup Resources

**IMPORTANT**: Always clean up resources after testing to avoid unnecessary costs.

In [None]:
# Cleanup with Terraform
echo "🧹 Terraform Cleanup"
echo "====================="

echo "⚠️  WARNING: This will destroy all provisioned resources!"
echo "💾 Make sure to save any important data before proceeding"
echo ""

pushd $TERRAFORM_MODULES_DIR
terraform destroy -var json_input="$(echo $INPUT_JSON | jq -c .)" -var-file $TERRAFORM_INPUT_FILE --auto-approve
popd

## 9. Delete Resource Group

**IMPORTANT**: Final cleanup step to ensure all resources are completely removed.

After terraform destroys all the resources, delete the resource group manually to ensure no orphaned resources remain that could incur costs.

In [None]:
# Final cleanup - Delete Resource Group
echo "🗑️  Final Cleanup"
echo "================"

echo "🧹 After Terraform destroys resources, delete the resource group:"
echo ""
az group delete --name $RUN_ID -y

echo "✅ This will ensure all resources are completely removed"
echo "💰 This prevents any lingering costs from orphaned resources"

## 10. References

For additional information and troubleshooting, refer to these resources:

* [Terraform Azure Provider](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs)
* [Azure CLI](https://learn.microsoft.com/en-us/cli/azure/reference-index?view=azure-cli-latest)
* [Azure Service Principal](https://docs.microsoft.com/en-us/cli/azure/create-an-azure-service-principal-azure-cli?view=azure-cli-latest)
* [Azure Portal](https://portal.azure.com/)
* [Terraform Documentation](https://developer.hashicorp.com/terraform/docs)

## 11. Troubleshooting

### Common Issues:
1. **Authentication**: Ensure you're logged into Azure CLI and have set the correct subscription
2. **Permissions**: Verify your Azure account has sufficient permissions for the resources being created
3. **Resource Limits**: Check Azure service limits if resource creation fails
4. **Resource Group**: Ensure the resource group exists before running Terraform


### Terraform State:
- Terraform state is stored locally in the terraform modules directory
- Be careful not to delete `.terraform` folder or `terraform.tfstate` files during active sessions
- If state is corrupted, you may need to manually clean up Azure resources