UAMI user experience improvement

[galiacheng]

Current offer requires customer to bring his own UAMI and Service Principal, which introduces extra effort before the deployment.

This pr is to improve the UAMI and SP experience by

• Removing input for UAMI from basics blade and generating it automatically in the template.
• Removing input for SP from networking blade and using Application Gateway Ingress Controller add-on

Besides, this pr enhances the offer with:

• Supporting Azure CNI
• Applying retry pattern for tools and files download

Test offer: Oracle WebLogic Server on the Azure Kubernetes Service

Follow up issue: #178

[edburns]

Great job listing this as a top level constant and passing it down throughout the sub templates.

[edburns]

Clever. Is this something you think you should share with Alex Frankel?

[edburns]

Thank you!

[edburns]

Thank you.

[edburns]

Shell scripts

.github/workflows/setupForWlsAks.sh
.github/workflows/teardownForWlsAks.sh

• The workflow does not need to provide the UAMI or SP as inputs, so
  it does not need to generate them. This simplifies the workflow significantly.

weblogic-azure-aks/src/main/arm/scripts/buildWLSDockerImage.sh
weblogic-azure-aks/src/main/arm/scripts/genImageModel.sh
weblogic-azure-aks/src/main/arm/scripts/setupWLSDomain.sh

• Add retry to cURL invocations.

weblogic-azure-aks/src/main/arm/scripts/common.sh

• Retry increases.

weblogic-azure-aks/src/main/arm/scripts/createAppGatewayIngress.sh

• Account for passing of parameters.

weblogic-azure-aks/src/main/arm/scripts/createLbSvc.sh

• Use environment variable naming style.

weblogic-azure-aks/src/main/arm/scripts/createVMAndBuildImage.sh

• Add clean up of newly created resources required by the change to
  handle UAMI and SP internal to the deployment.

• Bash best practices.

weblogic-azure-aks/src/main/arm/scripts/inline-scripts/enableAgic.sh

• New script to do the heavy lifting with the UAMI.

weblogic-azure-aks/src/main/arm/scripts/inline-scripts/validateParameters.sh

• Remove repetitive declarations of several functions. They are
  declared in utility.sh.

• Remove declaration of validate_user_assigned_managed_identity and
  validate_aks_network_plugin. They are unused.

• Add retry to cURL invocations.

weblogic-azure-aks/src/main/arm/scripts/setupNetworking.sh

• Use different technique for invoking scripts without passing
  passwords in cleartext on command line.

• Bash best practices.

weblogic-azure-aks/src/main/arm/scripts/utility.sh

• utility_validate_status proper indenting.

• Add retry capability to install_jdk.

• Add install_docker, with retry capability.

• Add retry capability to install_kubectl.

• Add retry to cURL invocations.

Bicep files

weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds-appgw-upload-trusted-root-certificate.bicep
weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds-datasource-connection.bicep
weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds-output-domain-configurations.bicep
weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds-query-storage-account.bicep
weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds-validate-parameters.bicep
weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds_query_available_private_ip_from_subnet.bicep
weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds_update-applications.bicep
weblogic-azure-aks/src/main/bicep/modules/_setupDBConnection.bicep
weblogic-azure-aks/src/main/bicep/modules/setupDBConnection.bicep
weblogic-azure-aks/src/main/bicep/modules/setupWebLogicCluster.bicep
weblogic-azure-aks/src/main/bicep/modules/updateWebLogicApplications.bicep
weblogic-azure-aks/src/main/bicep/modules/_azure-resoruces/_keyvault/_keyvaultWithNewCert.bicep
weblogic-azure-aks/src/main/bicep/modules/_azure-resoruces/_keyvaultForGateway.bicep
weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds-create-wls-cluster.bicep
weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds-datasource-connection.bicep

• Avoid ttk failure regarding empty params.

• Use azCliVersion from mainTemplate.bicep.

weblogic-azure-aks/src/main/bicep/mainTemplate.bicep

• Remove UAMI parameter.

• Remove Service Principal paremeter.

• Numerous changes to implement feature.

weblogic-azure-aks/src/main/bicep/modules/_appGateway.bicep

• Entirely new file, deploys app gateway without accepting UAMI as input.

weblogic-azure-aks/src/main/bicep/modules/_azure-resoruces/_aks.bicep

• remove unused reference to aksClusterDefault.

weblogic-azure-aks/src/main/bicep/modules/_azure-resoruces/_appgateway.bicep

• Called from src/main/bicep/modules/_appGateway.bicep to handle
  different query cases necessary for making deployment decisions.

weblogic-azure-aks/src/main/bicep/modules/_azure-resoruces/_vnetAppGateway.bicep

• Called from src/main/bicep/modules/_appGateway.bicep

• Returns the vnet for the app gateway.

weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds-create-networking.bicep

• Avoid ttk failure regarding empty params.

• Use azCliVersion from mainTemplate.bicep.

• Invoke ds-networking-deployment.sh, passing env vars.

weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds-validate-applications.bicep

• Avoid ttk failure regarding empty params.

• Use azCliVersion from mainTemplate.bicep.

• Fix incorrect path to WLST script.

weblogic-azure-aks/src/main/bicep/modules/_deployment-scripts/_ds_ensure_available_agic.bicep

• New script to envoke enableAgic.sh.

weblogic-azure-aks/src/main/bicep/modules/_rolesAssignment/_agicRoleAssignment.bicep

• Assign Resource Group Contributor role to User Assigned Managed Identity

weblogic-azure-aks/src/main/bicep/modules/_rolesAssignment/_roleAssignmentinSubscription.bicep

• Assign subscription scope role to User Assigned Managed Identity

weblogic-azure-aks/src/main/bicep/modules/_uamiAndRoles.bicep

• Invoke _roleAssignmentinSubscription.bicep

weblogic-azure-aks/src/main/bicep/modules/networking.bicep

• Main bicep module for networking. This is where the hard work of
  the entire networking tab happens.

JSON Config files

weblogic-azure-aks/src/test/setupWlsAksParameters.json

• This file is used by CI/CD workflows. It allows the workflows to provide parameters when invoking the offer from the command line.

• Remove parameters related to UAMI.

weblogic-azure-aks/src/main/arm/createUiDefinition.json

• Repurpose existing info box on first pane. This info box was called
  domainHomeSourceTypeExplainer and is now called
  infoForBeforeDeployment. The text in the box has been expanded to
  also clearly state what Azure RBAC roles are necessary in order to
  successfully perform the deployment.

• Remove the UAMI selector.

• Temporarily hide the Configure frontend IP with private IP address
  checkbox due to an existing Azure outage with an uncertain timeframe
  for resolution. We will un-hide it when the outage is resolved.

• Remove the service principal box in the App Gateway Ingress Controller section.

• Necessary removals from the outputs section.

YML Config files

.github/workflows/testWlsAksWithDependencyCreation.yml
.github/workflows/testWlsAksWithoutDependencyCreation.yml

• Remove service principal