Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enable "Allow public access from any Azure service within Azure to this server" #3215

Closed
Stadly opened this issue Apr 15, 2024 · 7 comments
Closed

Enable "Allow public access from any Azure service within Azure to this server" #3215

Stadly opened this issue Apr 15, 2024 · 7 comments
Labels
kind/enhancement Improvements or new features

Comments

@Stadly
Copy link

Stadly commented Apr 15, 2024

Hello!

  • Vote on this issue by adding a 馃憤 reaction
  • If you want to implement this feature, comment to let us know (we'll work with you on design, scheduling, etc.)

Issue details

I need to check the outlined checkmark in the Network section for Azure Database for PostgreSQL flexible servers using Pulumi. It doesn't seem to currently be possible.

image
@Stadly Stadly added kind/enhancement Improvements or new features needs-triage Needs attention from the triage team labels Apr 15, 2024
@Stadly
Copy link
Author

Stadly commented Apr 15, 2024

Maybe related: #2860

@thomas11
Copy link
Contributor

Hi @Stadly, thank you for your report. It looks like "public access from any Azure service" depends on "Allow public access" (the checkbox above it)? If so, this issue depends on the linked #2860.

I pinged the upstream issue again. If Azure doesn't fix it, we might be able to work around it by adding an exception to the provider, but that's tricky. Sorry but we need to depend on the Azure API specification here.

@thomas11 thomas11 added impact/missing-api awaiting-upstream Awaiting upstream dependency and removed needs-triage Needs attention from the triage team labels Apr 16, 2024
@mikhailshilkov
Copy link
Member

mikhailshilkov commented Apr 17, 2024
edited

@Stadly The Azure docs say

Programmatically manage firewall rules: A firewall rule setting with a starting and ending address equal to 0.0.0.0 does the equivalent of the Allow public access from any Azure service within Azure to this server option in the portal. If firewall rules reject the connection attempt, the app won't reach the Azure Database for PostgreSQL flexible server instance.

It sounds like you should be able to do that with azure-native.dbforpostgresql.FirewallRule. Could you give it a try?

Edit: updated the link to the Native resource.

@mikhailshilkov mikhailshilkov added awaiting-feedback and removed awaiting-upstream Awaiting upstream dependency labels Apr 17, 2024
@mikhailshilkov
Copy link
Member

@Stadly Any chance you could take a look at the above suggestion?

@Stadly
Copy link
Author

Stadly commented May 13, 2024

Thanks, @mikhailshilkov. I gave it a go but ran into some unrelated (I think) issues. Hopefully I'll get them resolved soon so I can test it properly.

@Stadly
Copy link
Author

Stadly commented May 21, 2024

I think I have resolved the issue I ran into. Now I'm getting an error status code 400, {"error":{"code":"InvalidParameterValue","message":"Invalid value given for parameter firewallRuleName. Specify a valid parameter value."}}. Does anyone know what are the constraints for the name?

@Stadly
Copy link
Author

Stadly commented May 21, 2024

It worked! Thanks :D

@Stadly Stadly closed this as completed May 21, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/enhancement Improvements or new features
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@thomas11 @mikhailshilkov @Stadly