Azure Resource Manager
-
Delete resource with ARM template
With delivery pipeline it is often needed to create and drop resources for the environments.
Currently resource manager does not support deprovision deployment mode.
It means that there is no way to delete exact resources which are specified within the template and were deployed during environment creation.
Unfortunately Delete Resource Group is not an option because often resources are deployed in different resource groups.
Actually Delete is part of Complete mode deployment, could you please just make it separate.61 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.
-
Automatically delete old deployments as DeploymentQuotaExceeded error occurs
We are often hitting the DeploymentQuotaExceeded error, exceeding the quota of 800 deployments. This happens because old deployments are never deleted, no matter how old they are. We would like to request as a feature a rolling behavior where, as the quota is reached, the oldest deployment is automatically deleted.
46 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.
-
Increase Keyvault Reference Limit in Parameters from 29 to 60+
As of right now, the communicated limit for keyvault references in a parameters file is "30", but is actually in practice 29 (appears to be a bug?).
This limitation is quite low for mature systems. Take, for example, the following potential data points:
- Multiple SQL ids/passwords, storage account keys, AI instrumentation, Redis cache credentials, etc. for connection strings
- App to app communication creds/API keys
- Programmatically created dynamically named/numbered resources
- References to signing keys for different purposes
Many of the clients I work with are struggling with this issue, which seems easily fixable by increasing the limit to a larger number.…
32 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog. Since this request came out of an escalation, I’ve engaged the feature owner to take a look and suggest next best step to validate and resolve the reported bug.
-
Identity function for Azure Resource Manager Templates to know who submitted the deployment
It would be good to be able to have a something that returned the user that requested the deployment, either the UPN or the AAD object Id. This can then be used to
Tag the resource with the details of who created/last updated.
This would be great to avoid the masss of resources created without anyone knowing who created them. Thus helping audit and manageability.
If its a function it could be used in policy and thus enforced tagging.Add permissions based on the user doing the deploy.
The last one is useful for the developer scenario where the you…
20 votes -
Set schedule to delete deployments history
Currently, The deployment history limits are 800 per resource group so if we will use many resources for long term, we might be upper limit.
I hope we can use a feature that setting schedule to delete the history.17 votes -
“created date” and “created by” should be default attributes for every azure resource
By default every azure resource should have "Created Date" and "Created By" metadata.
12 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature
-
expose the "eventName" property
We need a property we can use to identify the different events from a deployment, which currently looks completely identical with the only difference not being usable to identify the correct events automatically
10 votes -
Add a retry mechnanism when parallel deployments fail due to any kind of "Conflict" error
Scenario:
- multiple ARM deployments running in parallel
- all contain a deployment task targeting the same resource group / resource e.g. add a KeyVault access policy/a secret
- all except one deployment fail with a "Conflict" error and need to be restarted manuallyExpected behaviour:
Azure retries automatically when such a "Conflict" occursAnalysis from the KeyVault team:
"Based on the investigation performed, we were able to conclude the existing conflicts (409) when trying to run parallel deployments where due to the fact that the deployments were trying to write new access policies to the Key Vault.Since Key…
4 votes -
YAML/YML support for ARM
Can we have YAML support for ARM just like AWS cloudformation
4 votesThanks for bringing this to our attention. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.
-
CopyIndex - add staged length for count
Add CopyIndex function to allow a numerical length to count. Enterprise may have their naming standards end with "01", "02", "03", etc. CopyIndex currently will only count logically from 0. "1" "2" "3", etc.
Suggested framework:
CopyIndex(loopName, offset, stagedlength)Suggest framework example:
CopyIndex('VM',1,000)Results would be:
VM001
VM002
VM003
VM0044 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.
-
Allow usage of function arrays in the dependsOn section
The dependsOn section needs an array of strings, and each string added can call some functions like resourceId, parameters, and variables. But it does not accept a parameter or variable that contains an array of strings. It also doesn't allow the use of copy.
Allowing this would make it much easier (actually make it possible) to dynamically generate a list of dependencies based on parameters.
For instance, creating alerts links to action group resources. It is very likely that the action groups to use are given as a parameter (array of strings). Converting those strings to resourceIds (multiple) is easy…
4 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.
-
feature request to Complete mode when deploying ARM templates
- Whether it's possible to add a feature to restrict certain users from using Complete mode when deploying ARM templates in Azure DevOps.
- Whether it's possible to add a feature to prompt a confirm window if user is using Complete mode and explain what Complete mode does in the confirm window.
- Whether it's possible to remove existing pipelines in the Data Factory while deploying new ARM template.
2 votes -
Shelve the resource group as a blueprint
While working on a solution I created a resources under one resource group and finished working model. However I can not keep running due to cost. so i quickly deleted. I do have an option of generating code etc.. and re-provision. However if there is an option of shelve entire resource group and run a model or take blue print which can be used to demo(pictorial/animated).
For actual demo, we simply click on the shelved rg and re-provision entire solution.
Am I asking too much??? But i think it is doable.. and will be ahead of competitors. No one has…
2 votes -
Assign resources in ARM templates a simple unique reference ID
The dependsOn array (for example) uses a horrible syntax to refer to resources within the same ARM template. I don't know why since they're all objects in the same "memory space" so when the template is run, they could have simple IDs and a simple way to refer to them.
Imagine if we were able to assign our own GUID or other unique surrogate ID to each resource, it could be used to refer to resources in the same template without the nightmare addressing syntax you have.
The deployment manager can maintain a memory structure containing the ID and the…
2 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.
-
Automated Destruction of Resource, planned on deployment
It would be cool if i can give a date on deployment when a certain resource i deploy is automatically destroyed again. Either after a certain amount of time or with a certain date. i could do this myself with a account/vm which manages the rest of the resources, but give a date with azure cli on creation would be much nicer :)
2 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.
-
Run Ansible/Chef/Salt on deployment via ARM
When you deploy a Linux or Windows virtual machine deployment, via ARM. Allow an Ansible playbook to be run.
2 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing backlog and also gives us insight into the potential impact of implementing the suggested feature.
-
Allow actual output of type "securestring"
When defining ARM outputs, "securestring" is a valid type, but nothing is actually outputted. This raises the question as to why it's a valid type, if it serves no purpose.
The "securestring" should be returned for further processing. (Alternately, there should be a schema error for specifying a type that can't work.)
Additional discussion at https://github.com/MicrosoftDocs/azure-docs/issues/32931.
2 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.
-
dependson
If the "dependsOn" section is defined after the "properties" section, and the properties section contains a reference to the parent resource, template validation will succeed but deployment will fail.
Propose: Amend validator to enforce dependsOn definition before properties.
Example
"resources": [
…{
"type": "Microsoft.Web/serverfarms",
"apiVersion": "2018-02-01",
"name": "[parameters('servicePlanName')]",
"location": "[parameters('location')]",
"tags": {
"app": "RAPT",
"appowner": "Corporate Services",
"backup": "N/A",
"createdby": "[parameters('tagCreatedBy')]",
"environment": "[parameters('tagEnvironment')]",
"implementation": "[parameters('tagImplementation')]",
"technology": "Web"
},
"sku": {
"name": "[parameters('TierCode')]",
"tier": "[parameters('TierName')]",
"size": "[parameters('TierCode')]",
"family": "[parameters('TierFamily')]",
"capacity": "[parameters('TierCapacity')]"
},
"kind": "app",
"properties": {
"name": "[parameters('servicePlanName')]",
"perSiteScaling": false,
"maximumElasticWorkerCount": 1,
"isSpot": false,
"reserved": false,
"isXenon": false,
"hyperV": false,
"targetWorkerCount":1 vote -
VirtualNetworkCombo UI needs to support a location parameter
The VirtualNetworkCombo UI element in the createUIDefinition file needs to support a location different than the resourceGroup().location. The resourceGroup can span multiple locations, resourceGroup().location just specifies the default location.
1 vote -
Allow option from retrieve template from the edit template UI of the deploy template from ARM templates
When using the Deploy template U/I from the Azure Portal, there is no option to retrieve the template from the edit screen. it would be useful is the attached U/I could add an option to pull the template from the list of saved templates as well as quickstarts and local file system. It may also be useful to allow pulling the template from an arbitrary git url.
1 vote
- Don't see your idea?