Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Purge Key Vaults after deleting resource group #1894

Merged
8 commits merged into from
Aug 13, 2021
Merged

Purge Key Vaults after deleting resource group #1894

8 commits merged into from
Aug 13, 2021

Conversation

heaths
Copy link
Member

@heaths heaths commented Aug 11, 2021

No description provided.

@heaths heaths requested review from benbp and maorleger August 11, 2021 17:56
@azure-sdk
Copy link
Collaborator

The following pipelines have been queued for testing:
java - template
java - template - tests
js - template
net - template
net - template - tests
python - template
python - template - tests
You can sign off on the approval gate to test the release stage of each pipeline.
See eng/common workflow

@heaths heaths requested a review from a team as a code owner August 12, 2021 21:14
@check-enforcer-staging
Copy link

This pull request is protected by Check Enforcer.

What is Check Enforcer?

Check Enforcer helps ensure all pull requests are covered by at least one check-run (typically an Azure Pipeline). When all check-runs associated with this pull request pass then Check Enforcer itself will pass.

Why am I getting this message?

You are getting this message because Check Enforcer did not detect any check-runs being associated with this pull request within five minutes. This may indicate that your pull request is not covered by any pipelines and so Check Enforcer is correctly blocking the pull request being merged.

What should I do now?

If the check-enforcer check-run is not passing and all other check-runs associated with this PR are passing (excluding license-cla) then you could try telling Check Enforcer to evaluate your pull request again. You can do this by adding a comment to this pull request as follows:
/check-enforcer evaluate
Typically evaulation only takes a few seconds. If you know that your pull request is not covered by a pipeline and this is expected you can override Check Enforcer using the following command:
/check-enforcer override
Note that using the override command triggers alerts so that follow-up investigations can occur (PRs still need to be approved as normal).

@heaths
Copy link
Member Author

heaths commented Aug 12, 2021
edited
Loading

For testing, I deployed .NET's sdk/keyvault/test-resources.json with @{enableHsm=$true} and tested out the Remove-TestResources.ps1 script with and without -Force, and with and without KVs in the RG to find (used another service directory that didn't allocate a KV - surprisingly few of those). For the clean-up script, I created and deleted a Managed HSM (so it was left in deleted state not related to my aforementioned resource group) and ran the script to delete 300-some KVs and that MHSM. May take a while to run, but I sourced my Resource-helpers.ps1 script and ran the two Get-* functions locally to examine the results. All looking good.

@azure-sdk
Copy link
Collaborator

The following pipelines have been queued for testing:
java - template
java - template - tests
js - template
net - template
net - template - tests
python - template
python - template - tests
You can sign off on the approval gate to test the release stage of each pipeline.
See eng/common workflow

weshaggard
weshaggard approved these changes Aug 12, 2021
View reviewed changes
Copy link
Member

@weshaggard weshaggard left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is definitely along the lines of what I was thinking for sharing between the scripts. Perhaps some minor clean-up on the logging commands but otherwise the changes look good. Thanks.

@heaths
Copy link
Member Author

heaths commented Aug 12, 2021

If you want to override the logging in the clean-up script great - but I merely copied what you were already using (Write-Host for general "always log"). I don't want the TestResources scripts' logging changed. It's been like that in the beginning, long before moving to Azure/azure-sdk-tools. VSO already captures PS warnings and errors to using VSO tasks to write them is redundant.

@azure-sdk
Copy link
Collaborator

The following pipelines have been queued for testing:
java - template
java - template - tests
js - template
net - template
net - template - tests
python - template
python - template - tests
You can sign off on the approval gate to test the release stage of each pipeline.
See eng/common workflow

@azure-sdk
Copy link
Collaborator

The following pipelines have been queued for testing:
java - template
java - template - tests
js - template
net - template
net - template - tests
python - template
python - template - tests
You can sign off on the approval gate to test the release stage of each pipeline.
See eng/common workflow

@azure-sdk
Copy link
Collaborator

The following pipelines have been queued for testing:
java - template
java - template - tests
js - template
net - template
net - template - tests
python - template
python - template - tests
You can sign off on the approval gate to test the release stage of each pipeline.
See eng/common workflow

@azure-sdk
Copy link
Collaborator

The following pipelines have been queued for testing:
java - template
java - template - tests
js - template
net - template
net - template - tests
python - template
python - template - tests
You can sign off on the approval gate to test the release stage of each pipeline.
See eng/common workflow

This was referenced Aug 13, 2021
Merged
Merged
Merged
Merged
Merged
Merged
Merged
Merged
Merged
@ghost
Copy link

ghost commented Aug 13, 2021

Hello @azure-sdk!

Because this pull request has the auto-merge label, I will be glad to assist with helping to merge this pull request once all check-in policies pass.

p.s. you can customize the way I help with merging this pull request, such as holding this pull request until a specific person approves. Simply @mention me (@msftbot) and give me an instruction to get started! Learn more here.

@ghost ghost merged commit 1a79aeb into Azure:main Aug 13, 2021
@heaths heaths deleted the purge-keyvaults branch August 13, 2021 02:56
This pull request was closed.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@benbp benbp benbp left review comments

@weshaggard weshaggard weshaggard approved these changes

@danieljurek danieljurek Awaiting requested review from danieljurek

@maorleger maorleger Awaiting requested review from maorleger

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@heaths @azure-sdk @benbp @weshaggard