feat(CGNSPC-440): Azure Extended Zones | ARM (main template and UI) (#572)

Co-authored-by: Aviv Meydan <avivm@checkpoint.com>
Co-authored-by: michaeltz <michaeltz@checkpoint.com>
Co-authored-by: liavb <liavb@checkpoint.com>
Co-authored-by: nimrodgab <nimrodgab@checkpoint.com>
Co-authored-by: noamerez <noamerez@checkpoint.com>

Author: 6 people

azure/templates/marketplace-ha/createUiDefinition.json

@@ -4,6 +4,45 @@
   "version": "0.1.2-preview",
   "parameters": {
     "basics": [
+      {
+        "name": "extendedZone",
+        "type": "Microsoft.Common.DropDown",
+        "label": "Extended Zone",
+        "defaultValue": "None",
+        "toolTip": "Deploy in Azure Extended Zone for ultra-low latency edge computing. Los Angeles Extended Zone requires West US region. Perth Extended Zone requires Australia East region. Extended Zone requires Premium_LRS and is supported for R81.20 and above. Extended Zone cannot be combined with Public IP Prefix.",
+        "visible": "[not(equals(basics('availabilityZonesChoice'), 'Yes'))]",
+        "constraints": {
+          "allowedValues": [
+            {
+              "label": "None",
+              "value": "None"
+            },
+            {
+              "label": "Los Angeles (requires West US region)",
+              "value": "losangeles"
+            },
+            {
+              "label": "Perth (requires Australia East region)",
+              "value": "perth"
+            }
+          ],
+          "required": true
+        },
+        "validations": [
+          {
+            "isValid": "[or(equals(basics('extendedZone'), 'None'), and(equals(basics('extendedZone'), 'losangeles'), equals(location(), 'westus')), and(equals(basics('extendedZone'), 'perth'), equals(location(), 'australiaeast')))]",
+            "message": "Extended Zone selection is not compatible with the selected region. Los Angeles Extended Zone requires West US region, Perth Extended Zone requires Australia East region."
+          },
+          {
+            "isValid": "[or(equals(basics('extendedZone'), 'None'), not(equals(steps('chkp-advanced').publicIPPrefix, 'yes')))]",
+            "message": "Extended Zone cannot be combined with Public IP Prefix."
+          },
+          {
+            "isValid": "[or(equals(basics('extendedZone'), 'None'), and(not(contains(createArray('R81.10'), steps('chkp').cloudGuardVersion)), equals(steps('chkp-advanced').VMDiskType, 'Premium_LRS')))]",
+            "message": "Extended Zone requires version R81.20 or above and VM disk type Premium_LRS (Premium SSD)."
+          }
+        ]
+      },
       {
         "name": "zoneInfo",
         "type": "Microsoft.Solutions.ArmApiControl",
@@ -24,7 +63,7 @@
             { "label": "Yes", "value": "Yes" }
           ]
         },
-        "visible": "[and(not(empty(basics('zoneInfo').value)), greater(int(if(greater(length(filter(basics('zoneInfo').value, (r) => equals(r.name, location()))), 0), if(greater(length(first(filter(basics('zoneInfo').value, (r) => equals(r.name, location()))).availabilityZoneMappings), 0), string(length(first(filter(basics('zoneInfo').value, (r) => equals(r.name, location()))).availabilityZoneMappings)), '0'), '0')), 0))]"
+        "visible": "[and(equals(basics('extendedZone'), 'None'), and(not(empty(basics('zoneInfo').value)), greater(int(if(greater(length(filter(basics('zoneInfo').value, (r) => equals(r.name, location()))), 0), if(greater(length(first(filter(basics('zoneInfo').value, (r) => equals(r.name, location()))).availabilityZoneMappings), 0), string(length(first(filter(basics('zoneInfo').value, (r) => equals(r.name, location()))).availabilityZoneMappings)), '0'), '0')), 0)))]"
       },
       {
         "name": "zonesDropdown",
@@ -39,12 +78,12 @@
           "allowedValues": "[map(range(1, int(string(length(first(filter(basics('zoneInfo').value, (r) => equals(r.name, location()))).availabilityZoneMappings)))), (item) => parse(concat('{\"label\":\"Zone ', string(item), '\",\"value\":\"', string(item), '\"}')))]",
           "required": false
         },
-        "visible": "[equals(basics('availabilityZonesChoice'), 'Yes')]"
+        "visible": "[and(equals(basics('extendedZone'), 'None'), equals(basics('availabilityZonesChoice'), 'Yes'))]"
       },
       {
         "name": "zonesTooMany",
         "type": "Microsoft.Common.InfoBox",
-        "visible": "[and(equals(basics('availabilityZonesChoice'), 'Yes'), greater(length(coalesce(basics('zonesDropdown'), parse('[]'))), 2))]",
+        "visible": "[and(equals(basics('extendedZone'), 'None'), and(equals(basics('availabilityZonesChoice'), 'Yes'), greater(length(coalesce(basics('zonesDropdown'), parse('[]'))), 2)))]",
         "options": {
           "icon": "Error",
           "text": "HA cluster deploys exactly 2 VMs. Please select at most 2 availability zones."
@@ -1384,7 +1423,7 @@
                 }
               ]
             },
-            "visible": true
+            "visible": "[equals(basics('extendedZone'), 'None')]"
           },
           {
             "name": "createNewIPPrefix",
@@ -1404,7 +1443,7 @@
                 }
               ]
             },
-            "visible": "[equals(steps('chkp-advanced').publicIPPrefix, 'yes')]"
+            "visible": "[and(equals(basics('extendedZone'), 'None'), equals(steps('chkp-advanced').publicIPPrefix, 'yes'))]"
           },
           {
             "name": "ipPrefixExistingResourceId",
@@ -1417,7 +1456,7 @@
               "regex": "^[a-z0-9A-Z -.:/n]{1,}$",
               "validationMessage": "Only alphanumeric characters, hyphens, spaces, periods, and colons are allowed."
             },
-            "visible": "[equals(steps('chkp-advanced').createNewIPPrefix, 'no')]"
+            "visible": "[and(equals(basics('extendedZone'), 'None'), and(equals(steps('chkp-advanced').publicIPPrefix, 'yes'), equals(steps('chkp-advanced').createNewIPPrefix, 'no')))]"
           }
         ]
       },
@@ -1753,7 +1792,7 @@
               ],
               "required": true
             },
-            "visible": true
+            "visible": "[equals(basics('extendedZone'), 'None')]"
           },
           {
             "name": "addStorageAccountIpRules",
@@ -1774,7 +1813,7 @@
               ],
               "required": "[equals(steps('network').storageAccountDeployMode, 'New')]"
             },
-            "visible": "[equals(steps('network').storageAccountDeployMode, 'New')]"
+            "visible": "[and(equals(basics('extendedZone'), 'None'), equals(steps('network').storageAccountDeployMode, 'New'))]"
           },
           {
             "name": "existingStorageAccount",
@@ -1786,12 +1825,12 @@
             "constraints": {
               "required": "[equals(steps('network').storageAccountDeployMode, 'Existing')]"
             },
-            "visible": "[equals(steps('network').storageAccountDeployMode, 'Existing')]"
+            "visible": "[and(equals(basics('extendedZone'), 'None'), equals(steps('network').storageAccountDeployMode, 'Existing'))]"
           },
           {
             "name": "infoExistingStorageAccount",
             "type": "Microsoft.Common.InfoBox",
-            "visible": "[equals(steps('network').storageAccountDeployMode, 'Existing')]",
+            "visible": "[and(equals(basics('extendedZone'), 'None'), equals(steps('network').storageAccountDeployMode, 'Existing'))]",
             "options": {
               "icon": "Info",
               "text": "The Storage Account must allow network access from the Serial Console feature, for more information - <a href='https://learn.microsoft.com/en-us/troubleshoot/azure/virtual-machines/linux/serial-console-linux?WT.mc_id=Portal-Microsoft_Azure_CreateUIDef' target='_blank'>Serial Console Security</a>."
@@ -1800,7 +1839,7 @@
           {
             "name": "infoManagedStorageAccount",
             "type": "Microsoft.Common.InfoBox",
-            "visible": "[equals(steps('network').storageAccountDeployMode, 'Managed')]",
+            "visible": "[and(equals(basics('extendedZone'), 'None'), equals(steps('network').storageAccountDeployMode, 'Managed'))]",
             "options": {
               "icon": "Info",
               "text": "Azure will use a managed Storage Account for the deployment, no additional configuration is required."
@@ -1809,7 +1848,7 @@
           {
             "name": "warningNoneStorageAccount",
             "type": "Microsoft.Common.InfoBox",
-            "visible": "[equals(steps('network').storageAccountDeployMode, 'None')]",
+            "visible": "[and(equals(basics('extendedZone'), 'None'), equals(steps('network').storageAccountDeployMode, 'None'))]",
             "options": {
               "icon": "Warning",
               "text": "Please note that deploying without a Storage Account will not allow you to use the Serial Console feature. For more information - <a href='https://learn.microsoft.com/en-us/troubleshoot/azure/virtual-machines/linux/serial-console-linux?WT.mc_id=Portal-Microsoft_Azure_CreateUIDef' target='_blank'>Azure Serial Console</a>."
@@ -1851,6 +1890,7 @@
     ],
     "outputs": {
       "location": "[location()]",
+      "extendedZone": "[basics('extendedZone')]",
       "cloudGuardVersion": "[concat(steps('chkp').cloudGuardVersion, ' - ', coalesce(steps('chkp').R80Offer, 'Bring Your Own License'))]",
       "adminPassword": "[basics('auth').password]",
       "authenticationType": "[basics('auth').authenticationType]",
@@ -1874,13 +1914,13 @@
       "diskType": "[if(contains('R81.10' , steps('chkp').cloudGuardVersion) , steps('chkp-advanced').VMDiskTypeOldVersions , steps('chkp-advanced').VMDiskType)]",
       "managedSystemAssigned": "[steps('chkp-advanced').managedSystemAssigned]",
       "sourceImageVhdUri": "[coalesce(steps('chkp-advanced').sourceImageVhdUri, 'noCustomUri')]",
-      "availabilityZones": "[if(equals(basics('availabilityZonesChoice'), 'Yes'), if(greater(length(coalesce(basics('zonesDropdown'), parse('[]'))), 0), basics('zonesDropdown'), parse('[\"1\", \"2\"]')), parse('[]'))]",
-      "availabilityZonesChoice": "[basics('availabilityZonesChoice')]",
+      "availabilityZones": "[if(and(equals(basics('extendedZone'), 'None'), equals(basics('availabilityZonesChoice'), 'Yes')), if(greater(length(coalesce(basics('zonesDropdown'), parse('[]'))), 0), basics('zonesDropdown'), parse('[\"1\", \"2\"]')), parse('[]'))]",
+      "availabilityZonesChoice": "[if(equals(basics('extendedZone'), 'None'), basics('availabilityZonesChoice'), 'No')]",
       "customMetrics": "[steps('chkp-advanced').customMetrics]",
       "floatingIP": "[steps('chkp-advanced').floatingIP]",
-      "publicIPPrefix": "[steps('chkp-advanced').publicIPPrefix]",
-      "createNewIPPrefix": "[steps('chkp-advanced').createNewIPPrefix]",
-      "ipPrefixExistingResourceId": "[steps('chkp-advanced').ipPrefixExistingResourceId]",
+      "publicIPPrefix": "[if(equals(basics('extendedZone'), 'None'), steps('chkp-advanced').publicIPPrefix, 'no')]",
+      "createNewIPPrefix": "[if(and(equals(basics('extendedZone'), 'None'), equals(steps('chkp-advanced').publicIPPrefix, 'yes')), steps('chkp-advanced').createNewIPPrefix, 'no')]",
+      "ipPrefixExistingResourceId": "[if(and(equals(basics('extendedZone'), 'None'), equals(steps('chkp-advanced').publicIPPrefix, 'yes'), equals(steps('chkp-advanced').createNewIPPrefix, 'no')), steps('chkp-advanced').ipPrefixExistingResourceId, '')]",
       "adminShell": "[steps('chkp-advanced').adminShell]",
       "smart1CloudTokenA": "[steps('chkp').Smart1CloudTokenA]",
       "smart1CloudTokenB": "[steps('chkp').Smart1CloudTokenB]",