Merge pull request #5 from sonalika-roy/main

Update 0401.md

Author: sonalika-roy

docs/04_lab_secrets/0401.md

@@ -80,16 +80,21 @@ Since each of these apps already has a user assigned managed identity assigned t
 <summary>hint</summary>
 <br/>
 
+
 1. For creating a service connector you will need to add the `serviceconnector-passwordless` extension:
 
    ```bash
+   
    az extension add --name serviceconnector-passwordless --upgrade
+
    ```
 
 1. You will also need your subscription ID for creating the service connections:
 
    ```bash
+   
    SUBID=$(az account show --query id -o tsv)
+
    ```
 
 1. You will also need resource ID of the apps:
@@ -101,11 +106,13 @@ Since each of these apps already has a user assigned managed identity assigned t
                     --name customers-service \
                     --query id \
                     -o tsv)
+   
     Visits_ID=$(az containerapp show \
                    --resource-group $RESOURCE_GROUP \
                    --name visits-service \
                    --query id \
                    -o tsv)
+   
     Vets_ID=$(az containerapp show \
                  --resource-group $RESOURCE_GROUP \
                  --name vets-service \
@@ -125,25 +132,29 @@ Since each of these apps already has a user assigned managed identity assigned t
       --client-type SpringBoot \
       --user-identity client-id=$Client_ID  subs-id=$SUBID user-object-id=$CURRENT_USER_OBJECTID mysql-identity-id=$ADMIN_IDENTITY_RESOURCE_ID \
       -c customers-service
+   
    ```
 
 1. You can test the validity of this new connection with the `validate` command: 
 
    ```bash
+   
     CUSTOMERS_ConnId=$(az containerapp connection list \
                    --resource-group $RESOURCE_GROUP \
                    --name customers-service \
                    --query [].id -o tsv)
    
     az containerapp connection validate \
        --id $CUSTOMERS_ConnId
+   
    ```
 
    The output of this command should show that the connection was made successful.
 
 1. In the same way create the service connections for the `vets-service` and `visits-service`:
 
    ```bash
+   
    az containerapp connection create \
       mysql-flexible --connection mysql_conn \
       --source-id $Vets_ID \
@@ -159,11 +170,13 @@ Since each of these apps already has a user assigned managed identity assigned t
       --client-type SpringBoot \
       --user-identity client-id=$Client_ID  subs-id=$SUBID user-object-id=$CURRENT_USER_OBJECTID mysql-identity-id=$ADMIN_IDENTITY_RESOURCE_ID \
       -c visits-service
+   
    ```
 
 1. You can test the validity of this new connection with the `validate` command: 
 
    ```bash
+   
     Vets_ConnId=$(az containerapp connection list \
                    --resource-group $RESOURCE_GROUP \
                    --name vets-service \
@@ -179,6 +192,7 @@ Since each of these apps already has a user assigned managed identity assigned t
    
     az containerapp connection validate \
        --id $Visits_ConnId
+   
    ```
 
 1. In the Azure Portal, navigate to your `customers-service` container app. In the `customers-service` app, select the `Service Connector` menu item. Notice in this screen you can see the details of your service connector. Notice that the service connector has all the config values set like `spring.datasource.url`, `spring.datasource.username`, but for instance no `spring.datasource.password`. These values get turned into environment variables at runtime for your app. This is also why you could remove them from the Key Vault. Instead of `spring.datasource.password` it has a `spring.cloud.azure.credential.client-id`, which is the client ID of your managed identity. It also defines 2 additional variables `spring.datasource.azure.passwordless-enabled` and `spring.cloud.azure.credential.managed-identity-enabled` for enabling the passwordless connectivity.
@@ -231,8 +245,10 @@ The following three apps of your application use the database hosted by the Azur
 1. With these changes done. Make sure you are in the /src folder and rebuild the project.
 
    ```bash
+   
    cd ~/workspaces/java-microservices-aks-lab/src
    mvn clean package -DskipTests
+   
    ```
 1. In the config repository you will need to update the database connection information. Replace the contents of the current `application.yml` file with the contents of the [0405_application.yml file](0405_application.yml). Make sure you fill out your current MySQL server name on line `12`. This file includes the following changes:
 
@@ -243,14 +259,17 @@ The following three apps of your application use the database hosted by the Azur
 1. Commit these changes to the config repo.
 
    ```bash
+   
    git add .
    git commit -m 'Changed db config to passwordless'
    git push
+   
    ```
 
 1. Once the build is done, move to the `staging-acr` directory and recreate the container for customers, visits and vets.
 
    ```bash
+   
    cd staging-acr
    rm spring-petclinic-customers-service-$VERSION.jar
    rm spring-petclinic-visits-service-$VERSION.jar