使用TerraForm创建Azure前门实例
无法使用Terraform创建Azure前门实例。设置应该是相当基本的,但不能找出什么是错误的 这是地形脚本使用TerraForm创建Azure前门实例,terraform,terraform-provider-azure,azure-front-door,Terraform,Terraform Provider Azure,Azure Front Door,无法使用Terraform创建Azure前门实例。设置应该是相当基本的,但不能找出什么是错误的 这是地形脚本 resource "azurerm_frontdoor" "b2cfrontdoor" { name = "fd-adpb2c-westeurope-dev" resource_group_name
resource "azurerm_frontdoor" "b2cfrontdoor" {
name = "fd-adpb2c-westeurope-dev"
resource_group_name = azurerm_resource_group.b2c.name
enforce_backend_pools_certificate_name_check = true
routing_rule {
name = "routingrule"
accepted_protocols = ["Http", "Https"]
patterns_to_match = ["/*"]
frontend_endpoints = ["b2c-frontdoor-endpoint-dev"]
forwarding_configuration {
forwarding_protocol = "MatchRequest"
backend_pool_name = "b2-backend-pool-dev"
}
}
backend_pool_load_balancing {
name = "loadbalancingsettings"
}
backend_pool_health_probe {
name = "healthprobesettings"
enabled = false
probe_method = "HEAD"
}
backend_pool {
name = "b2-backend-pool-dev"
backend {
host_header = "xyz.b2clogin.com"
address = "xyz.b2clogin.com"
http_port = 80
https_port = 443
}
load_balancing_name = "loadbalancingsettings"
health_probe_name = "healthprobesettings"
}
frontend_endpoint {
name = "b2c-frontdoor-endpoint-dev"
host_name = "b2c-frontdoor-endpoint-dev.azurefd.net"
session_affinity_enabled = false
session_affinity_ttl_seconds = 0
}
}
返回的错误消息是
Error: creating Front Door "fd-adpb2c-westeurope-dev" (Resource Group "rg-adpb2c-westeurope-dev"): frontdoor.FrontDoorsClient#CreateOrUpdate: Failure sending request: StatusCode=0 -- Original Error: Code="BadRequest" Message="The frontend endpoint zone \"\" must only be used in the default CNAME entry."
on resource_frontdoor.tf line 1, in resource "azurerm_frontdoor" "b2cfrontdoor":
1: resource "azurerm_frontdoor" "b2cfrontdoor" {
对发送到Azure的请求进行了一些嗅探,发现一个PUT请求
用这个有效载荷
{
"location": "Global",
"properties": {
"backendPools": [
{
"id": "/subscriptions/*********************************/resourceGroups/rg-adpb2c-westeurope-dev/providers/Microsoft.Network/frontDoors/fd-adpb2c-westeurope-dev/backendPools/b2-backend-pool-dev",
"name": "b2-backend-pool-dev",
"properties": {
"backends": [
{
"address": "xyz.b2clogin.com",
"backendHostHeader": "xyz.b2clogin.com",
"enabledState": "Enabled",
"httpPort": 80,
"httpsPort": 443,
"priority": 1,
"weight": 50
}
],
"loadBalancingSettings": {
"id": "/subscriptions/*********************************/resourceGroups/rg-adpb2c-westeurope-dev/providers/Microsoft.Network/frontDoors/fd-adpb2c-westeurope-dev/loadBalancingSettings/loadbalancingsettings"
},
"healthProbeSettings": {
"id": "/subscriptions/*********************************/resourceGroups/rg-adpb2c-westeurope-dev/providers/Microsoft.Network/frontDoors/fd-adpb2c-westeurope-dev/healthProbeSettings/healthprobesettings"
}
}
}
],
"backendPoolsSettings": {
"enforceCertificateNameCheck": "Disabled",
"sendRecvTimeoutSeconds": 60
},
"enabledState": "Enabled",
"friendlyName": "",
"frontendEndpoints": [
{
"id": "/subscriptions/*********************************/resourceGroups/rg-adpb2c-westeurope-dev/providers/Microsoft.Network/frontDoors/fd-adpb2c-westeurope-dev/frontendEndpoints/b2-frontdoor-endpoint-dev",
"name": "b2-frontdoor-endpoint-dev",
"properties": {
"hostName": "b2-frontdoor-endpoint-dev.azurefd.net",
"sessionAffinityEnabledState": "Disabled",
"sessionAffinityTtlSeconds": 0
}
}
],
"healthProbeSettings": [
{
"id": "/subscriptions/*********************************/resourceGroups/rg-adpb2c-westeurope-dev/providers/Microsoft.Network/frontDoors/fd-adpb2c-westeurope-dev/healthProbeSettings/healthprobesettings",
"name": "healthprobesettings",
"properties": {
"path": "/",
"protocol": "Http",
"intervalInSeconds": 120,
"healthProbeMethod": "GET",
"enabledState": "Disabled"
}
}
],
"loadBalancingSettings": [
{
"id": "/subscriptions/*********************************/resourceGroups/rg-adpb2c-westeurope-dev/providers/Microsoft.Network/frontDoors/fd-adpb2c-westeurope-dev/loadBalancingSettings/loadbalancingsettings",
"name": "loadbalancingsettings",
"properties": {
"sampleSize": 4,
"successfulSamplesRequired": 2,
"additionalLatencyMilliseconds": 0
}
}
],
"routingRules": [
{
"id": "",
"name": "routingrule",
"properties": {
"frontendEndpoints": [
{
"id": "/subscriptions/*********************************/resourceGroups/rg-adpb2c-westeurope-dev/providers/Microsoft.Network/frontDoors/fd-adpb2c-westeurope-dev/frontendEndpoints/b2-frontdoor-endpoint-dev"
}
],
"acceptedProtocols": [
"Http",
"Https"
],
"patternsToMatch": [
"/*"
],
"enabledState": "Enabled",
"routeConfiguration": {
"@odata.type": "#Microsoft.Azure.FrontDoor.Models.FrontdoorForwardingConfiguration",
"backendPool": {
"id": "/subscriptions/*********************************/resourceGroups/rg-adpb2c-westeurope-dev/providers/Microsoft.Network/frontDoors/fd-adpb2c-westeurope-dev/backendPools/b2-backend-pool-dev"
},
"forwardingProtocol": "MatchRequest"
}
}
}
]
},
"tags": {}
}
答案是
{
"error": {
"code": "BadRequest",
"message": "The frontend endpoint zone \"\" must only be used in the default CNAME entry."
}
}
地形版本为0.14.10,azurerm版本为v2.56.0
有人知道这个问题吗
谢谢关于此问题,请参考以下步骤
resource "azurerm_frontdoor" "b2cfrontdoor" {
name = "b2c-frontdoor-endpoint-dev"
resource_group_name = azurerm_resource_group.b2c.name
enforce_backend_pools_certificate_name_check = true
routing_rule {
name = "routingrule"
accepted_protocols = ["Http", "Https"]
patterns_to_match = ["/*"]
frontend_endpoints = ["b2c-frontdoor-endpoint-dev"]
forwarding_configuration {
forwarding_protocol = "MatchRequest"
backend_pool_name = "b2-backend-pool-dev"
}
}
backend_pool_load_balancing {
name = "loadbalancingsettings"
}
backend_pool_health_probe {
name = "healthprobesettings"
}
backend_pool {
name = "b2-backend-pool-dev"
backend {
host_header = "test.b2clogin.com"
address = "test.b2clogin.com"
http_port = 80
https_port = 443
}
load_balancing_name = "loadbalancingsettings"
health_probe_name = "healthprobesettings"
}
frontend_endpoint {
name = "b2c-frontdoor-endpoint-dev"
host_name = "b2c-frontdoor-endpoint-dev.azurefd.net"
session_affinity_enabled = false
session_affinity_ttl_seconds = 0
}
}
找出问题所在(也由Jim Xu指出)。资源的名称(“azurerm_frontdoor”“b2cfrontdoor”)和前端_端点的名称必须相同。在Azure门户中创建前门实例时,不会要求您输入名称,前门实例会从前端的名称中获取名称
resource "azurerm_frontdoor" "b2cfrontdoor" {
name = "b2c-frontdoor-endpoint-dev"
resource_group_name = azurerm_resource_group.b2c.name
enforce_backend_pools_certificate_name_check = true
routing_rule {
name = "routingrule"
accepted_protocols = ["Http", "Https"]
patterns_to_match = ["/*"]
frontend_endpoints = ["b2c-frontdoor-endpoint-dev"]
forwarding_configuration {
forwarding_protocol = "MatchRequest"
backend_pool_name = "b2-backend-pool-dev"
}
}
backend_pool_load_balancing {
name = "loadbalancingsettings"
}
backend_pool_health_probe {
name = "healthprobesettings"
enabled = false
probe_method = "HEAD"
}
backend_pool {
name = "b2-backend-pool-dev"
backend {
host_header = "xyz.b2clogin.com"
address = "xyz.b2clogin.com"
http_port = 80
https_port = 443
}
load_balancing_name = "loadbalancingsettings"
health_probe_name = "healthprobesettings"
}
frontend_endpoint {
name = "b2c-frontdoor-endpoint-dev"
host_name = "b2c-frontdoor-endpoint-dev.azurefd.net"
session_affinity_enabled = false
session_affinity_ttl_seconds = 0
}
}
嗨,你说的“以下步骤”是什么意思?@LarsKolsaker Soory。我犯了一个错误。根据我的测试,资源名称和前端端点名称应该相同。