PR comments

Author: carlotaarvela

src/aks-preview/azext_aks_preview/custom.py

@@ -552,7 +552,7 @@ def __init__(self, location, resource_id):
             )
 
             resources = get_resources_client(cmd.cli_ctx, cluster_subscription)
-            for attempt in range(3):
+            for _ in range(3):
                 try:
                     if enable_syslog:
                         resources.begin_create_or_update_by_id(

src/aks-preview/azext_aks_preview/managed_cluster_decorator.py

@@ -180,7 +180,6 @@ def _get_monitoring_addon_key_from_consts(addon_profiles, addon_consts):
         addon_consts.get("CONST_MONITORING_ADDON_NAME"),
     )
 
-
 # pylint: disable=too-few-public-methods
 class AKSPreviewManagedClusterModels(AKSManagedClusterModels):
     """Store the models used in aks series of commands.
@@ -4674,8 +4673,8 @@ def _setup_azure_monitor_logs(self, mc: ManagedCluster) -> None:
         mc.addon_profiles[CONST_MONITORING_ADDON_NAME] = addon_profile
 
         # DCR and DCRA creation is deferred to postprocessing_after_mc_created
-        # (_postprocess_monitoring_enable) so that all flags are finalized and
-        # the cluster exists.  Only MSI clusters need a DCR.
+        # so that all flags are finalized and the cluster exists.
+        # Only MSI clusters need a DCR.
         self.context.set_intermediate("monitoring_addon_enabled", True, overwrite_exists=True)
 
     def _setup_opentelemetry_metrics(self, mc: ManagedCluster) -> None:
@@ -5313,15 +5312,83 @@ def postprocessing_after_mc_created(self, cluster: ManagedCluster) -> None:
         # monitoring addon
         monitoring_addon_enabled = self.context.get_intermediate("monitoring_addon_enabled", default_value=False)
         if monitoring_addon_enabled:
-            self._postprocess_monitoring_enable(cluster)
+            enable_msi_auth_for_monitoring = self.context.get_enable_msi_auth_for_monitoring()
+            if not enable_msi_auth_for_monitoring:
+                # add cluster spn/msi Monitoring Metrics Publisher role assignment to publish metrics to MDM
+                # mdm metrics is supported only in azure public cloud, so add the role assignment only in this cloud
+                cloud_name = self.cmd.cli_ctx.cloud.name
+                if cloud_name.lower() == "azurecloud":
+                    cluster_resource_id = resource_id(
+                        subscription=self.context.get_subscription_id(),
+                        resource_group=self.context.get_resource_group_name(),
+                        namespace="Microsoft.ContainerService",
+                        type="managedClusters",
+                        name=self.context.get_name(),
+                    )
+                    self.context.external_functions.add_monitoring_role_assignment(
+                        cluster, cluster_resource_id, self.cmd
+                    )
+            elif self._should_create_dcra():
+                addon_consts = self.context.get_addon_consts()
+                monitoring_addon_key = (
+                    _get_monitoring_addon_key_from_consts(cluster.addon_profiles, addon_consts)
+                    if cluster.addon_profiles
+                    else addon_consts.get("CONST_MONITORING_ADDON_NAME")
+                )
+                self.context.external_functions.ensure_container_insights_for_monitoring(
+                    self.cmd,
+                    cluster.addon_profiles[monitoring_addon_key],
+                    self.context.get_subscription_id(),
+                    self.context.get_resource_group_name(),
+                    self.context.get_name(),
+                    self.context.get_location(),
+                    remove_monitoring=False,
+                    aad_route=self.context.get_enable_msi_auth_for_monitoring(),
+                    create_dcr=True,
+                    create_dcra=True,
+                    enable_syslog=self.context.get_enable_syslog(),
+                    data_collection_settings=self.context.get_data_collection_settings(),
+                    is_private_cluster=self.context.get_enable_private_cluster(),
+                    ampls_resource_id=self.context.get_ampls_resource_id(),
+                    enable_high_log_scale_mode=self.context.get_enable_high_log_scale_mode(),
+                )
 
         # Handle monitoring addon postprocessing (disable case) - same logic as aks_disable_addons
         monitoring_addon_disable_postprocessing_required = self.context.get_intermediate(
             "monitoring_addon_disable_postprocessing_required", default_value=False
         )
 
         if monitoring_addon_disable_postprocessing_required:
-            self._postprocess_monitoring_disable()
+            addon_consts = self.context.get_addon_consts()
+            CONST_MONITORING_ADDON_NAME = addon_consts.get("CONST_MONITORING_ADDON_NAME")
+
+            # Get the current cluster state to check config before it was disabled
+            current_cluster = self.client.get(self.context.get_resource_group_name(), self.context.get_name())
+
+            if (current_cluster.addon_profiles and
+                    CONST_MONITORING_ADDON_NAME in current_cluster.addon_profiles):
+
+                addon_profile = current_cluster.addon_profiles[CONST_MONITORING_ADDON_NAME]
+
+                try:
+                    self.context.external_functions.ensure_container_insights_for_monitoring(
+                        self.cmd,
+                        addon_profile,
+                        self.context.get_subscription_id(),
+                        self.context.get_resource_group_name(),
+                        self.context.get_name(),
+                        self.context.get_location(),
+                        remove_monitoring=True,
+                        aad_route=True,
+                        create_dcr=False,
+                        create_dcra=True,
+                        enable_syslog=False,
+                        data_collection_settings=None,
+                        ampls_resource_id=None,
+                        enable_high_log_scale_mode=False
+                    )
+                except TypeError:
+                    pass
 
         # ingress appgw addon
         ingress_appgw_addon_enabled = self.context.get_intermediate("ingress_appgw_addon_enabled", default_value=False)
@@ -5501,91 +5568,14 @@ def _should_create_dcra(self) -> bool:
         )
 
     def _is_cnl_or_hlsm_changing(self) -> bool:
-        """Return True if any CNL or High Log Scale Mode flag was provided."""
+        """Return True if any CNL or High Log Scale Mode enable flag was provided."""
         params = self.context.raw_param
         return (
             params.get("enable_container_network_logs") is not None or
             params.get("enable_retina_flow_logs") is not None or
-            params.get("disable_container_network_logs") is not None or
-            params.get("disable_retina_flow_logs") is not None or
             params.get("enable_high_log_scale_mode") is not None
         )
 
-    def _postprocess_monitoring_enable(self, cluster: ManagedCluster) -> None:
-        """Handle monitoring addon postprocessing for the enable case."""
-        enable_msi_auth_for_monitoring = self.context.get_enable_msi_auth_for_monitoring()
-        if not enable_msi_auth_for_monitoring:
-            # add cluster spn/msi Monitoring Metrics Publisher role assignment to publish metrics to MDM
-            # mdm metrics is supported only in azure public cloud, so add the role assignment only in this cloud
-            cloud_name = self.cmd.cli_ctx.cloud.name
-            if cloud_name.lower() == "azurecloud":
-                cluster_resource_id = resource_id(
-                    subscription=self.context.get_subscription_id(),
-                    resource_group=self.context.get_resource_group_name(),
-                    namespace="Microsoft.ContainerService",
-                    type="managedClusters",
-                    name=self.context.get_name(),
-                )
-                self.context.external_functions.add_monitoring_role_assignment(
-                    cluster, cluster_resource_id, self.cmd
-                )
-        elif self._should_create_dcra():
-            addon_consts = self.context.get_addon_consts()
-            monitoring_addon_key = (
-                _get_monitoring_addon_key_from_consts(cluster.addon_profiles, addon_consts)
-                if cluster.addon_profiles
-                else addon_consts.get("CONST_MONITORING_ADDON_NAME")
-            )
-            self.context.external_functions.ensure_container_insights_for_monitoring(
-                self.cmd,
-                cluster.addon_profiles[monitoring_addon_key],
-                self.context.get_subscription_id(),
-                self.context.get_resource_group_name(),
-                self.context.get_name(),
-                self.context.get_location(),
-                remove_monitoring=False,
-                aad_route=self.context.get_enable_msi_auth_for_monitoring(),
-                create_dcr=True,
-                create_dcra=True,
-                enable_syslog=self.context.get_enable_syslog(),
-                data_collection_settings=self.context.get_data_collection_settings(),
-                is_private_cluster=self.context.get_enable_private_cluster(),
-                ampls_resource_id=self.context.get_ampls_resource_id(),
-                enable_high_log_scale_mode=self.context.get_enable_high_log_scale_mode(),
-            )
-
-    def _postprocess_monitoring_disable(self) -> None:
-        """Handle monitoring addon postprocessing for the disable case."""
-        addon_consts = self.context.get_addon_consts()
-        CONST_MONITORING_ADDON_NAME = addon_consts.get("CONST_MONITORING_ADDON_NAME")
-
-        # Get the current cluster state to check config before it was disabled
-        current_cluster = self.client.get(self.context.get_resource_group_name(), self.context.get_name())
-
-        if (current_cluster.addon_profiles and
-                CONST_MONITORING_ADDON_NAME in current_cluster.addon_profiles):
-
-            addon_profile = current_cluster.addon_profiles[CONST_MONITORING_ADDON_NAME]
-
-            try:
-                self.context.external_functions.ensure_container_insights_for_monitoring(
-                    self.cmd,
-                    addon_profile,
-                    self.context.get_subscription_id(),
-                    self.context.get_resource_group_name(),
-                    self.context.get_name(),
-                    self.context.get_location(),
-                    remove_monitoring=True,
-                    aad_route=True,
-                    create_dcr=False,
-                    create_dcra=True,
-                    enable_syslog=False,
-                    data_collection_settings=None,
-                    ampls_resource_id=None,
-                    enable_high_log_scale_mode=False
-                )
-            except TypeError:
-                pass
 
 
 class AKSPreviewManagedClusterUpdateDecorator(AKSManagedClusterUpdateDecorator):