[AKS] az aks bastion: Add new option --kubeconfig-path to allow users to specify an existing kubeconfig file

[FumingZhang]

---

This checklist is used to make sure that common guidelines for a pull request are followed.

Related command

az aks bastion

When you specify a value for the new --kubeconfig-path option:

• The command will notify the user that "The server URL for cluster 'xxx' in your kubeconfig has been updated to point to the bastion tunnel. Once the bastion tunnel is closed, this cluster configuration will stop working. To restore connectivity, rerun this command to automatically update the server URL and create a new tunnel."
  

• The command will fail if the provided kubeconfig does not have a cluster with a name that exactly matches the one specified in the command.
  

If you do not specify the new option, the command will behave as before: it will download the kubeconfig to a temporary path, which will be deleted once the command exits.

General Guidelines

• Have you run azdev style <YOUR_EXT> locally? (pip install azdev required)
• Have you run python scripts/ci/test_index.py -q locally? (pip install wheel==0.30.0 required)
• My extension version conforms to the Extension version schema

For new extensions:

• My extension description/summary conforms to the Extension Summary Guidelines.

About Extension Publish

There is a pipeline to automatically build, upload and publish extension wheels.
Once your pull request is merged into main branch, a new pull request will be created to update src/index.json automatically.
You only need to update the version information in file setup.py and historical information in file HISTORY.rst in your PR but do not modify src/index.json.

[azure-client-tools-bot-prd]

⚠️Azure CLI Extensions Breaking Change Test

⚠️aks-preview

rule	cmd_name	rule_message	suggest_message
⚠️ 1006 - ParaAdd	aks bastion	cmd aks bastion added parameter kubeconfig_path

[azure-client-tools-bot-prd]

Hi @FumingZhang,
Please write the description of changes which can be perceived by customers into HISTORY.rst.
If you want to release a new extension version, please update the version in setup.py as well.

[yonzhan]

Thank you for your contribution! We will review the pull request and get back to you soon.

[github-actions]

The git hooks are available for azure-cli and azure-cli-extensions repos. They could help you run required checks before creating the PR.

Please sync the latest code with latest dev branch (for azure-cli) or main branch (for azure-cli-extensions).
After that please run the following commands to enable git hooks:

pip install azdev --upgrade
azdev setup -c <your azure-cli repo path> -r <your azure-cli-extensions repo path>

[FumingZhang]

Queued live test to validate the change, test passed!

• test_aks_bastion

[github-actions]

CodeGen Tools Feedback Collection

Thank you for using our CodeGen tool. We value your feedback, and we would like to know how we can improve our product. Please take a few minutes to fill our codegen survey

[github-actions]

• For more info about extension versioning, please refer to Extension version schema

[Copilot]

Pull request overview

This PR adds a --kubeconfig-path option to the az aks bastion command, enabling users to specify an existing kubeconfig file instead of downloading credentials to a temporary location. When specified, the command modifies the existing kubeconfig to point to the bastion tunnel and warns users that the configuration will stop working once the tunnel is closed.

Changes:

• Added --kubeconfig-path parameter to allow specifying an existing kubeconfig file
• Enhanced kubeconfig modification logic to support both new and existing kubeconfig files with cluster name matching
• Improved process cleanup for bastion tunnel to properly terminate child processes on both Windows and Unix systems
• Fixed subnet address prefix in test to use Azure Bastion-compliant CIDR range

Reviewed changes

Copilot reviewed 7 out of 7 changed files in this pull request and generated 4 comments.

Show a summary per file

File	Description
setup.py	Version bumped to 19.0.0b20 for the new feature
HISTORY.rst	Added release notes documenting the new --kubeconfig-path option
_params.py	Registered the new kubeconfig_path parameter
_help.py	Added documentation and examples for the new parameter
custom.py	Modified aks_bastion function to handle existing kubeconfig files and improved cleanup logic
bastion.py	Enhanced aks_bastion_set_kubeconfig with cluster name matching, improved process termination with new _aks_bastion_kill_process_tree helper
test_aks_commands.py	Fixed subnet address prefix from /16 to /26 for Azure Bastion compliance

[mbifeld]

LGTM

[azclibot]

[Release] Update index.json for extension [ aks-preview-19.0.0b20 ] : https://dev.azure.com/msazure/One/_build/results?buildId=149578247&view=results