AzureLocal
diff --git a/‎docs/standards/automation.mdx‎
Lines changed: 70 additions & 0 deletions b/‎docs/standards/automation.mdx‎
Lines changed: 70 additions & 0 deletions
diff --git a/‎docs/standards/documentation.mdx‎
Lines changed: 75 additions & 0 deletions b/‎docs/standards/documentation.mdx‎
Lines changed: 75 additions & 0 deletions
diff --git a/‎docs/standards/examples.mdx‎
Lines changed: 104 additions & 0 deletions b/‎docs/standards/examples.mdx‎
Lines changed: 104 additions & 0 deletions
diff --git a/‎docs/standards/index.mdx‎
Lines changed: 38 additions & 0 deletions b/‎docs/standards/index.mdx‎
Lines changed: 38 additions & 0 deletions
diff --git a/‎docs/standards/infrastructure.mdx‎
Lines changed: 69 additions & 0 deletions b/‎docs/standards/infrastructure.mdx‎
Lines changed: 69 additions & 0 deletions
@@ -0,0 +1,70 @@
+# Automation Interoperability
+
+> **Canonical reference:** [Scripting Framework (full)](https://azurelocal.cloud/standards/scripting/scripting-framework)  
+> **Applies to:** All AzureLocal repositories  
+> **Last Updated:** 2026-03-17
+
+---
+
+## Overview
+
+This standard defines how multiple automation tools (Terraform, Bicep, ARM, PowerShell, Ansible) interoperate across AzureLocal solutions. All tools share a single configuration source and must produce identical infrastructure.
+
+---
+
+## Config Flow
+
+```mermaid
+flowchart TB
+    A["config/variables.yml<br/>(single source of truth)"] --> B[Terraform .tfvars]
+    A --> C[Bicep .bicepparam]
+    A --> D[ARM parameters.json]
+    A --> E[PowerShell ConvertFrom-Yaml]
+    A --> F[Ansible group_vars]
+    B --> G[Identical Infrastructure]
+    C --> G
+    D --> G
+    E --> G
+    F --> G
+```
+
+---
+
+## Deployment Path Matrix
+
+| Tool | Azure Resources | Configuration | Monitoring | Scaling |
+|------|:---:|:---:|:---:|:---:|
+| **Terraform** | ✅ | Delegates | ✅ | ✅ |
+| **Bicep** | ✅ | Delegates | ✅ | ✅ |
+| **ARM** | ✅ | Delegates | ✅ | — |
+| **PowerShell** | ✅ | ✅ | ✅ | ✅ |
+| **Ansible** | ✅ | ✅ | ✅ | ✅ |
+
+:::warning[Delegates]
+"Delegates" means the IaC tool provisions Azure resources but does not configure the guest OS or application layer. A separate tool (PowerShell or Ansible) handles guest configuration.
+:::
+
+---
+
+## Interoperability Rules
+
+1. **Single source of truth** — `config/variables.yml` is the only config file. All tool-specific parameter files are derived.
+2. **Identical output** — Given the same config, every tool must produce the same infrastructure.
+3. **Idempotency** — All scripts and templates must be safe to re-run.
+4. **Error handling** — Every tool must validate config before executing changes.
+5. **Logging** — All operations logged to `./logs/` with consistent format.
+
+---
+
+## Variable Path Contract
+
+Scripts must use variable paths that exist in the schema. See the [Variable Standards](variables) for naming rules and the [Variable Reference](variables) for the complete catalog.
+
+---
+
+## Related Standards
+
+- [Scripting Standards](scripting)
+- [Infrastructure Standards](infrastructure)
+- [Solution Standards](solutions)
+- [Variable Standards](variables)
@@ -0,0 +1,75 @@
+# Documentation Standards
+
+> **Canonical reference:** [Documentation Standards (full)](https://azurelocal.cloud/standards/documentation/documentation-standards)  
+> **Applies to:** All AzureLocal repositories  
+> **Last Updated:** 2026-03-17
+
+---
+
+## Principles
+
+| Principle | Rule |
+|-----------|------|
+| Documentation-First | Document **before** implementing. Keep docs current with code. |
+| Single Source of Truth | One authoritative document per topic. Cross-reference, don't duplicate. |
+| Audience-Aware | Write for operators, developers, or executives — with appropriate depth. |
+| Actionable | Step-by-step procedures, examples, prerequisites, and outcomes. |
+
+---
+
+## File Naming
+
+| Type | Convention | Pattern | Example |
+|------|-----------|---------|---------|
+| Directories | lowercase-with-hyphens | `^[a-z][a-z0-9-]*$` | `guides/`, `reference/` |
+| Markdown (docs/) | lowercase with hyphens | `*.md` | `deployment-guide.md` |
+| Root files | UPPERCASE | — | `README.md`, `CHANGELOG.md`, `CONTRIBUTING.md` |
+| PowerShell scripts | PascalCase | `Verb-Noun.ps1` | `Deploy-Solution.ps1` |
+| Config files | lowercase-with-hyphens | — | `variables.example.yml` |
+
+---
+
+## MkDocs Material Conventions
+
+This repo uses **MkDocs Material** with the following conventions:
+
+- **Admonitions**: Use `!!! note`, `!!! warning`, `!!! danger`, `!!! info`, `!!! tip`
+- **Code blocks**: Always include a language identifier (e.g., ` ```powershell `, ` ```yaml `)
+- **Code copy**: Enabled via `content.code.copy`
+- **Mermaid diagrams**: Supported via `pymdownx.superfences` custom fence
+- **Tables**: Use standard Markdown tables
+- **Tabs**: Use `=== "Tab Name"` via `pymdownx.tabbed`
+
+---
+
+## Frontmatter & Metadata
+
+Every documentation page should include:
+
+```markdown
+# Page Title
+
+> Brief one-line description of the page's purpose.
+
+---
+```
+
+---
+
+## Fictional Company — Infinite Improbability Corp (IIC)
+
+All examples must use IIC. See the [Examples & IIC Policy](examples) page for the full reference card.
+
+| Never Use | Use Instead |
+|-----------|-------------|
+| `contoso`, `fabrikam`, `northwind` | Infinite Improbability Corp |
+| `example.com`, `test.com` | `improbability.cloud` |
+| Real customer names | IIC naming patterns |
+
+---
+
+## Related Standards
+
+- [Naming Conventions (full reference)](https://azurelocal.cloud/standards/documentation/naming-conventions)
+- [Badge Library](https://azurelocal.cloud/standards/documentation/badge-library)
+- [Scripting Standards](scripting)
@@ -0,0 +1,104 @@
+# Examples & IIC Policy
+
+> **Canonical reference:** [Fictional Company Policy (full)](https://azurelocal.cloud/standards/fictional-company-policy)  
+> **Applies to:** All AzureLocal repositories  
+> **Last Updated:** 2026-03-17
+
+---
+
+## Policy
+
+All examples, sample configurations, and walkthroughs use **one** fictional company: **Infinite Improbability Corp (IIC)**.
+
+:::warning[Mandatory]
+Never use `contoso`, `fabrikam`, `adventure-works`, `woodgrove`, `example.com`, or any real customer name.
+    **IIC only** — in every repo, every example, every sample config.
+:::
+
+---
+
+## IIC Reference Card
+
+| Attribute | Value |
+|-----------|-------|
+| **Full Name** | Infinite Improbability Corp |
+| **Abbreviation** | IIC |
+| **Domain (public)** | `improbability.cloud` / `iic.cloud` |
+| **Domain (on-prem AD)** | `iic.local` |
+| **NetBIOS Name** | `IMPROBABLE` |
+| **Entra ID Tenant** | `improbability.onmicrosoft.com` |
+| **Email Pattern** | `user@improbability.cloud` |
+
+---
+
+## AzureLocal Naming Patterns
+
+### Azure Resources
+
+| Resource | Pattern | Example |
+|----------|---------|---------|
+| Resource Group | `rg-iic-<purpose>-<##>` | `rg-iic-platform-01` |
+| Virtual Network | `vnet-iic-<purpose>-<##>` | `vnet-iic-compute-01` |
+| Subnet | `snet-iic-<purpose>` | `snet-iic-management` |
+| Network Security Group | `nsg-iic-<purpose>` | `nsg-iic-compute` |
+| Key Vault | `kv-iic-<purpose>` | `kv-iic-platform` |
+| Storage Account | `stiic<purpose><##>` | `stiicdata01` |
+| Log Analytics | `law-iic-<purpose>-<##>` | `law-iic-monitor-01` |
+| Managed Identity | `id-iic-<purpose>` | `id-iic-deploy` |
+
+### Active Directory
+
+| Resource | Pattern | Example |
+|----------|---------|---------|
+| OU path | `OU=<Purpose>,OU=Servers,DC=iic,DC=local` | — |
+| Service account | `svc.iic.<purpose>` | `svc.iic.deploy` |
+| Group | `grp-iic-<purpose>` | `grp-iic-admins` |
+
+### IP Addresses
+
+| Network | Range | Usage |
+|---------|-------|-------|
+| Management | `10.0.0.0/24` | Node management |
+| Compute | `10.0.2.0/24` | Workload traffic |
+
+---
+
+## Real Identities
+
+| Name | Usage |
+|------|-------|
+| **Azure Local Cloud** | Community project, GitHub org, `azurelocal.cloud` |
+| **Hybrid Cloud Solutions** | Author/maintainer LLC, script headers, copyright |
+
+---
+
+## Usage Examples
+
+### In `config/variables.example.yml`
+
+```yaml
+subscription:
+  subscription_id: "00000000-0000-0000-0000-000000000000"
+  tenant_id: "00000000-0000-0000-0000-000000000000"
+  location: "eastus"
+
+security:
+  keyvault_name: "kv-iic-platform"
+
+azure_local:
+  resource_group: "rg-iic-platform-01"
+  cluster_name: "azlocal-iic-01"
+```
+
+### In Documentation
+
+> Infinite Improbability Corp deploys Azure Local clusters using IIC naming patterns,
+> with all configuration driven from a single `config/variables.yml` file.
+
+---
+
+## Enforcement
+
+- **PR review**: Reviewers flag any use of `contoso`, `fabrikam`, or other non-IIC names
+- **Config validation**: `variables.example.yml` uses IIC naming in all placeholders
+- **CI**: Vale linting rules flag non-IIC fictional company names (when configured)
@@ -0,0 +1,38 @@
+# Standards
+
+This repository follows the **org-wide AzureLocal standards** maintained on the central documentation site.
+
+:::info[Central Standards]
+The full standards suite is at [azurelocal.cloud/standards](https://azurelocal.cloud/standards/).
+    This section provides the key rules adapted for this solution.
+:::
+
+---
+
+## Standards Pages
+
+| Standard | Local Page | Central Reference |
+|----------|-----------|------------------|
+| Documentation | [Documentation Standards](documentation) | [Full Reference](https://azurelocal.cloud/standards/documentation/documentation-standards) |
+| Scripting | [Scripting Standards](scripting) | [Full Reference](https://azurelocal.cloud/standards/scripting/scripting-standards) |
+| Variables | [Variable Standards](variables) | [Full Reference](https://azurelocal.cloud/standards/variable-management/) |
+| Naming Conventions | [Naming Conventions](naming) | [Full Reference](https://azurelocal.cloud/standards/documentation/naming-conventions) |
+| Solutions | [Solution Standards](solutions) | [Full Reference](https://azurelocal.cloud/standards/solutions/solution-development-standard) |
+| Infrastructure | [Infrastructure Standards](infrastructure) | [Full Reference](https://azurelocal.cloud/standards/infrastructure/) |
+| Automation | [Automation Interoperability](automation) | [Full Reference](https://azurelocal.cloud/standards/scripting/scripting-framework) |
+| Examples & IIC | [Examples & IIC](examples) | [Full Reference](https://azurelocal.cloud/standards/fictional-company-policy) |
+
+---
+
+## References
+
+- [Variable Reference](variables) — Per-variable catalog for this repo
+- [Repository Structure](https://azurelocal.cloud/standards/repo-structure) — Required file layout
+
+---
+
+## Repo-Specific Conventions
+
+- **IaC tooling**: Terraform, Bicep, ARM, PowerShell, Ansible
+- **Config file**: `config/variables.example.yml` — see [Variable Reference](variables)
+- **Fictional company**: Infinite Improbability Corp (IIC) — see [IIC Policy](examples)
@@ -0,0 +1,69 @@
+# Infrastructure Standards
+
+> **Canonical reference:** [Infrastructure Standards (full)](https://azurelocal.cloud/standards/infrastructure/)  
+> **Applies to:** All AzureLocal repositories  
+> **Last Updated:** 2026-03-17
+
+---
+
+## Overview
+
+Standards for Infrastructure as Code (IaC), Terraform state management, and deployment processes for AzureLocal solutions.
+
+---
+
+## Infrastructure Pipeline
+
+```mermaid
+flowchart LR
+    A[Generate Variables] --> B[Validate Config]
+    B --> C[Plan Infrastructure]
+    C --> D[Review Changes]
+    D --> E[Apply Changes]
+    E --> F[Update State]
+```
+
+---
+
+## State Management
+
+| Principle | Rule |
+|-----------|------|
+| Remote state | Store Terraform state in Azure Storage Account |
+| State locking | Enable locking during all operations |
+| Backup | Regular state file backups before destructive operations |
+| Naming | `<solution>-<env>.tfstate` (e.g., `platform-prod.tfstate`) |
+
+---
+
+## IaC Tool Parity
+
+All tools must produce **identical infrastructure** when given the same configuration values:
+
+| Tool | Primary Format | State Management |
+|------|---------------|-----------------|
+| Terraform | `.tf` / `.tfvars` | Remote state in Azure Storage |
+| Bicep | `.bicep` / `.bicepparam` | ARM deployment history |
+| ARM | `.json` | ARM deployment history |
+| PowerShell | `.ps1` | Config-driven, logged |
+| Ansible | `.yml` | Inventory-based |
+
+---
+
+## Deployment Phases
+
+| Phase | Scope | Tools |
+|-------|-------|-------|
+| Phase 1: Azure Foundation | Resource groups, networking, Key Vault, storage | Terraform, Bicep, ARM |
+| Phase 2: Compute & Workload | VMs, clusters, workload deployment | Terraform, PowerShell |
+| Phase 3: Configuration | Guest config, monitoring, policies | PowerShell, Ansible |
+
+---
+
+## Related Standards
+
+- [Infrastructure Generation & Deployment Process](https://azurelocal.cloud/standards/infrastructure/infrastructure-generation-deployment-process)
+- [State Management](https://azurelocal.cloud/standards/infrastructure/state-management)
+- [Solution Development Standard](solutions)
+- [Variable Standards](variables)
+- [Automation Interoperability](automation)