#!/bin/bash
#
# Execute this directly in Azure Cloud Shell (https://shell.azure.com) by pasting (SHIFT+INS on Windows, CTRL+V on Mac or Linux)
# the following line (beginning with curl...) at the command prompt and then replacing the args:
#  This scripts Onboards Azure Monitor for containers to Kubernetes cluster hosted outside and connected to Azure via Azure Arc cluster
#
#      1. Creates or Use the Default Azure log analytics workspace if there is no specified Azure Log analytics workspace
#      2. Adds the ContainerInsights solution to the Azure log analytics workspace
#      3. Adds the logAnalyticsWorkspaceResourceId tag on the provided Azure Redhat Openshift v4 Cluster
#      4. Installs Azure Monitor for containers HELM chart to specified K8s cluster via kubeconfigcontext
# Prerequisites :
#     Azure CLI:  https://docs.microsoft.com/en-us/cli/azure/install-azure-cli?view=azure-cli-latest
#     Helm3 : https://helm.sh/docs/intro/install/

#  Note: After successful `oc login`, you can get kube-context of your ARO v4 cluster via `kubectl config current-context`

# bash onboarding_azuremonitor_for_containers.sh <kube-context> <azureAroV4ResourceId> <azureLogAnayticsWorkspaceResourceId>(optional)

# For example to onboard to azure monitor for containers using Default Azure Log Analytics Workspace:
# bash onboarding_azuremonitor_for_containers.sh MyK8sTestCluster /subscriptions/57ac26cf-a9f0-4908-b300-9a4e9a0fb205/resourceGroups/test-aro-v4-rg/providers/Microsoft.RedHatOpenShift/OpenShiftClusters/test-aro-v4 

# For example to onboard to azure monitor for containers using existing Azure Log Analytics Workspace:
# bash onboarding_azuremonitor_for_containers.sh MyK8sTestCluster /subscriptions/57ac26cf-a9f0-4908-b300-9a4e9a0fb205/resourceGroups/test-aro-v4-rg/providers/Microsoft.RedHatOpenShift/OpenShiftClusters/test-aro-v4  /subscriptions/57ac26cf-a9f0-4908-b300-9a4e9a0fb205/resourcegroups/test-la-workspace-rg/providers/microsoft.operationalinsights/workspaces/test-la-workspace


if [ $# -le 1 ]
then
  echo "Error: This should be invoked with at least 2 arguments, kubeContext, clusterResourceId and logAnalyticsWorkspaceResourceId(optional)"
  exit 1
fi

echo "kubeconfigContext:"${1}
echo "clusterResourceId:"${2}
echo "logAnalyticsWorkspaceResourceId":${3}

export kubeconfigContext="$(echo ${1})"
export clusterResourceId="$(echo ${2})"
export logAnalyticsWorkspaceResourceId="$(echo ${3})"

subscriptionId="$(echo ${clusterResourceId} | cut -d'/' -f3)"
resourceGroup="$(echo ${clusterResourceId} | cut -d'/' -f5)"
providerName="$(echo ${clusterResourceId} | cut -d'/' -f7)"
clusterName="$(echo ${clusterResourceId} | cut -d'/' -f9)"

echo "cluster SubscriptionId:" $subscriptionId
echo "cluster ResourceGroup:" $resourceGroup
echo "cluster ProviderName:" $providerName
echo "cluster Name:" $clusterName

if [ -z "$subscriptionId" -o -z "$resourceGroup" -o -z "$providerName" -o  -z "$clusterName" ]; then
  echo "Error: invalid cluster resource id. Please try with valid fully qualified resource id of the cluster"
  exit 1
fi

if [ -z "$kubeconfigContext" ]; then
  echo "Error: kubeconfig context is empty. Please try with valid kube-context of the cluster"
  exit 1
fi

echo "Set AzureCloud as active cloud for az cli"
az cloud set -n AzureCloud

echo "login to the azure interactively"
az login

if [ -z $logAnalyticsWorkspaceResourceId ]; then
  echo "since logAnalyticsWorkspaceResourceId parameter not provided so using or creating default azure log analytics workspace"

  echo "set the ARO v4 cluster subscription id: ${subscriptionId}"
  az account set -s ${subscriptionId}

  export clusterRegion=$(az resource show --ids ${clusterResourceId} --query location)
  echo "cluster region:" $clusterRegion

  # mapping for default Azure Log Analytics workspace
  declare -A AzureCloudLocationToOmsRegionCodeMap=(
  [australiasoutheast]=ASE
  [australiaeast]=EAU
  [australiacentral]=CAU
  [canadacentral]=CCA
  [centralindia]=CIN
  [centralus]=CUS
  [eastasia]=EA
  [eastus]=EUS
  [eastus2]=EUS2
  [eastus2euap]=EAP
  [francecentral]=PAR
  [japaneast]=EJP
  [koreacentral]=SE
  [northeurope]=NEU
  [southcentralus]=SCUS
  [southeastasia]=SEA
  [uksouth]=SUK
  [usgovvirginia]=USGV
  [westcentralus]=EUS
  [westeurope]=WEU
  [westus]=WUS
  [westus2]=WUS2
  )

  declare -A AzureCloudRegionToOmsRegionMap=(
  [australiacentral]=australiacentral
  [australiacentral2]=australiacentral
  [australiaeast]=australiaeast
  [australiasoutheast]=australiasoutheast
  [brazilsouth]=southcentralus
  [canadacentral]=canadacentral
  [canadaeast]=canadacentral
  [centralus]=centralus
  [centralindia]=centralindia
  [eastasia]=eastasia
  [eastus]=eastus
  [eastus2]=eastus2
  [francecentral]=francecentral
  [francesouth]=francecentral
  [japaneast]=japaneast
  [japanwest]=japaneast
  [koreacentral]=koreacentral
  [koreasouth]=koreacentral
  [northcentralus]=eastus
  [northeurope]=northeurope
  [southafricanorth]=westeurope
  [southafricawest]=westeurope
  [southcentralus]=southcentralus
  [southeastasia]=southeastasia
  [southindia]=centralindia
  [uksouth]=uksouth
  [ukwest]=uksouth
  [westcentralus]=eastus
  [westeurope]=westeurope
  [westindia]=centralindia
  [westus]=westus
  [westus2]=westus2
  )

  export workspaceRegionCode="EUS"
  export workspaceRegion="eastus"

  if [ -n "${AzureCloudRegionToOmsRegionMap[$clusterRegion]}" ];
  then
    workspaceRegion=${AzureCloudRegionToOmsRegionMap[$clusterRegion]}
  fi
  export workspaceRegion=$(echo $workspaceRegion | tr -d '"')
  echo "Workspace Region:"$workspaceRegion

  if [ -n "${AzureCloudLocationToOmsRegionCodeMap[$workspaceRegion]}" ];
  then
    workspaceRegionCode=${AzureCloudLocationToOmsRegionCodeMap[$workspaceRegion]}
  fi
  echo "Workspace Region Code:"$workspaceRegionCode

  export defaultWorkspaceResourceGroup="DefaultResourceGroup-"$workspaceRegionCode
  export isRGExists=$(az group exists -g $defaultWorkspaceResourceGroup)
  export defaultWorkspaceName="DefaultWorkspace-"$subscriptionId"-"$workspaceRegionCode

  if $isRGExists
  then echo "using existing default resource group:"$defaultWorkspaceResourceGroup
  else
    az group create -g $defaultWorkspaceResourceGroup -l $workspaceRegion
  fi

  export workspaceList=$(az resource list -g $defaultWorkspaceResourceGroup -n $defaultWorkspaceName  --resource-type Microsoft.OperationalInsights/workspaces)
  if [ "$workspaceList" = "[]" ];
  then
  # create new default workspace since no mapped existing default workspace
  echo "creating default log analytics workspace"
  echo '{"location":"'"$workspaceRegion"'", "properties":{"sku":{"name": "standalone"}}}' > WorkspaceProps.json
  cat WorkspaceProps.json
  workspace=$(az resource create -g $defaultWorkspaceResourceGroup -n $defaultWorkspaceName --resource-type Microsoft.OperationalInsights/workspaces --is-full-object -p @WorkspaceProps.json)
  else
    echo "using existing default workspace:"$defaultWorkspaceName
  fi

  export workspaceResourceId=$(az resource show -g $defaultWorkspaceResourceGroup -n $defaultWorkspaceName  --resource-type Microsoft.OperationalInsights/workspaces --query id)
  export workspaceResourceId=$(echo $workspaceResourceId | tr -d '"')

else 
  echo "using provied azure log analytics workspace:${logAnalyticsWorkspaceResourceId}"
  export workspaceResourceId=$(echo $logAnalyticsWorkspaceResourceId | tr -d '"')
  export workspaceSubscriptionId="$(echo ${logAnalyticsWorkspaceResourceId} | cut -d'/' -f3)"
  export defaultWorkspaceResourceGroup="$(echo ${logAnalyticsWorkspaceResourceId} | cut -d'/' -f5)" 
  export defaultWorkspaceName="$(echo ${logAnalyticsWorkspaceResourceId} | cut -d'/' -f9)"

  echo "set the workspace subscription id: ${workspaceSubscriptionId}"
  az account set -s ${workspaceSubscriptionId}
  export workspaceRegion=$(az resource show --ids ${logAnalyticsWorkspaceResourceId} --query location)
  export workspaceRegion=$(echo $workspaceRegion | tr -d '"')
  echo "Workspace Region:"$workspaceRegion

fi

# get the workspace guid
export workspaceGuid=$(az resource show -g $defaultWorkspaceResourceGroup -n $defaultWorkspaceName  --resource-type Microsoft.OperationalInsights/workspaces --query properties.customerId)
workspaceGuid=$(echo $workspaceGuid | tr -d '"')

echo "workspaceResourceId:"$workspaceResourceId
echo "workspaceGuid:"$workspaceGuid

echo "adding containerinsights solution to workspace"
solution=$(az deployment group create -g $defaultWorkspaceResourceGroup --template-uri https://raw.githubusercontent.com/microsoft/OMS-docker/ci_feature_prod/docs/templates/azuremonitor-containerSolution.json --parameters workspaceResourceId=$workspaceResourceId --parameters workspaceRegion=$workspaceRegion)

echo "getting workspace primaryshared key"
workspaceKey=$(az rest --method post --uri $workspaceResourceId/sharedKeys?api-version=2015-11-01-preview --query primarySharedKey)
workspaceKey=$(echo $workspaceKey | tr -d '"')


echo "set the ARO v4 cluster subscription id: ${subscriptionId}"
az account set -s ${subscriptionId}

echo "attach loganalyticsworkspaceResourceId tag on to cluster resource"
status=$(az  resource update --set tags.logAnalyticsWorkspaceResourceId=$workspaceResourceId -g $resourceGroup -n $clusterName --resource-type Microsoft.RedHatOpenShift/OpenShiftClusters)



echo "installing Azure Monitor for containers HELM chart ..."

echo "adding helm incubator repo"
helm repo add incubator https://kubernetes-charts-incubator.storage.googleapis.com/
echo "updating helm repo to get latest charts"
helm repo update

helm upgrade --install azmon-containers-release-1 --set omsagent.secret.wsid=$workspaceGuid,omsagent.secret.key=$workspaceKey,omsagent.env.clusterId=${clusterResourceId} incubator/azuremonitor-containers --kube-context ${kubeconfigContext}

echo "chart installation completed."
echo "Proceed to https://aka.ms/azmon-containers-aro to view health of your newly onboarded ARO v4 cluster"