custom/New-AzPostgreSqlFlexibleServer.ps1
|
# ---------------------------------------------------------------------------------- # # Copyright Microsoft Corporation # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # http://www.apache.org/licenses/LICENSE-2.0 # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. # ---------------------------------------------------------------------------------- <# .Synopsis Creates a new PostgreSQL flexible server. .Description Creates a new PostgreSQL flexible server. #> $DELEGATION_SERVICE_NAME = "Microsoft.DBforPostgreSQL/flexibleServers" $DEFAULT_VNET_PREFIX = '10.0.0.0/16' $DEFAULT_SUBNET_PREFIX = '10.0.0.0/24' $AZURE_ARMNAME = '^[^<>%&:\\?/]{1,260}$' function New-AzPostgreSqlFlexibleServer { [OutputType([Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Models.Api20210601.IServerAutoGenerated])] [CmdletBinding(DefaultParameterSetName='CreateExpanded', PositionalBinding=$false, SupportsShouldProcess, ConfirmImpact='Medium')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Description('Creates a new server.')] param( [Parameter(HelpMessage = 'The name of the server.')] [Alias('ServerName')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Path')] [System.String] ${Name}, [Parameter(HelpMessage = 'The name of the resource group that contains the resource, You can obtain this value from the Azure Resource Manager API or the portal.')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Path')] [System.String] ${ResourceGroupName}, [Parameter(HelpMessage='The subscription ID that identifies an Azure subscription.')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Path')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Runtime.DefaultInfo(Script='(Get-AzContext).Subscription.Id')] [System.String] ${SubscriptionId}, [Parameter(HelpMessage = 'Availability zone into which to provision the resource.')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Body')] [System.String] ${Zone}, [Parameter(HelpMessage = 'The location the resource resides in.')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Body')] [System.String] ${Location}, [Parameter(HelpMessage = 'Administrator username for the server. Once set, it cannot be changed.')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Body')] [System.String] ${AdministratorUserName}, [Parameter(HelpMessage = 'The password of the administrator. Minimum 8 characters and maximum 128 characters. Password must contain characters from three of the following categories: English uppercase letters, English lowercase letters, numbers, and non-alphanumeric characters.')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Body')] [System.Security.SecureString] [ValidateNotNullOrEmpty()] ${AdministratorLoginPassword}, [Parameter(HelpMessage = 'The name of the sku, typically, tier + family + cores, e.g. Standard_B1ms, Standard_D2s_v3.')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Body')] [System.String] ${Sku}, [Parameter(HelpMessage = 'Compute tier of the server. Accepted values: Burstable, GeneralPurpose, Memory Optimized. Default: Burstable.')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Body')] [System.String] ${SkuTier}, [Parameter(HelpMessage = "Backup retention days for the server. Day count is between 7 and 35.")] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Body')] [System.Int32] ${BackupRetentionDay}, [Parameter(HelpMessage = 'Max storage allowed for a server. ')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Body')] [System.Int32] [ValidateSet(32768, 65536, 131072, 262144, 524288, 1048576 , 2097152, 4194304, 8388608, 16777216)] ${StorageInMb}, [Parameter(HelpMessage='Enable or disable high availability feature. Allowed values: Enabled, Disabled')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Body')] [Validateset('Enabled', 'Disabled')] [System.String] ${HaEnabled}, [Parameter(HelpMessage = 'Application-specific metadata in the form of key-value pairs.')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Runtime.Info(PossibleTypes=([Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Models.Api20171201.IServerForCreateTags]))] [System.Collections.Hashtable] ${Tag}, [Parameter(HelpMessage = 'Server version.')] [ArgumentCompleter([Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Support.ServerVersion])] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Body')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Support.ServerVersion] ${Version}, [Parameter(HelpMessage = 'The id of an existing private dns zone. You can use the private dns zone from same resource group, different resource group, or different subscription. The suffix of dns zone has to be same as that of fully qualified domain of the server. ')] [System.String] ${PrivateDnsZone}, # [Parameter(ParameterSetName='CreateWithPrivateAccess')] [Parameter(HelpMessage = 'The subnet IP address prefix to use when creating a new vnet in CIDR format. Default value is 10.0.0.0/24.')] [System.String] ${SubnetPrefix}, # [Parameter(ParameterSetName='CreateWithPrivateAccess')] [Parameter(HelpMessage = 'The Name or Id of an existing Subnet or name of a new one to create. Please note that the subnet will be delegated to Microsoft.DBforPostgreSQL/flexibleServers. After delegation, this subnet cannot be used for any other type of Azure resources.')] [System.String] ${Subnet}, # [Parameter(ParameterSetName='CreateWithPrivateAccess')] [Parameter(HelpMessage = 'The IP address prefix to use when creating a new vnet in CIDR format. Default value is 10.0.0.0/16.')] [System.String] ${VnetPrefix}, # [Parameter(ParameterSetName='CreateWithPrivateAccess')] [Parameter(HelpMessage = 'The Name or Id of an existing virtual network or name of a new one to create. The name must be between 2 to 64 characters. The name must begin with a letter or number, end with a letter, number or underscore, and may contain only letters, numbers, underscores, periods, or hyphens.')] [System.String] ${Vnet}, [Parameter(HelpMessage = " Determines the public access. Enter single or range of IP addresses to be included in the allowed list of IPs. IP address ranges must be dash- separated and not contain any spaces. Specifying 0.0.0.0 allows public access from any resources deployed within Azure to access your server. Specifying no IP address sets the server in public access mode but does not create a firewall rule.")] [System.String] ${PublicAccess}, [Parameter(HelpMessage = 'The credentials, account, tenant, and subscription used for communication with Azure.')] [Alias('AzureRMContext', 'AzureCredential')] [ValidateNotNull()] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Azure')] [System.Management.Automation.PSObject] ${DefaultProfile}, [Parameter(HelpMessage = 'Run the command as a job.')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Runtime')] [System.Management.Automation.SwitchParameter] ${AsJob}, [Parameter(DontShow, HelpMessage = 'Wait for .NET debugger to attach.')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Runtime')] [System.Management.Automation.SwitchParameter] ${Break}, [Parameter(DontShow)] [ValidateNotNull()] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Runtime')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Runtime.SendAsyncStep[]] # SendAsync Pipeline Steps to be appended to the front of the pipeline. ${HttpPipelineAppend}, [Parameter(DontShow)] [ValidateNotNull()] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Runtime')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Runtime.SendAsyncStep[]] # SendAsync Pipeline Steps to be prepended to the front of the pipeline. ${HttpPipelinePrepend}, [Parameter(HelpMessage = 'Run the command asynchronously.')] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Runtime')] [System.Management.Automation.SwitchParameter] ${NoWait}, [Parameter(DontShow)] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Runtime')] [System.Uri] # The URI for the proxy server to use. ${Proxy}, [Parameter(DontShow)] [ValidateNotNull()] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Runtime')] [System.Management.Automation.PSCredential] # Credentials for a proxy server to use for the remote call. ${ProxyCredential}, [Parameter(DontShow)] [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Category('Runtime')] [System.Management.Automation.SwitchParameter] # Use the default credentials for the proxy. ${ProxyUseDefaultCredentials} ) process { try { if (!$PSBoundParameters.ContainsKey('Location')) { $PSBoundParameters.Location = 'eastus' } if ($PSBoundParameters.ContainsKey('Zone')) { $PSBoundParameters.AvailabilityZone = $PSBoundParameters.Zone $null = $PSBoundParameters.Remove('Zone') } if (!$PSBoundParameters.ContainsKey('AdministratorLoginPassword')) { $Password = Get-GeneratePassword $PSBoundParameters.AdministratorLoginPassword = $Password | ConvertTo-SecureString -AsPlainText -Force } Import-Module -Name Az.Resources if(!$PSBoundParameters.ContainsKey('ResourceGroupName')) { $PSBoundParameters.ResourceGroupName = Get-RandomNumbers -Prefix 'group' -Length 10 $Msg = "Creating Resource Group {0}..." -f $PSBoundParameters.ResourceGroupName Write-Host $Msg if($PSCmdlet.ShouldProcess($PSBoundParameters.ResourceGroupName)) { $null = New-AzResourceGroup -Name $PSBoundParameters.ResourceGroupName -Location $PSBoundParameters.Location -Force } } else { $Msg = 'Checking the existence of the resource group {0} ...' -f $PSBoundParameters.ResourceGroupName Write-Host $Msg try { $null = Get-AzResourceGroup -Name $PSBoundParameters.ResourceGroupName -ErrorAction Stop $Msg = 'Resource group {0} exists ? : True' -f $PSBoundParameters.ResourceGroupName Write-Host $Msg } catch { $Msg = 'Resource group {0} exists ? : False' -f $PSBoundParameters.ResourceGroupName Write-Host $Msg $Msg = "Creating Resource Group {0}..." -f $PSBoundParameters.ResourceGroupName Write-Host $Msg if($PSCmdlet.ShouldProcess($PSBoundParameters.ResourceGroupName)) { $null = New-AzResourceGroup -Name $PSBoundParameters.ResourceGroupName -Location $PSBoundParameters.Location -Force } } } if (!$PSBoundParameters.ContainsKey('Name')) { $PSBoundParameters.Name = Get-RandomNumbers -Prefix 'server' -Length 10 } if ($PSBoundParameters.ContainsKey('Sku')) { $PSBoundParameters.SkuName = $PSBoundParameters['Sku'] $null = $PSBoundParameters.Remove('Sku') } else { $PSBoundParameters.SkuName = 'Standard_D2s_v3' } if (!$PSBoundParameters.ContainsKey('SkuTier')) { $PSBoundParameters.SkuTier = 'GeneralPurpose' } if (!$PSBoundParameters.ContainsKey('BackupRetentionDay')) { $PSBoundParameters.BackupRetentionDay = 7 } if ($PSBoundParameters.ContainsKey('StorageInMb')) { $PSBoundParameters.StorageSizeGb = [Math]::floor($PSBoundParameters['StorageInMb'] / 1024) $null = $PSBoundParameters.Remove('StorageInMb') } else { $PSBoundParameters.StorageSizeGb = 128 } if (!$PSBoundParameters.ContainsKey('Version')) { $PSBoundParameters.Version = '12' } if ($PSBoundParameters.ContainsKey('AdministratorUserName')) { $PSBoundParameters.AdministratorLogin = $PSBoundParameters['AdministratorUserName'] $null = $PSBoundParameters.Remove('AdministratorUserName') } else { $PSBoundParameters.AdministratorLogin = Get-RandomName } if ($PSBoundParameters.ContainsKey('HaEnabled')){ if ($PSBoundParameters["HaEnabled"] -eq "Enabled"){ $PSBoundParameters.HighAvailabilityMode = [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Support.HighAvailabilityMode]::ZoneRedundant } else { $PSBoundParameters.HighAvailabilityMode = [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Support.HighAvailabilityMode]::Disabled } $null = $PSBoundParameters.Remove('HaEnabled') } $PSBoundParameters.CreateMode = [Microsoft.Azure.PowerShell.Cmdlets.PostgreSql.Support.CreateMode]::Default # Handling Vnet & Subnet $NetworkKeys = 'PublicAccess', 'Subnet', 'Vnet', 'SubnetPrefix', 'VnetPrefix', 'PrivateDnsZone' $NetworkParameters = @{} foreach($Key in $NetworkKeys){ if ($PSBoundParameters.ContainsKey($Key)){ $NetworkParameters[$Key] = $PSBoundParameters[$Key] $null = $PSBoundParameters.Remove($Key) } } $RequiredKeys = 'SubscriptionId', 'ResourceGroupName', 'Name', 'Location' foreach($Key in $RequiredKeys){ $NetworkParameters[$Key] = $PSBoundParameters[$Key] } if ($NetworkParameters.ContainsKey('Vnet') -Or $NetworkParameters.ContainsKey('Subnet')){ $VnetSubnetParameters = CreateNetworkResource $NetworkParameters $SubnetId = GetSubnetId $VnetSubnetParameters.ResourceGroupName $VnetSubnetParameters.VnetName $VnetSubnetParameters.SubnetName $VnetId = [string]::Join("/",$SubnetId.split("/")[0..8]) $PSBoundParameters.NetworkDelegatedSubnetResourceId = $SubnetId if ([string]::IsNullOrEmpty($PSBoundParameters.NetworkDelegatedSubnetResourceId)) { $null = $PSBoundParameters.Remove('NetworkDelegatedSubnetResourceId') } if ($NetworkParameters.ContainsKey('PrivateDnsZone')){ if (!(Get-Module -ListAvailable -Name Az.PrivateDns)) { throw 'Please install Az.Network module by entering "Install-Module -Name Az.PrivateDns"' } else { Import-Module -Name Az.PrivateDns } $ZoneName = $NetworkParameters["PrivateDnsZone"].split("/")[-1] $DnsResourceGroup = $NetworkParameters["PrivateDnsZone"].split("/")[4] $Links = Get-AzPrivateDnsVirtualNetworkLink -ZoneName $ZoneName -ResourceGroupName $DnsResourceGroup $LinkedFlag = $false foreach($Link in $Links){ if ($Link.VirtualNetworkId -eq $VnetId){ $LinkedFlag = $true break } } if (!$LinkedFlag){ Write-Host "Adding virtual network link to the DNS zone..." New-AzPrivateDnsVirtualNetworkLink -ZoneName $ZoneName -ResourceGroupName $DnsResourceGroup -Name $PSBoundParameters["Name"] -VirtualNetworkId $VnetId } $PSBoundParameters.NetworkPrivateDnsZoneArmResourceId = $NetworkParameters["PrivateDnsZone"] $null = $PSBoundParameters.Remove('PrivateDnsZone') } else{ throw "To provision a server with private access, you need to provide private DNS zone." } } else{ $RuleName, $StartIp, $EndIp = ParseFirewallRule $NetworkParameters.PublicAccess } $Msg = 'Creating PostgreSQL server {0} in group {1}...' -f $PSBoundParameters.Name, $PSBoundParameters.resourceGroupName Write-Host $Msg $Msg = 'Your server {0} is using sku {1} (Paid Tier). Please refer to https://aka.ms/postgresql-pricing for pricing details' -f $PSBoundParameters.Name, $PSBoundParameters.SkuName Write-Host $Msg $Server = Az.PostgreSql.internal\New-AzPostgreSqlFlexibleServer @PSBoundParameters # Create Firewallrules if (![string]::IsNullOrEmpty($RuleName)) { $FirewallRuleName = CreateFirewallRule $RuleName $StartIp $EndIp $PSBoundParameters.ResourceGroupName $PSBoundParameters.Name $Server.FirewallRuleName = $FirewallRuleName } $Server.SecuredPassword = $PSBoundParameters.AdministratorLoginPassword return $Server } catch { throw } } } function CreateNetworkResource($NetworkParameters) { [OutputType([hashtable])] $WarningPreference = 'silentlycontinue' if (!(Get-Module -ListAvailable -Name Az.Network)) { throw 'Please install Az.Network module by entering "Install-Module -Name Az.Network"' } else { Import-Module -Name Az.Network } # 1. Error Handling # Raise error when user passes values for both parameters if ($NetworkParameters.Containskey('Subnet') -And $NetworkParameters.ContainsKey('PublicAccess')) { throw "Incorrect usage : A combination of the parameters -Subnet and -PublicAccess is invalid. Use either one of them." } # # When address space parameters are passed, the only valid combination is : -Vnet -Subnet -VnetPrefix -SubnetPrefix if ($NetworkParameters.ContainsKey('Vnet') -Or $NetworkParameters.ContainsKey('Subnet')) { if (($NetworkParameters.ContainsKey('VnetPrefix') -And !$NetworkParameters.ContainsKey('SubnetPrefix')) -Or (!$NetworkParameters.ContainsKey('VnetPrefix') -And $NetworkParameters.ContainsKey('SubnetPrefix')) -Or ($NetworkParameters.ContainsKey('VnetPrefix') -And $NetworkParameters.ContainsKey('SubnetPrefix') -And (!$NetworkParameters.ContainsKey('Vnet') -Or !$NetworkParameters.ContainsKey('Subnet')))){ throw "Incorrect usage : -Vnet -Subnet -VnetPrefix -SubnetPrefix must be supplied together." } } #Handle Vnet, Subnet scenario # Only the Subnet ID provided.. if (!$NetworkParameters.ContainsKey('Vnet') -And $NetworkParameters.ContainsKey('Subnet')) { if (IsValidSubnetId $NetworkParameters.Subnet) { Write-Host "You have supplied a subnet Id. Verifying its existence..." $ParsedResult = ParseResourceId $NetworkParameters.Subnet $NetworkParameters.VnetName = $ParsedResult.VnetName $NetworkParameters.SubnetName = $ParsedResult.SubnetName $NetworkParameters.ResourceGroupName = $ParsedResult.ResourceGroupName $SubnetFlag = $true try { # Valid Subnet ID is provided $Subnet = Get-AzVirtualNetworkSubnetConfig -ResourceId $NetworkParameters.Subnet -ErrorAction Stop } catch { # Invalid subnet ID is provided, creating a new one. $SubnetFlag = $false Write-Host "The subnet doesn't exist. Creating the subnet" $Subnet = CreateVnetSubnet $NetworkParameters } if ($SubnetFlag){ $Delegations = Get-AzDelegation -Subnet $Subnet if ($null -ne $Delegations){ # Valid but incorrect delegation $Delegations | ForEach-Object {if ($PSItem.ServiceName -ne $DELEGATION_SERVICE_NAME) { $Msg = "Can not use subnet with existing delegations other than {0}" -f $DELEGATION_SERVICE_NAME throw $Msg }} } else { # Valid but no delegation $Vnet = Get-AzVirtualNetwork -ResourceGroupName $NetworkParameters.ResourceGroupName -Name $NetworkParameters.VnetName $Subnet = Get-AzVirtualNetworkSubnetConfig -Name $NetworkParameters.SubnetName -VirtualNetwork $Vnet $Subnet = Add-AzDelegation -Name $DELEGATION_SERVICE_NAME -ServiceName $DELEGATION_SERVICE_NAME -Subnet $Subnet $Vnet | Set-AzVirtualNetwork } } } else { throw "The Subnet ID is not a valid form of resource id." } } elseif ($NetworkParameters.ContainsKey('Vnet') -And !$NetworkParameters.ContainsKey('Subnet')) { if (IsValidVnetId $NetworkParameters.Vnet){ Write-Host "You have supplied a vnet Id. Verifying its existence..." IsValidRgLocation $NetworkParameters.Vnet $NetworkParameters $ParsedResult = ParseResourceId $NetworkParameters.Vnet $NetworkParameters.VnetName = $ParsedResult.VnetName $NetworkParameters.SubnetName = 'Subnet' + $NetworkParameters.Name $Subnet = CreateVnetSubnet $NetworkParameters } elseif ($NetworkParameters.Vnet -Match $AZURE_ARMNAME) { Write-Host "You have supplied a vnet Name. Verifying its existence..." $NetworkParameters.VnetName = $NetworkParameters.Vnet $NetworkParameters.SubnetName = 'Subnet' + $NetworkParameters.Name $Subnet = CreateVnetSubnet $NetworkParameters IsValidRgLocation $Subnet.Id $NetworkParameters } else { throw "Incorrectly formed Vnet id or Vnet name" } } else { # Both Vnet and Subnet provided if ($NetworkParameters.Vnet -Match $AZURE_ARMNAME -And $NetworkParameters.Subnet -Match $AZURE_ARMNAME) { $NetworkParameters.VnetName = $NetworkParameters.Vnet $NetworkParameters.SubnetName = $NetworkParameters.Subnet $Subnet = CreateVnetSubnet $NetworkParameters } else { if ($NetworkParameters.ContainsKey('SubnetPrefix') -And $NetworkParameters.ContainsKey('VnetPrefix')) { $Msg = "If you pass an address prefix, please consider passing a name (instead of Id) for a subnet or vnet." } else { $Msg = "If you pass both --vnet and --subnet, consider passing names instead of ids." } throw $Msg } } return $NetworkParameters } function GetSubnetId($ResourceGroupName, $VnetName, $SubnetName){ if (!($ResourceGroupName -is [String])){ $ResourceGroupName = $ResourceGroupName[0]} $Vnet = Get-AzVirtualNetwork -Name $VnetName -ResourceGroupName $ResourceGroupName $Subnet = Get-AzVirtualNetworkSubnetConfig -Name $SubnetName -VirtualNetwork $Vnet return $Subnet.Id } function CreateVnetSubnet($Parameters){ if (!$Parameters.ContainsKey('SubnetPrefix')){$Parameters.SubnetPrefix = $DEFAULT_SUBNET_PREFIX} if (!$Parameters.ContainsKey('VnetPrefix')){$Parameters.VnetPrefix = $DEFAULT_VNET_PREFIX} try { $Vnet = Get-AzVirtualNetwork -Name $Parameters.VnetName -ResourceGroupName $Parameters.ResourceGroupName -ErrorAction Stop $Msg = "The provided vnet does exist." Write-Host $Msg $prefixes = $Vnet.AddressSpace.AddressPrefixes if (!($prefixes -Contains $Parameters.VnetPrefix)){ $prefixes.Add($Parameters.VnetPrefix) $Vnet.AddressSpace.AddressPrefixes = $prefixes $Vnet | Set-AzVirtualNetwork } } catch { $Msg = "Creating new vnet {0} in resource group {1}" -f $Parameters.VnetName, $Parameters.ResourceGroupName Write-Host $Msg if($PSCmdlet.ShouldProcess($Parameters.VnetName)) { New-AzVirtualNetwork -Name $Parameters.VnetName -ResourceGroupName $Parameters.ResourceGroupName -Location $Parameters.Location -AddressPrefix $Parameters.VnetPrefix -Force } } $Subnet = CreateAndDelegateSubnet $Parameters return $Subnet } function CreateAndDelegateSubnet($Parameters) { $SubnetFlag = $true $Vnet = Get-AzVirtualNetwork -Name $Parameters.VnetName -ResourceGroupName $Parameters.ResourceGroupName -ErrorAction Stop try { $Subnet = Get-AzVirtualNetworkSubnetConfig -VirtualNetwork $Vnet -Name $Parameters.SubnetName -ErrorAction Stop $Msg = "The provided subnet does exist." Write-Host $Msg } catch { $SubnetFlag = $false $Msg = 'Creating new subnet {0} in resource group {1} and delegating it to {2}' -f $Parameters.SubnetName, $Parameters.ResourceGroupName, $DELEGATION_SERVICE_NAME Write-Host $Msg } if (!$SubnetFlag) { $Delegation = New-AzDelegation -Name $DELEGATION_SERVICE_NAME -ServiceName $DELEGATION_SERVICE_NAME Add-AzVirtualNetworkSubnetConfig -Name $Parameters.SubnetName -VirtualNetwork $Vnet -AddressPrefix $Parameters.SubnetPrefix -Delegation $Delegation | Set-AzVirtualNetwork } else { # check if existing subnet is delegated $Delegations = Get-AzDelegation -Subnet $Subnet if ($null -ne $Delegations){ $Delegations | ForEach-Object {If ($PSItem.ServiceName -ne $DELEGATION_SERVICE_NAME) { $Msg = "Can not use subnet with existing delegations other than {0}" -f $DELEGATION_SERVICE_NAME throw $Msg }} } else { # Valid but no delegation $Subnet = Add-AzDelegation -Name $DELEGATION_SERVICE_NAME -ServiceName $DELEGATION_SERVICE_NAME -Subnet $Subnet $Vnet | Set-AzVirtualNetwork } } return $Subnet } function CreateFirewallRule($RuleName, $StartIp, $EndIp, $ResourceGroupName, $ServerName) { $FirewallRule = New-AzPostgreSqlFlexibleServerFirewallRule -Name $RuleName -ResourceGroupName $ResourceGroupName -ServerName $ServerName -EndIPAddress $EndIp -StartIPAddress $StartIp return $FirewallRule.Name } function ParseFirewallRule($PublicAccess){ $PublicAccess = [string]$PublicAccess if ([string]::IsNullOrEmpty($PublicAccess)) { $PublicAccess = 'none' } if ($PublicAccess.ToLower() -ne 'none') { $Date = Get-Date -Format "yyyy-MM-dd_HH-mm-ss" if ($PublicAccess.ToLower() -eq 'all'){ $StartIp = '0.0.0.0' $EndIp = '255.255.255.255' $RuleName = "AllowAll_" + $Date } else { $Parsed = $PublicAccess -split "-" if ($Parsed.length -eq 1) { $StartIp = $Parsed[0] $EndIp = $Parsed[0] } elseif ($Parsed.length -eq 2) { $StartIp = $Parsed[0] $EndIp = $Parsed[1] } else { throw "Incorrect usage: --public-access. Acceptable values are \'all\', \'none\',\'<startIP>\' and \'<startIP>-<destinationIP>\' where startIP and destinationIP ranges from 0.0.0.0 to 255.255.255.255" } if ($StartIp -eq '0.0.0.0' -And $EndIp -eq '0.0.0.0') { $RuleName = "AllowAllAzureServicesAndResourcesWithinAzureIps_" + $Date $Msg = 'Configuring server firewall rule to accept connections from all Azure resources...' } elseif ($StartIP -eq $EndIP) { $Msg = 'Configuring server firewall rule to accept connections from ' + $StartIP $RuleName = "FirewallIPAddress_" + $Date } else { $Msg = 'Configuring server firewall rule to accept connections from {0} to {1}' -f $StartIP, $EndIp $RuleName = "FirewallIPAddress_" + $Date } Write-Host $Msg } } else{ $StartIp = $null $EndIp = $null $RuleName = $null } return $RuleName, $StartIp, $EndIp } function IsValidVnetId($Rid){ $VnetFormat = "\/subscriptions\/[0-9A-Fa-f]{8}-([0-9A-Fa-f]{4}-){3}[0-9A-Fa-f]{12}\/resourceGroups\/[-\w\._\(\)]+\/providers\/Microsoft.Network\/virtualNetworks\/[^<>%&:\\?/]{1,260}$" if ( $Rid -match $VnetFormat ) { return $True } return $False } function IsValidSubnetId($Rid){ $SubnetFormat = "\/subscriptions\/[0-9A-Fa-f]{8}-([0-9A-Fa-f]{4}-){3}[0-9A-Fa-f]{12}\/resourceGroups/[-\w\._\(\)]+\/providers\/Microsoft.Network\/virtualNetworks\/[^<>%&:\\?/]{1,260}\/subnets\/[^<>%&:\\?/]{1,260}$" if ( $Rid -match $SubnetFormat ) { return $True } return $False } function ParseResourceId($Rid){ $Splits = $Rid -split "/" $ParsedResults = @{} if ($Splits.length -gt 1){ $ParsedResults["SubscriptionId"] = $Splits[2] $ParsedResults["ResourceGroupName"] = $Splits[4] $ParsedResults["VnetName"] = $Splits[8] if ($Splits.length -eq 11) { $ParsedResults["SubnetName"] = $Splits[10] } } return $ParsedResults } function IsValidRgLocation($ResourceId, $Parameters){ $ParsedResults = ParseResourceId $ResourceId $Group = Get-AzResourceGroup -Name $ParsedResults["ResourceGroupName"] $ParsedResults["Location"] = $Group.Location if ($Parameters.SubscriptionId -eq $ParsedResults.SubscriptionId -And $Parameters.Location -eq $ParsedResults.Location) { return $True } throw "Incorrect Usage : The location and subscription of the server, Vnet and Subnet should be same." } function Get-RandomNumbers($Prefix, $Length) { $Generated = "" for($i = 0; $i -lt $Length; $i++){ $Generated += Get-Random -Maximum 10 } return $Prefix + $Generated } function Get-RandomName() { $Noun = Get-Content -Path (Join-Path $PSScriptRoot ".\nouns.txt") | Get-Random $Adjective = Get-Content -Path (Join-Path $PSScriptRoot ".\adjectives.txt") | Get-Random $Number = Get-Random -Maximum 10 $RandomName = $Adjective + $Noun + $Number return $RandomName } function Get-GeneratePassword() { $Password = '' $Chars = 'abcdefghiklmnoprstuvwxyzABCDEFGHKLMNOPRSTUVWXYZ1234567890' for ($i = 0; $i -lt 16; $i++ ) { $Password += $Chars[(Get-Random -Minimum 0 -Maximum $Chars.Length)] } $Password = ($Password -split '' | Sort-Object {Get-Random}) -join '' return $Password } # SIG # Begin signature block # MIInrQYJKoZIhvcNAQcCoIInnjCCJ5oCAQExDzANBglghkgBZQMEAgEFADB5Bgor # BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG # KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCDp4R5YAQ5W4cXg # fM9F8W8Gg6Xg0WpiQx58Iz+gkuD52KCCDYEwggX/MIID56ADAgECAhMzAAACUosz # qviV8znbAAAAAAJSMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD # VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p # bmcgUENBIDIwMTEwHhcNMjEwOTAyMTgzMjU5WhcNMjIwOTAxMTgzMjU5WjB0MQsw # CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u # ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB # AQDQ5M+Ps/X7BNuv5B/0I6uoDwj0NJOo1KrVQqO7ggRXccklyTrWL4xMShjIou2I # sbYnF67wXzVAq5Om4oe+LfzSDOzjcb6ms00gBo0OQaqwQ1BijyJ7NvDf80I1fW9O # L76Kt0Wpc2zrGhzcHdb7upPrvxvSNNUvxK3sgw7YTt31410vpEp8yfBEl/hd8ZzA # v47DCgJ5j1zm295s1RVZHNp6MoiQFVOECm4AwK2l28i+YER1JO4IplTH44uvzX9o # RnJHaMvWzZEpozPy4jNO2DDqbcNs4zh7AWMhE1PWFVA+CHI/En5nASvCvLmuR/t8 # q4bc8XR8QIZJQSp+2U6m2ldNAgMBAAGjggF+MIIBejAfBgNVHSUEGDAWBgorBgEE # AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQUNZJaEUGL2Guwt7ZOAu4efEYXedEw # UAYDVR0RBEkwR6RFMEMxKTAnBgNVBAsTIE1pY3Jvc29mdCBPcGVyYXRpb25zIFB1 # ZXJ0byBSaWNvMRYwFAYDVQQFEw0yMzAwMTIrNDY3NTk3MB8GA1UdIwQYMBaAFEhu # ZOVQBdOCqhc3NyK1bajKdQKVMFQGA1UdHwRNMEswSaBHoEWGQ2h0dHA6Ly93d3cu # bWljcm9zb2Z0LmNvbS9wa2lvcHMvY3JsL01pY0NvZFNpZ1BDQTIwMTFfMjAxMS0w # Ny0wOC5jcmwwYQYIKwYBBQUHAQEEVTBTMFEGCCsGAQUFBzAChkVodHRwOi8vd3d3 # Lm1pY3Jvc29mdC5jb20vcGtpb3BzL2NlcnRzL01pY0NvZFNpZ1BDQTIwMTFfMjAx # MS0wNy0wOC5jcnQwDAYDVR0TAQH/BAIwADANBgkqhkiG9w0BAQsFAAOCAgEAFkk3 # uSxkTEBh1NtAl7BivIEsAWdgX1qZ+EdZMYbQKasY6IhSLXRMxF1B3OKdR9K/kccp # kvNcGl8D7YyYS4mhCUMBR+VLrg3f8PUj38A9V5aiY2/Jok7WZFOAmjPRNNGnyeg7 # l0lTiThFqE+2aOs6+heegqAdelGgNJKRHLWRuhGKuLIw5lkgx9Ky+QvZrn/Ddi8u # TIgWKp+MGG8xY6PBvvjgt9jQShlnPrZ3UY8Bvwy6rynhXBaV0V0TTL0gEx7eh/K1 # o8Miaru6s/7FyqOLeUS4vTHh9TgBL5DtxCYurXbSBVtL1Fj44+Od/6cmC9mmvrti # yG709Y3Rd3YdJj2f3GJq7Y7KdWq0QYhatKhBeg4fxjhg0yut2g6aM1mxjNPrE48z # 6HWCNGu9gMK5ZudldRw4a45Z06Aoktof0CqOyTErvq0YjoE4Xpa0+87T/PVUXNqf # 7Y+qSU7+9LtLQuMYR4w3cSPjuNusvLf9gBnch5RqM7kaDtYWDgLyB42EfsxeMqwK # WwA+TVi0HrWRqfSx2olbE56hJcEkMjOSKz3sRuupFCX3UroyYf52L+2iVTrda8XW # esPG62Mnn3T8AuLfzeJFuAbfOSERx7IFZO92UPoXE1uEjL5skl1yTZB3MubgOA4F # 8KoRNhviFAEST+nG8c8uIsbZeb08SeYQMqjVEmkwggd6MIIFYqADAgECAgphDpDS # AAAAAAADMA0GCSqGSIb3DQEBCwUAMIGIMQswCQYDVQQGEwJVUzETMBEGA1UECBMK # V2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0 # IENvcnBvcmF0aW9uMTIwMAYDVQQDEylNaWNyb3NvZnQgUm9vdCBDZXJ0aWZpY2F0 # ZSBBdXRob3JpdHkgMjAxMTAeFw0xMTA3MDgyMDU5MDlaFw0yNjA3MDgyMTA5MDla # MH4xCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdS # ZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMT # H01pY3Jvc29mdCBDb2RlIFNpZ25pbmcgUENBIDIwMTEwggIiMA0GCSqGSIb3DQEB # AQUAA4ICDwAwggIKAoICAQCr8PpyEBwurdhuqoIQTTS68rZYIZ9CGypr6VpQqrgG # OBoESbp/wwwe3TdrxhLYC/A4wpkGsMg51QEUMULTiQ15ZId+lGAkbK+eSZzpaF7S # 35tTsgosw6/ZqSuuegmv15ZZymAaBelmdugyUiYSL+erCFDPs0S3XdjELgN1q2jz # y23zOlyhFvRGuuA4ZKxuZDV4pqBjDy3TQJP4494HDdVceaVJKecNvqATd76UPe/7 # 4ytaEB9NViiienLgEjq3SV7Y7e1DkYPZe7J7hhvZPrGMXeiJT4Qa8qEvWeSQOy2u # M1jFtz7+MtOzAz2xsq+SOH7SnYAs9U5WkSE1JcM5bmR/U7qcD60ZI4TL9LoDho33 # X/DQUr+MlIe8wCF0JV8YKLbMJyg4JZg5SjbPfLGSrhwjp6lm7GEfauEoSZ1fiOIl # XdMhSz5SxLVXPyQD8NF6Wy/VI+NwXQ9RRnez+ADhvKwCgl/bwBWzvRvUVUvnOaEP # 6SNJvBi4RHxF5MHDcnrgcuck379GmcXvwhxX24ON7E1JMKerjt/sW5+v/N2wZuLB # l4F77dbtS+dJKacTKKanfWeA5opieF+yL4TXV5xcv3coKPHtbcMojyyPQDdPweGF # RInECUzF1KVDL3SV9274eCBYLBNdYJWaPk8zhNqwiBfenk70lrC8RqBsmNLg1oiM # CwIDAQABo4IB7TCCAekwEAYJKwYBBAGCNxUBBAMCAQAwHQYDVR0OBBYEFEhuZOVQ # BdOCqhc3NyK1bajKdQKVMBkGCSsGAQQBgjcUAgQMHgoAUwB1AGIAQwBBMAsGA1Ud # DwQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB8GA1UdIwQYMBaAFHItOgIxkEO5FAVO # 4eqnxzHRI4k0MFoGA1UdHwRTMFEwT6BNoEuGSWh0dHA6Ly9jcmwubWljcm9zb2Z0 # LmNvbS9wa2kvY3JsL3Byb2R1Y3RzL01pY1Jvb0NlckF1dDIwMTFfMjAxMV8wM18y # Mi5jcmwwXgYIKwYBBQUHAQEEUjBQME4GCCsGAQUFBzAChkJodHRwOi8vd3d3Lm1p # Y3Jvc29mdC5jb20vcGtpL2NlcnRzL01pY1Jvb0NlckF1dDIwMTFfMjAxMV8wM18y # Mi5jcnQwgZ8GA1UdIASBlzCBlDCBkQYJKwYBBAGCNy4DMIGDMD8GCCsGAQUFBwIB # FjNodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20vcGtpb3BzL2RvY3MvcHJpbWFyeWNw # cy5odG0wQAYIKwYBBQUHAgIwNB4yIB0ATABlAGcAYQBsAF8AcABvAGwAaQBjAHkA # XwBzAHQAYQB0AGUAbQBlAG4AdAAuIB0wDQYJKoZIhvcNAQELBQADggIBAGfyhqWY # 4FR5Gi7T2HRnIpsLlhHhY5KZQpZ90nkMkMFlXy4sPvjDctFtg/6+P+gKyju/R6mj # 82nbY78iNaWXXWWEkH2LRlBV2AySfNIaSxzzPEKLUtCw/WvjPgcuKZvmPRul1LUd # d5Q54ulkyUQ9eHoj8xN9ppB0g430yyYCRirCihC7pKkFDJvtaPpoLpWgKj8qa1hJ # Yx8JaW5amJbkg/TAj/NGK978O9C9Ne9uJa7lryft0N3zDq+ZKJeYTQ49C/IIidYf # wzIY4vDFLc5bnrRJOQrGCsLGra7lstnbFYhRRVg4MnEnGn+x9Cf43iw6IGmYslmJ # aG5vp7d0w0AFBqYBKig+gj8TTWYLwLNN9eGPfxxvFX1Fp3blQCplo8NdUmKGwx1j # NpeG39rz+PIWoZon4c2ll9DuXWNB41sHnIc+BncG0QaxdR8UvmFhtfDcxhsEvt9B # xw4o7t5lL+yX9qFcltgA1qFGvVnzl6UJS0gQmYAf0AApxbGbpT9Fdx41xtKiop96 # eiL6SJUfq/tHI4D1nvi/a7dLl+LrdXga7Oo3mXkYS//WsyNodeav+vyL6wuA6mk7 # r/ww7QRMjt/fdW1jkT3RnVZOT7+AVyKheBEyIXrvQQqxP/uozKRdwaGIm1dxVk5I # RcBCyZt2WwqASGv9eZ/BvW1taslScxMNelDNMYIZgjCCGX4CAQEwgZUwfjELMAkG # A1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQx # HjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEoMCYGA1UEAxMfTWljcm9z # b2Z0IENvZGUgU2lnbmluZyBQQ0EgMjAxMQITMwAAAlKLM6r4lfM52wAAAAACUjAN # BglghkgBZQMEAgEFAKCBrjAZBgkqhkiG9w0BCQMxDAYKKwYBBAGCNwIBBDAcBgor # BgEEAYI3AgELMQ4wDAYKKwYBBAGCNwIBFTAvBgkqhkiG9w0BCQQxIgQglJ85dm9S # 0fA/eoQOXLouPGqOF4h8hpMnq64Qio7R2/8wQgYKKwYBBAGCNwIBDDE0MDKgFIAS # AE0AaQBjAHIAbwBzAG8AZgB0oRqAGGh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbTAN # BgkqhkiG9w0BAQEFAASCAQBDQ78mcWRZrv2WxXCwnNB/zFWxdJ+70rLCcxikHe8x # MOw5w9YSZ+5573INJD68NPaiGa91+Zp1Eq3ykDn4qVU7jZSwZ+31F1bSvm6X44OH # 0HcXT+JYzz0UpSX5R4abOBUURIEJsP6SDvpZNV/ybRG5m0L8ksT94C8eQEvoJYzz # 5TQw7OJVXesENueUkUCulNZUHxxf+zmiPe/c3bxqfdlccoc2EVMjj6z1Qn/1Ka9K # vYbTGknVxvKjFUpmG/nFSphrOcvCfk+JQ744o6AYY6LezF7pglH+d8zskoVQMPT7 # Hxxuu/aqhhB4g3DPBOuuaG0s7NPM7BqVJp9dypEnMJtFoYIXDDCCFwgGCisGAQQB # gjcDAwExghb4MIIW9AYJKoZIhvcNAQcCoIIW5TCCFuECAQMxDzANBglghkgBZQME # AgEFADCCAVUGCyqGSIb3DQEJEAEEoIIBRASCAUAwggE8AgEBBgorBgEEAYRZCgMB # MDEwDQYJYIZIAWUDBAIBBQAEIBXhiAftm8rElWy6IcQmfsKdUC5Js6f6F1n85+eQ # 0BQKAgZiL9qjMogYEzIwMjIwMzMxMTAwMDEzLjc3OVowBIACAfSggdSkgdEwgc4x # CzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRt # b25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xKTAnBgNVBAsTIE1p # Y3Jvc29mdCBPcGVyYXRpb25zIFB1ZXJ0byBSaWNvMSYwJAYDVQQLEx1UaGFsZXMg # VFNTIEVTTjpGODdBLUUzNzQtRDdCOTElMCMGA1UEAxMcTWljcm9zb2Z0IFRpbWUt # U3RhbXAgU2VydmljZaCCEV8wggcQMIIE+KADAgECAhMzAAABrqoLXLM0pZUaAAEA # AAGuMA0GCSqGSIb3DQEBCwUAMHwxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNo # aW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29y # cG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jvc29mdCBUaW1lLVN0YW1wIFBDQSAyMDEw # MB4XDTIyMDMwMjE4NTEzN1oXDTIzMDUxMTE4NTEzN1owgc4xCzAJBgNVBAYTAlVT # MRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQK # ExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xKTAnBgNVBAsTIE1pY3Jvc29mdCBPcGVy # YXRpb25zIFB1ZXJ0byBSaWNvMSYwJAYDVQQLEx1UaGFsZXMgVFNTIEVTTjpGODdB # LUUzNzQtRDdCOTElMCMGA1UEAxMcTWljcm9zb2Z0IFRpbWUtU3RhbXAgU2Vydmlj # ZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAJOMGvEhNQwLHactznPp # Y8Jg5qI8Qsgp0mhl2G2ztVPonq4gsOMe5u9p5f17PIM1KXjUaKNl3djncq29Liqm # qnaKORggPHNEk7Q+tal5Iyc+S8k/R31gCGt4qvQVqBLQNivxOukUfapG41LTdLHe # M4uwInk+QrGQH2K4wjNtiUpirF2PdCcbkXyALEpyT2RrwzJmzcmbdCscY0N3RHxr # MeWQ3k7sNt41NBZOT+4pCmkw8UkgKiSJXMzKs38MxUqx/OlS80dLDTHd+Zei1S1/ # qbCtTGzNm0bj6qfklUM3JFAF1JLXwwvqgZRdDQU6224wtGnwalTaOI0R0eX+crcP # pXGB27EIgYU+0lo2aH79SNrsPWEcdBICd0yfhFU2niVJepGzkXetJvbFxW3iN7sc # jLfw/S6UXF7wtEzdONXViI5P2UM779P6EIZ+g81E2MWX8XjLVyvIsvzyckJ4FFi+ # h1yPE+vzckPxzHOsiLaafucsyMjAaAM8Wwa+02BujEOylfLSyk0iv9IvSI9ZkJW/ # gLvQ42U0+U035ZhUhCqbKEWEMIr2ya2rYprUMEKcXf4R97LVPBfsJnbkNUubpUA4 # K1i7ijQ1pkUlt+YQ/34mtEy7eSigVpVznqfrNVerCvHG5IwfeFVhPNbAwK6lBEQ2 # 9nMYjRXj4QLyvmKRmqOJM/w1AgMBAAGjggE2MIIBMjAdBgNVHQ4EFgQU0zBv378o # YIrBqa10/vztZDphUe4wHwYDVR0jBBgwFoAUn6cVXQBeYl2D9OXSZacbUzUZ6XIw # XwYDVR0fBFgwVjBUoFKgUIZOaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9w # cy9jcmwvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUyMDIwMTAoMSkuY3Js # MGwGCCsGAQUFBwEBBGAwXjBcBggrBgEFBQcwAoZQaHR0cDovL3d3dy5taWNyb3Nv # ZnQuY29tL3BraW9wcy9jZXJ0cy9NaWNyb3NvZnQlMjBUaW1lLVN0YW1wJTIwUENB # JTIwMjAxMCgxKS5jcnQwDAYDVR0TAQH/BAIwADATBgNVHSUEDDAKBggrBgEFBQcD # CDANBgkqhkiG9w0BAQsFAAOCAgEAXb+R8P1VAEQOPK0zAxADIXP4cJQmartjVFLM # EkLYh39PFtVbt84Rv0Q1GSTYmhP8f/OOvnmC5ejw3Nc1VRi74rWGUITv18Wqr8eB # vASd4eDAxFbA8knOOm/ZySkMDDYdb6738aQ0yvqf7AWchgPntCc/nhNapSJmjzUk # e7EvjB8ei0BnY0xl+AQcSxJG/Vnsm9IwOer8E1miVLYfPn9fIDdaav1bq9i+gnZf # 1hS7apGpxbitCJr1KGD4jIyABkxHheoPOhhtQm1uznE7blKxH8pU7W2A+eqggsNk # M3VB0nrzRZBqm4SmBSNhOPzy3ofOmLcRK/aloOAr6nehi8i5lhmTg1LkOAxChLwH # vluiCY9K+2vIpt48ioK/h+tz5RgVdb+S8xwn728lN8KPkkB2Ra5iicrvtgA55wSU # dh6FFxXxeS+bsgBayn7ZyafTpDM7BQOBYwaodsuVf5XgGryGx84k4R58mPwB3Q09 # CRAGs35NOt6TrPXqcylNu6Zz8xTQDcaJp54pKyOoW5iIDFjpLneXTEjtWCFCgAo4 # zbp9CNITp97KPnc3gZVaMvEpU8Sp7VZwN9ckR2WDKyOjDghIcfuFJTLOdkOuMLGs # WPdnY6idtWc2bUDQa2QbzmNSZyFthEprwQ2GmgaGbGKuYVVqUj/Yt21HD0PBeDI5 # Mal8ScwwggdxMIIFWaADAgECAhMzAAAAFcXna54Cm0mZAAAAAAAVMA0GCSqGSIb3 # DQEBCwUAMIGIMQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4G # A1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMTIw # MAYDVQQDEylNaWNyb3NvZnQgUm9vdCBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkgMjAx # MDAeFw0yMTA5MzAxODIyMjVaFw0zMDA5MzAxODMyMjVaMHwxCzAJBgNVBAYTAlVT # MRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQK # ExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jvc29mdCBUaW1l # LVN0YW1wIFBDQSAyMDEwMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA # 5OGmTOe0ciELeaLL1yR5vQ7VgtP97pwHB9KpbE51yMo1V/YBf2xK4OK9uT4XYDP/ # XE/HZveVU3Fa4n5KWv64NmeFRiMMtY0Tz3cywBAY6GB9alKDRLemjkZrBxTzxXb1 # hlDcwUTIcVxRMTegCjhuje3XD9gmU3w5YQJ6xKr9cmmvHaus9ja+NSZk2pg7uhp7 # M62AW36MEBydUv626GIl3GoPz130/o5Tz9bshVZN7928jaTjkY+yOSxRnOlwaQ3K # Ni1wjjHINSi947SHJMPgyY9+tVSP3PoFVZhtaDuaRr3tpK56KTesy+uDRedGbsoy # 1cCGMFxPLOJiss254o2I5JasAUq7vnGpF1tnYN74kpEeHT39IM9zfUGaRnXNxF80 # 3RKJ1v2lIH1+/NmeRd+2ci/bfV+AutuqfjbsNkz2K26oElHovwUDo9Fzpk03dJQc # NIIP8BDyt0cY7afomXw/TNuvXsLz1dhzPUNOwTM5TI4CvEJoLhDqhFFG4tG9ahha # YQFzymeiXtcodgLiMxhy16cg8ML6EgrXY28MyTZki1ugpoMhXV8wdJGUlNi5UPkL # iWHzNgY1GIRH29wb0f2y1BzFa/ZcUlFdEtsluq9QBXpsxREdcu+N+VLEhReTwDwV # 2xo3xwgVGD94q0W29R6HXtqPnhZyacaue7e3PmriLq0CAwEAAaOCAd0wggHZMBIG # CSsGAQQBgjcVAQQFAgMBAAEwIwYJKwYBBAGCNxUCBBYEFCqnUv5kxJq+gpE8RjUp # zxD/LwTuMB0GA1UdDgQWBBSfpxVdAF5iXYP05dJlpxtTNRnpcjBcBgNVHSAEVTBT # MFEGDCsGAQQBgjdMg30BATBBMD8GCCsGAQUFBwIBFjNodHRwOi8vd3d3Lm1pY3Jv # c29mdC5jb20vcGtpb3BzL0RvY3MvUmVwb3NpdG9yeS5odG0wEwYDVR0lBAwwCgYI # KwYBBQUHAwgwGQYJKwYBBAGCNxQCBAweCgBTAHUAYgBDAEEwCwYDVR0PBAQDAgGG # MA8GA1UdEwEB/wQFMAMBAf8wHwYDVR0jBBgwFoAU1fZWy4/oolxiaNE9lJBb186a # GMQwVgYDVR0fBE8wTTBLoEmgR4ZFaHR0cDovL2NybC5taWNyb3NvZnQuY29tL3Br # aS9jcmwvcHJvZHVjdHMvTWljUm9vQ2VyQXV0XzIwMTAtMDYtMjMuY3JsMFoGCCsG # AQUFBwEBBE4wTDBKBggrBgEFBQcwAoY+aHR0cDovL3d3dy5taWNyb3NvZnQuY29t # L3BraS9jZXJ0cy9NaWNSb29DZXJBdXRfMjAxMC0wNi0yMy5jcnQwDQYJKoZIhvcN # AQELBQADggIBAJ1VffwqreEsH2cBMSRb4Z5yS/ypb+pcFLY+TkdkeLEGk5c9MTO1 # OdfCcTY/2mRsfNB1OW27DzHkwo/7bNGhlBgi7ulmZzpTTd2YurYeeNg2LpypglYA # A7AFvonoaeC6Ce5732pvvinLbtg/SHUB2RjebYIM9W0jVOR4U3UkV7ndn/OOPcbz # aN9l9qRWqveVtihVJ9AkvUCgvxm2EhIRXT0n4ECWOKz3+SmJw7wXsFSFQrP8DJ6L # GYnn8AtqgcKBGUIZUnWKNsIdw2FzLixre24/LAl4FOmRsqlb30mjdAy87JGA0j3m # Sj5mO0+7hvoyGtmW9I/2kQH2zsZ0/fZMcm8Qq3UwxTSwethQ/gpY3UA8x1RtnWN0 # SCyxTkctwRQEcb9k+SS+c23Kjgm9swFXSVRk2XPXfx5bRAGOWhmRaw2fpCjcZxko # JLo4S5pu+yFUa2pFEUep8beuyOiJXk+d0tBMdrVXVAmxaQFEfnyhYWxz/gq77EFm # PWn9y8FBSX5+k77L+DvktxW/tM4+pTFRhLy/AsGConsXHRWJjXD+57XQKBqJC482 # 2rpM+Zv/Cuk0+CQ1ZyvgDbjmjJnW4SLq8CdCPSWU5nR0W2rRnj7tfqAxM328y+l7 # vzhwRNGQ8cirOoo6CGJ/2XBjU02N7oJtpQUQwXEGahC0HVUzWLOhcGbyoYIC0jCC # AjsCAQEwgfyhgdSkgdEwgc4xCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5n # dG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9y # YXRpb24xKTAnBgNVBAsTIE1pY3Jvc29mdCBPcGVyYXRpb25zIFB1ZXJ0byBSaWNv # MSYwJAYDVQQLEx1UaGFsZXMgVFNTIEVTTjpGODdBLUUzNzQtRDdCOTElMCMGA1UE # AxMcTWljcm9zb2Z0IFRpbWUtU3RhbXAgU2VydmljZaIjCgEBMAcGBSsOAwIaAxUA # vJqwk/xnycgV5Gdy5b4IwE/TWuOggYMwgYCkfjB8MQswCQYDVQQGEwJVUzETMBEG # A1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWlj # cm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFt # cCBQQ0EgMjAxMDANBgkqhkiG9w0BAQUFAAIFAOXvcPcwIhgPMjAyMjAzMzEwNDE0 # NDdaGA8yMDIyMDQwMTA0MTQ0N1owdzA9BgorBgEEAYRZCgQBMS8wLTAKAgUA5e9w # 9wIBADAKAgEAAgIW2AIB/zAHAgEAAgIRDzAKAgUA5fDCdwIBADA2BgorBgEEAYRZ # CgQCMSgwJjAMBgorBgEEAYRZCgMCoAowCAIBAAIDB6EgoQowCAIBAAIDAYagMA0G # CSqGSIb3DQEBBQUAA4GBAAtB2X5m7pPY6gCna4OO22nDiy7GX7zy5wbGOyhTXO9m # MyV8PMGV6DrKqbl7W26E31rjsbZDiTGIvEIgcEqZWDihTlU0K617bKbfUo8qocn4 # ljqjH1IvJOGbt2IZk6MLdHJico99gmTZuHvCnf9xG7w7IdW8jEZRKN/9g/Pjw4wJ # MYIEDTCCBAkCAQEwgZMwfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0 # b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3Jh # dGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIwMTACEzMA # AAGuqgtcszSllRoAAQAAAa4wDQYJYIZIAWUDBAIBBQCgggFKMBoGCSqGSIb3DQEJ # AzENBgsqhkiG9w0BCRABBDAvBgkqhkiG9w0BCQQxIgQgR6C3x7vUogH1gif0OnKh # ewGGr9KIM4OGW4ZWvMjU10QwgfoGCyqGSIb3DQEJEAIvMYHqMIHnMIHkMIG9BCBJ # KB0+uIzDWqHun09mqTU8uOg6tew0yu1uQ0iU/FJvaDCBmDCBgKR+MHwxCzAJBgNV # BAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4w # HAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jvc29m # dCBUaW1lLVN0YW1wIFBDQSAyMDEwAhMzAAABrqoLXLM0pZUaAAEAAAGuMCIEIM6p # s+z0mRlmddw77CfkjpcYGVrpjhRfV2FfS269bbbkMA0GCSqGSIb3DQEBCwUABIIC # AGpjakzDjDfICnAYZG0xO96itFqzyHBebItdcT75xw2+N38r+vs5vlMe/ly+qATA # xNudRkN1rqxNKESlKIUvLBnrPBJANW3BjQ9skHJ4hH4S+K1JtUMO0mrCqgPj1/gZ # flW5I/sUyt1xS8Decj39V7U9DvqgGpLag4tRPKziYQ6/4pyLMgTiLNMrF6DcPkuG # FRa7I1Of+HknURGORPeHGtc5Y8Dd8ZWO0NKtqFn4Bun4SX7jkOsuh5F23d6jhRov # k2I4RnogYIph/Dl7RG5Iqm0+T+t80xDWMhJ1xqI2s2OmS63Hf4bSo+2MeOS22aQC # LxzDD1VwMeDs+jrUeQAdl+tjIAWs3gisF0039csPz10hieqXhCIEFCEB2FNNImwv # cbQ/Sttk6GB/VkRJ9Rke+IawMKGVoSOabM2YW6qHTOlEuyQQ96Fb7kO74oOj5g7F # e10hDOM/m/qUWCf2OL3AloVM3pZOd/uthfApVrmpm4/XH3ZgeVzKjVLfA53J6RWI # ZgAW3P7lns0pgSVN97qM4JO5LvrpFMkC7ksFlZ5/BpJk1hm5CIR1p5qFfOfSao2z # cpi1pl3pGe+VgYXBsDZcCMT0CiqtdevzvA2AGTp5k7HR325PtbggtU22bRfRewE6 # Lte7OOqW3QIqIga020OcgxntV2WxIinBpJ+S7FyojEJj # SIG # End signature block |