When running terraform plan, terraform throws this error:

Error: expected format to be one of [SOURCE], got DBC

  on sample_data.tf line 31, in resource "databricks_notebook" "presentation":
  31: resource "databricks_notebook" "presentation" {

A temporary, but probably not the right, fix involves: In the section described in the error message above, changing the line that says:

format = "DBC"

to:

format = "SOURCE"

N.B.: Possibly related to issue #165

The module needs versioning before we can submit it to the Terraform registry

Question -- I'm getting an error running the tf plan, and am confused where one obtains Databricks credentials/tokens (in Azure?). Here's the error I am seeing:

Refreshing Terraform state in-memory prior to plan...
The refreshed state will be used to calculate this plan, but will not be
persisted to local or remote state storage.

data.http.current_ip[0]: Refreshing state...
data.azurerm_client_config.current: Refreshing state...

Error: failed to get credentials from config file; error msg: Authentication is not configured for provider. Please configure it
through one of the following options:

1. DATABRICKS_HOST + DATABRICKS_TOKEN environment variables.
2. host + token provider arguments.
3. Run databricks configure --token that will create /root/.databrickscfg file.

Please check https://docs.databricks.com/dev-tools/cli/index.html#set-up-authentication for details

on databricks.tf line 41, in provider "databricks":
41: provider "databricks" {

Heads up - installation using Terraform on Ubuntu 18.04 requires 'jq' to be installed - otherwise it will fail mid-install and be difficult to roll back.

Error: Error running command './files/sample_data/set_df_trigger.sh': exit status 22. Output: curl: (22) The requested URL returned error: 400

Will be fixed when a release with hashicorp/terraform-provider-azurerm#6871 is available (azurerm 2.10)

This issue will probably have to be split up into separate issues for each component.

Add a section to the readme explaining how the provided dashboard can be uploaded to Power BI and how it can be modified so that it connects to the Synapse Analytics instance.

When running terraform destroy we get an error because some of the sample data is deployed with an ARM script. When destroying that resource, only the reference to the deployment is destroyed and not the resources themselves. As one of the deployed resources has a reference to a resource that is not in the ARM script, destroying currently fails.

It's probably a good idea to work on adding these resources to the official Terraform azurerm provider so that we don't have to use the ARM script anymore.

Repro

1. Do an apply for the complete module
2. Terraform plan

You'll notice that Terraform wants to update the databricks tags.

At first I thought it was related to the azurerm provider: hashicorp/terraform-provider-azurerm#7109

Apparently it isn't, because I can't repro it with the code below:

provider azurerm {
  features {}
}

resource "azurerm_resource_group" "rg" {
  name     = "databricksrepro"
  location = "eastus2"
  tags = {
    Tag1 = "Value1"
    Tag2 = "Value2"
  }
}

resource "azurerm_databricks_workspace" "dbks" {
  location            = azurerm_resource_group.rg.location
  name                = "databricksrepro"
  resource_group_name = azurerm_resource_group.rg.name
  sku                 = "standard"
  tags                = azurerm_resource_group.rg.tags
}

When running with high parallelism, it sometimes happens that the data lake filesystems cannot be created due to permission errors.

An example log is attached where I marked the stages that the deployment goes through and removed some extra headers to make it clearer.
tflogs.log

This is how TF provisions the environment in the attached log:

1. Resource group is created (redacted)
2. Starts creating storage account
3. Storage account is created
4. Giving the current user permission (Blob Data Owner)
5. [PARALLEL] Giving the service principal permission (Blob Data Owner) - we don't care about this, the filesystems will be created by the current user, not the sp we created
6. Succes result on the Blob Data Owner role for the current user
7. Starts creating the first filesystem
8. First filesystem creation has failed with HTTP 403
9. [PARALLEL] Starts creating the second filesystem
10. [PARALLEL] Second filesystem creation has failed with HTTP 403

2020/05/14 19:20:30 [DEBUG] azurerm_storage_data_lake_gen2_filesystem.dlfs[1]: apply errored, but we're indicating that via the Error pointer rather than returning it: Error creating File System "fscleansedtfadl" in Storage Account "satfadl": datalakestore.Client#Create: Failure responding to request: StatusCode=403 -- Original Error: autorest/azure: Service returned an error. Status=403 Code="AuthorizationPermissionMismatch" Message="This request is not authorized to perform this operation using this permission."

The issue never occurs with lower parallelism (1 or 2).

It looks like the role isn't really granted until after a few seconds.

Related to databricks/terraform-provider-databricks#42
Notebooks are being replaced on each terraform apply This is due to how the Databricks provider currently compares the server and the local version.

A lot of customers would probably prefer to deploy the module in a dedicated VNet. There is already some work that has been done on the feature/vnet branch. The current obstacle is the SQL script that has to be executed on the Synapse Analytics instance. The machine running Terraform would probably have to connect to the VNet.

Azure Synapse Analytics Workspace is currently in private preview and will bundle storage, SQL pools and a Spark cluster in 1 product. This will probably allow us to simplify our pipeline a lot while still offering the same flexibility.

We'll have to look into migrating as soon as the service becomes GA and available in the Terraform azurerm provider.

Newer versions should be 0.1.1, 0.1.2 etc. but instead it's continuing with 0.0.71, 0.0.72 etc.

Passwords are currently generated and used when needed, but they are not stored anywhere. Suggestions are welcome.

Strange - keep getting this error:

null_resource.sql_init[0]: Still creating... [10s elapsed]
null_resource.sql_init[0] (local-exec): -1
azurerm_cosmosdb_sql_container.metadata: Still creating... [40s elapsed]
null_resource.sql_init[0]: Still creating... [20s elapsed]
null_resource.sql_init[0] (local-exec): -1
null_resource.sql_init[0]: Creation complete after 23s [id=7882090812782899888]
azurerm_cosmosdb_sql_container.metadata: Still creating... [50s elapsed]
azurerm_cosmosdb_sql_container.metadata: Still creating... [1m0s elapsed]
azurerm_cosmosdb_sql_container.metadata: Creation complete after 1m3s [id=/subscriptions/b970f71b-bc04-47c8-89cd-7e491b4656b2/resourceGroups/rgcdedlplay02/providers/Microsoft.DocumentDB/databaseAccounts/cmdbcdedlplay02/sqlDatabases/metadatadb/containers/metadata]

Error: rpc error: code = Unavailable desc = transport is closing



Error: rpc error: code = Unavailable desc = transport is closing



Error: rpc error: code = Unavailable desc = transport is closing



Error: rpc error: code = Unavailable desc = transport is closing

For now this module is only compatible with Terraform 0.12.x and Databricks 0.2.4 (or custom build of their latest master). Once Databricks 0.2.4 is out, upgrade both Terraform and Databricks depedencies.

When provisioning the sample data we often get HTTP 429 errors because the Databricks API rate limit is hit.
This is related to databricks/terraform-provider-databricks#41

Temporary workarounds:

• Use a proxy (e.g. Charles) and throttle the HTTP requests to *.azuredatabricks.net
• Use the flag -parallelism=1

Dependabot couldn't parse the cosmosdb.tf found at /cosmosdb.tf.

The error Dependabot encountered was:

unable to parse HCL: At 3:25: Unknown token: 3:25 IDENT azurerm_resource_group.rg.name

View the update logs.

Make the module available on the Terraform registry under a dataroots account. Needs #49