From 3bfe4b417d0991e727f7f408e5ed11559e1d25a4 Mon Sep 17 00:00:00 2001
From: SkillableKarl <65239900+SkillableKarl@users.noreply.github.com>
Date: Fri, 17 Oct 2025 07:44:36 -0700
Subject: [PATCH] Create skillabledeploy.bicep

skillable-specific deploy for housekeeping purposes.
---
 Allfiles/Labs/Shared/skillabledeploy.bicep | 161 +++++++++++++++++++++
 1 file changed, 161 insertions(+)
 create mode 100644 Allfiles/Labs/Shared/skillabledeploy.bicep

diff --git a/Allfiles/Labs/Shared/skillabledeploy.bicep b/Allfiles/Labs/Shared/skillabledeploy.bicep
new file mode 100644
index 0000000..3ecd851
--- /dev/null
+++ b/Allfiles/Labs/Shared/skillabledeploy.bicep
@@ -0,0 +1,161 @@
+param labInstanceTag string
+
+@description('Location for all resources.')
+param location string = resourceGroup().location
+
+@description('Unique name for the Azure Database for PostgreSQL.')
+param serverName string = 'psql-learn-${labInstanceTag}'
+
+@description('The version of PostgreSQL to use.')
+param postgresVersion string = '16'
+
+@description('Login name of the database administrator.')
+@minLength(1)
+param adminLogin string = 'pgAdmin'
+
+@description('Password for the database administrator.')
+@minLength(8)
+@secure()
+param adminLoginPassword string
+
+@description('Unique name for the Azure OpenAI service.')
+param azureOpenAIServiceName string = 'oai-learn-${labInstanceTag}'
+
+@description('Unique name for the Azure AI Language service account.')
+param languageServiceName string = 'lang-learn-${labInstanceTag}'
+
+@description('Restore the service instead of creating a new instance. This is useful if you previously soft-delted the service and want to restore it. If you are restoring a service, set this to true. Otherwise, leave this as false.')
+param restore bool = false
+
+@description('Creates a PostgreSQL Flexible Server.')
+resource postgreSQLFlexibleServer 'Microsoft.DBforPostgreSQL/flexibleServers@2023-03-01-preview' = {
+  name: serverName
+  location: location
+  sku: {
+    name: 'Standard_D2ds_v4'
+    tier: 'GeneralPurpose'
+  }
+  properties: {
+    administratorLogin: adminLogin
+    administratorLoginPassword: adminLoginPassword
+    authConfig: {
+      activeDirectoryAuth: 'Disabled'
+      passwordAuth: 'Enabled'
+      tenantId: subscription().tenantId
+    }
+    backup: {
+      backupRetentionDays: 7
+      geoRedundantBackup: 'Disabled'
+    }
+    createMode: 'Default'
+    highAvailability: {
+      mode: 'Disabled'
+    }
+    storage: {
+      autoGrow: 'Disabled'
+      storageSizeGB: 32
+      tier: 'P10'
+    }
+    version: postgresVersion
+  }
+}
+
+@description('Firewall rule that checks the "Allow public access from any Azure service within Azure to this server" box.')
+resource allowAllAzureServicesAndResourcesWithinAzureIps 'Microsoft.DBforPostgreSQL/flexibleServers/firewallRules@2023-03-01-preview' = {
+  name: 'AllowAllAzureServicesAndResourcesWithinAzureIps'
+  parent: postgreSQLFlexibleServer
+  properties: {
+    startIpAddress: '0.0.0.0'
+    endIpAddress: '0.0.0.0'
+  }
+}
+
+@description('Firewall rule to allow all IP addresses to connect to the server. Should only be used for lab purposes.')
+resource allowAll 'Microsoft.DBforPostgreSQL/flexibleServers/firewallRules@2023-03-01-preview' = {
+  name: 'AllowAll'
+  parent: postgreSQLFlexibleServer
+  properties: {
+    startIpAddress: '0.0.0.0'
+    endIpAddress: '255.255.255.255'
+  }
+}
+
+@description('Creates the "rentals" database in the PostgreSQL Flexible Server.')
+resource rentalsDatabase 'Microsoft.DBforPostgreSQL/flexibleServers/databases@2023-03-01-preview' = {
+  name: 'rentals'
+  parent: postgreSQLFlexibleServer
+  properties: {
+    charset: 'UTF8'
+    collation: 'en_US.UTF8'
+  }
+}
+
+@description('Configures the "azure.extensions" parameter to allowlist extensions.')
+resource allowlistExtensions 'Microsoft.DBforPostgreSQL/flexibleServers/configurations@2023-03-01-preview' = {
+  name: 'azure.extensions'
+  parent: postgreSQLFlexibleServer
+  dependsOn: [allowAllAzureServicesAndResourcesWithinAzureIps, allowAll, rentalsDatabase] // Ensure the database is created and configured before setting the parameter, as it requires a "restart."
+  properties: {
+    source: 'user-override'
+    value: 'azure_ai,vector'
+  }
+}
+
+@description('Creates an Azure OpenAI service.')
+resource azureOpenAIService 'Microsoft.CognitiveServices/accounts@2023-05-01' = {
+  name: azureOpenAIServiceName
+  location: location
+  kind: 'OpenAI'
+  sku: {
+    name: 'S0'
+    tier: 'Standard'
+  }
+  properties: {
+    customSubDomainName: azureOpenAIServiceName
+    publicNetworkAccess: 'Enabled'
+    restore: restore
+  } 
+}
+
+@description('Creates an embedding deployment for the Azure OpenAI service.')
+resource azureOpenAIEmbeddingDeployment 'Microsoft.CognitiveServices/accounts/deployments@2023-05-01' = {
+  name: 'embedding'
+  parent: azureOpenAIService
+  sku: {
+    name: 'Standard'
+    capacity: 30
+  }
+  properties: {
+    model: {
+      name: 'text-embedding-ada-002'
+      version: '2'
+      format: 'OpenAI'
+    }
+  }
+}
+
+@description('Creates an Azure AI Language service account.')
+resource languageService 'Microsoft.CognitiveServices/accounts@2023-05-01' = {
+  name: languageServiceName
+  location: location
+  kind: 'TextAnalytics'
+  sku: {
+    name: 'S'
+  }
+  properties: {
+    customSubDomainName: languageServiceName
+    publicNetworkAccess: 'Enabled'
+    restore: restore
+  } 
+}
+
+output serverFqdn string = postgreSQLFlexibleServer.properties.fullyQualifiedDomainName
+output serverName string = postgreSQLFlexibleServer.name
+output databaseName string = rentalsDatabase.name
+
+output azureOpenAIServiceName string = azureOpenAIService.name
+output azureOpenAIEndpoint string = azureOpenAIService.properties.endpoint
+output azureOpenAIEmbeddingDeploymentName string = azureOpenAIEmbeddingDeployment.name
+
+output languageServiceName string = languageService.name
+output languageServiceEndpoint string = languageService.properties.endpoint