Azure DevOps yaml file to run pipeline in Azure Synapse Analytics
I am working on Azure DevOps and Azure Synapse Analytics. Right now, I have the issue to integration Azure DevOps with Azure Synpase Analytics together. How could I use the yaml file and azure powershell in azure DevOps together to activate the pipeline in azure synapse analytics or how to launch the pipeline in azure synapse via Azure DevOps yaml file?
update: could you provide me how to use the service connection and how to implement a powershell script in azure DevOps instead of using a incline script in the YAML pipeline definition.
Update
Based on the discussions and updates, let's assume you have got a service principal (app registration) and granted it with the Synapse Administrator role in your Azure Synapse workspace like below.
We can proceed to manually create a new Azure Resource Manager service connection in Azure DevOps for the AzurePowerShell pipeline task to authenticate against this service principal with Workload identity federation authentication, which can avoid client secret leakage or issue caused by its expiration. Here are the brief steps for your reference.
In Azure Portal. navigate to Microsoft Entra Id (formerly Azure Active Directory) -> App registrations -> Select the app for authentication -> Keep note of the Application (client) ID and Directory (tenant) ID;
In Azure Portal, collect your Subscription ID and name; Go to the resource group where your Azure Synapse workspace resource locates -> As the resource group Owner, you should be able to assign the app with the Contributor role to the scope of this resource group (this RBAC role assignment is for ARM service connection validation; the permission may not be minimum but is the same role assignment during an automated ARM service connection creation);
In Azure DevOps, browse to your Project Settings -> Pipelines -> Service connections -> New service connection -> Select the type of Azure Resource Manager -> Select Workload Identity federation (manual) -> Give a name for the ARM service connection;
Keep note of the Issuer and Subject identifier -> Input the Subscription Id, Subscription Name, Service Principal Id and Tenant ID from step 1 & 2; you can save the new ARM service connection as a draft now and move on to next step;
In Azure Portal again, Select the app -> Click on Certificates & secrets blade -> Click on Federated credentials tab -> Add credential -> Select Other issuer and Input the Issuer and Subject identifier from step 4;
Go back to Azure DevOps ARM service connection draft to Finish setup -> Click on the Verify and save button;
Per the requirement not to use the inline script in YAML pipeline definition, you may add a .ps1 script file with the sample command below in your repo first. In your Azure DevOps YAML pipeline definition file, you can reference the new ARM service connection by its name in the AzurePowerShell pipeline task and run the script file with FilePath.
Invoke-AzSynapsePipeline.ps1
Invoke-AzSynapsePipeline -WorkspaceName "$env:MY_WORKSPACE" -PipelineName "$env:PIPELINE_NAME"
azure-pipeline.yml
variables:
myWorkspace: azsynapsexxxxxx0
pipelineName: Pipeline 1
pool:
vmImage: windows-latest
steps:
- task: AzurePowerShell@5
inputs:
azureSubscription: 'ARMSvcCnnAzureSynapseResource0'
ScriptType: 'FilePath'
ScriptPath: 'Invoke-AzSynapsePipeline.ps1'
azurePowerShellVersion: 'LatestVersion'
env:
MY_WORKSPACE: $(myWorkspace)
PIPELINE_NAME: $(pipelineName)
According to this document on Pipeline execution and triggers - Azure Data Factory & Azure Synapse, you may test to run the Invoke-AzSynapsePipeline Azure PowerShell command in the AzurePowerShell@5 DevOps pipeline task to trigger your Azure Synapse pipeline.
Here is my sample YAML Azure DevOps pipeline for your reference.
pool:
vmImage: windows-latest
steps:
- task: AzurePowerShell@5
inputs:
azureSubscription: 'ARMSvcCnnWIFAutoSub1'
ScriptType: 'InlineScript'
Inline: |
Invoke-AzSynapsePipeline -WorkspaceName $(myWorkspace) -PipelineName "Pipeline 1"
azurePowerShellVersion: 'LatestVersion'
If you already created an Azure Resource Manager service connection in Azure DevOps, please make sure its underly service principle that the Azure DevOps pipeline authenticates against is granted with sufficient permission to trigger Azure Synapse pipeline.
- While scanning a simple key, could not find expected ':'. Syntax error in azure-pipeline.yaml
- ##[error]Project file(s) matching the specified pattern were not found
- Is there a way to get the equivalent of a git diff on a pull request in Azure DevOps?
- Query Azure DevOps for all items with no open children
- Azure DevOps YAML deployment pipeline cannot reference variable group in stage
- How can I create a Work Item linked to existing item using DevOps rest api?
- Pipeline is not triggered for the Pull Request on Azure DevOps Pipeline
- Separate pipeline for each branch
- Azure Devops Apple App Store Release.Missing value for the attribute 'whatsNew'
- What directory should I use to manipulate files that will be consumed in other tasks, but not published as artifacts?
- How do I use expressions when defining variables in Azure DevOps yaml pipelines
- Azure pipeline template: dynamically retrieve and story keyvault secrets
- Trigger Multiple pipelines using another pipeline (same Project) - Azure DevOps
- Pull requests using the Azure DevOps plugin in JetBrains Rider
- Failed tests only showing the stacktrace, not the full logs
- nested pipelines error - unexpected value 'jobs'
- Azure DevOps REST API - Update pre-deployment artifacts
- Using Azure Devops Python API to create PR and add tags to it in the same call
- what is the correct way or version to add flutter extension to azure devops
- Two pipelines across different organizations on Azure DevOps
- Failed to add virtual machine resource. Linked environment pool is null
- Pipeline YAML template defines variables at the job level, but they are not being resolved into their values
- How to create a feature burndown chart in Azure DevOps?
- az rest for azure devops only returns 203 to login
- How to count direct and indirect test cases for Features, Requirements, and Change Requests in Power BI using DAX?
- Azure DevOps - turn off notification for everyone for data import
- how can I use IF ELSE in variables of azure DevOps yaml pipeline with variable group?
- Azure DevOps YAML: How to convert an array into formatted string?
- Why is a parameter not seen when using extend?
- VSTS Build Pipeline: Test fails connecting to Azure Key Vault