microsoft · sethsteenken · Dec 19, 2025 · Oct 23, 2025 · Oct 23, 2025 · Oct 23, 2025
@@ -0,0 +1,34 @@
+name: AZD Template Validation
+on: 
+  workflow_dispatch:
+  push:
+    branches:
+      - main
+
+permissions:
+  contents: read
+  id-token: write
+  pull-requests: write
+
+jobs:
+  template_validation:
+    runs-on: ubuntu-latest
+    name: azd template validation
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: microsoft/template-validation-action@Latest
+        with:
+          validateAzd: ${{ vars.TEMPLATE_VALIDATE_AZD }}
+          useDevContainer: ${{ vars.TEMPLATE_USE_DEV_CONTAINER }}
+        id: validation
+        env:
+          AZURE_CLIENT_ID: ${{ vars.AZURE_CLIENT_ID }}
+          AZURE_TENANT_ID: ${{ vars.AZURE_TENANT_ID }}
+          AZURE_SUBSCRIPTION_ID: ${{ vars.AZURE_SUBSCRIPTION_ID }}
+          AZURE_ENV_NAME: ${{ vars.AZURE_ENV_NAME }}
+          AZURE_LOCATION: ${{ vars.AZURE_LOCATION }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: print result
+        run: cat ${{ steps.validation.outputs.resultFile }}
@@ -1,74 +1,44 @@
-name: AZD Template Validation
-on: 
+name: AZD Deployment
+on:
   workflow_dispatch:
   push:
     branches:
       - main
 
 permissions:
-  contents: read
   id-token: write
-  pull-requests: write
+  contents: read
 
 jobs:
-  template_validation:
+  build:
     runs-on: ubuntu-latest
-    name: azd template validation
+    env:
+      AZURE_CLIENT_ID: ${{ vars.AZURE_CLIENT_ID }}
+      AZURE_TENANT_ID: ${{ vars.AZURE_TENANT_ID }}
+      AZURE_SUBSCRIPTION_ID: ${{ vars.AZURE_SUBSCRIPTION_ID }}
+      AZURE_RESOURCE_GROUP: ${{ vars.AZURE_RESOURCE_GROUP }}
+      AZURE_ENV_NAME: ${{ vars.AZURE_ENV_NAME }}
+      AZURE_LOCATION: ${{ vars.AZURE_LOCATION }}
+      AZURE_USER_OBJECT_ID: ''
     steps:
-      - uses: actions/checkout@v4
-
-      - name: Azure Login
+      - name: Checkout
+        uses: actions/checkout@v4
+      - name: Install azd
+        uses: Azure/setup-azd@v2
+      - name: Azure Developer CLI Login
+        run: |
+          azd auth login `
+            --client-id "$Env:AZURE_CLIENT_ID" `
+            --federated-credential-provider "github" `
+            --tenant-id "$Env:AZURE_TENANT_ID" 
+        shell: pwsh
+      - name: Azure CLI Login
         uses: azure/login@v2
         with:
           client-id: ${{ vars.AZURE_CLIENT_ID }}
           tenant-id: ${{ vars.AZURE_TENANT_ID }}
           subscription-id: ${{ vars.AZURE_SUBSCRIPTION_ID }}
-
-      - name: Create Resource Group for Validation
-        run: |
-          ENV_NAME="${{ vars.AZURE_ENV_NAME }}"
-          RG_NAME="rg-${ENV_NAME}"
-          echo "Creating resource group for template validation: ${RG_NAME}"
-          az group create \
-            --name "${RG_NAME}" \
-            --location "${{ vars.AZURE_LOCATION }}" \
-            --tags "CreatedBy=GitHubActions"
-          echo "Resource group ${RG_NAME} created successfully"
-
-      - uses: microsoft/template-validation-action@Latest
-        with:
-          validateAzd: ${{ vars.TEMPLATE_VALIDATE_AZD }}
-          useDevContainer: ${{ vars.TEMPLATE_USE_DEV_CONTAINER }}
-          validateTests: ${{ vars.AZD_VALIDATE_TESTS }}
-        id: validation
+      - name: Provision Infrastructure
+        run: azd provision --no-prompt
         env:
-          AZURE_CLIENT_ID: ${{ vars.AZURE_CLIENT_ID }}
-          AZURE_TENANT_ID: ${{ vars.AZURE_TENANT_ID }}
-          AZURE_SUBSCRIPTION_ID: ${{ vars.AZURE_SUBSCRIPTION_ID }}
-          AZURE_ENV_NAME: ${{ vars.AZURE_ENV_NAME }}
-          AZURE_LOCATION: ${{ vars.AZURE_LOCATION }}
-          AZURE_RESOURCE_GROUP: rg-${{ vars.AZURE_ENV_NAME  }}
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-          # Set correct principal type for GitHub Actions ServicePrincipal
-          AZURE_DEPLOYER_PRINCIPAL_TYPE: ServicePrincipal
-          # Infrastructure parameter defaults for pipeline
-          AZURE_ACR_ENABLED: 'false'
-          AZURE_API_MANAGEMENT_ENABLED: 'false'
-          AZURE_AI_CONTENT_SAFETY_ENABLED: 'false'
-          AZURE_AI_DOC_INTELLIGENCE_ENABLED: 'false'
-          AZURE_AI_LANGUAGE_ENABLED: 'false'
-          AZURE_AI_SEARCH_ENABLED: 'true'
-          AZURE_AI_SPEECH_ENABLED: 'false'
-          AZURE_AI_TRANSLATOR_ENABLED: 'false'
-
-          AZURE_AI_VISION_ENABLED: 'false'
-          AZURE_APP_SAMPLE_ENABLED: 'false'
-          AZURE_COSMOS_DB_ENABLED: 'true'
-          AZURE_NETWORK_ISOLATION: 'false'
-          AZURE_SQL_SERVER_ENABLED: 'false'
-          AZURE_AI_DEPLOYMENTS_LOCATION: ${{ vars.AZURE_LOCATION }}
-          AZURE_DEV_COLLECT_TELEMETRY: ${{ vars.AZURE_DEV_COLLECT_TELEMETRY }}
-
-
-      - name: print result
-        run: cat ${{ steps.validation.outputs.resultFile }}
+           AZD_INITIAL_ENVIRONMENT_CONFIG: ${{ secrets.AZD_INITIAL_ENVIRONMENT_CONFIG }}
@@ -2,3 +2,15 @@
 .vs
 .venv
 __pycache__
+
+# Azure Developer CLI (azd)
+.azure/
+
+# Local environment files
+.env
+.env.*
+!.env.example
+
+# Local-only Bicep parameter overrides
+infra/*.local.bicepparam
+infra/*.local.bicepparam.json
@@ -0,0 +1,3 @@
+[submodule "submodules/ai-landing-zone"]
+	path = submodules/ai-landing-zone
+	url = https://github.com/Azure/AI-Landing-Zones.git
@@ -2,6 +2,36 @@
 
 All notable changes to this project will be documented in this file.
 
+## [1.3] - 2025-12-09
+### Added
+- Microsoft Fabric integration with automatic capacity creation and management
+- Microsoft Purview integration for governance and data cataloging
+- OneLake indexing pipeline connecting Fabric lakehouses to AI Search
+- Comprehensive post-provision automation (22 hooks for Fabric/Purview/Search setup)
+- New documentation: `deploy_app_from_foundry.md` for publishing apps from AI Foundry
+- New documentation: `TRANSPARENCY_FAQ.md` for responsible AI transparency
+- New documentation: `NewUserGuide.md` for first-time users
+- Header icons matching GSA standard format
+- Fabric private networking documentation
+
+### Changed
+- README.md restructured to match Microsoft GSA (Global Solution Accelerator) format
+- DeploymentGuide.md consolidated with all deployment options in one place
+- Updated Azure Fabric CLI commands (`az fabric capacity` replaces deprecated `az powerbi embedded-capacity`)
+- Post-provision scripts now validate Fabric capacity state before execution
+- Navigation links use pipe separators matching other GSA repos
+
+### Removed
+- `github_actions_steps.md` (stub placeholder)
+- `github_code_spaces_steps.md` (consolidated into DeploymentGuide.md)
+- `local_environment_steps.md` (consolidated into DeploymentGuide.md)
+- `Dev_ContainerSteps.md` (consolidated into DeploymentGuide.md)
+- `transfer_project_connections.md` (feature deprecated)
+- `sample_app_setup.md` (replaced with `deploy_app_from_foundry.md`)
+- `Verify_Services_On_Network.md` (referenced non-existent script)
+- `add_additional_services.md` (outdated, redundant with PARAMETER_GUIDE.md)
+- `modify_deployed_models.md` (outdated, redundant with PARAMETER_GUIDE.md)
+
 ## [1.2] - 2025-05-13
 ### Added
 - Add new project module leveraging the new cognitive services/projects type