Skip to content

feat(finops-hub): Add sovereign cloud DNS suffix support#2081

Merged
MSBrett merged 3 commits into
devfrom
features/sovereign-dns-suffixes
May 12, 2026
Merged

feat(finops-hub): Add sovereign cloud DNS suffix support#2081
MSBrett merged 3 commits into
devfrom
features/sovereign-dns-suffixes

Conversation

@MSBrett
Copy link
Copy Markdown
Contributor

@MSBrett MSBrett commented Apr 6, 2026

Summary

Fixes sovereign cloud DNS suffix handling in FinOps Hubs. Scoped down from #2072 per review feedback.

Changes

  • Kusto DNS suffix: Replace hardcoded .kusto.windows.net with an environment-aware lookup map covering AzureCloud, AzureUSGovernment, and AzureChinaCloud, with a replace() fallback heuristic for unknown clouds.
  • China ADX fix: Correct China ADX DNS suffix from kusto.chinacloudapi.cn to kusto.windows.cn (verified against Private Link DNS zone docs).
  • Storage URL validation: Update createUiDefinition.json regex to accept sovereign cloud storage suffixes (not just .windows.net).
  • Bug fix: Fix gitapp.hub.com typo in ADF linked service URL → github.com.
  • Changelog: Add Microsoft Sovereign Cloud entries under FinOps hubs v14.

What was removed vs #2072

Per flanakin's review, the following were reverted and will be addressed in follow-up issues:

  • openDataBaseUrl parameter (needs design for blob auth, copy mechanism, refresh lifecycle)
  • Dashboard portal URL tokenization (needs holistic distribution story)
  • deploy-sovereign.md (sovereign deployment should not need a separate doc)

Testing

  • Bicep compiles clean
  • All DNS suffix claims verified against Azure Private Link DNS zone docs
  • No hardcoded .kusto.windows.net in changed files
  • ❎ Log not needed

feat(finops-hub): Add sovereign cloud DNS suffix support
e03a092 
- Add environment-aware Kusto DNS suffix lookup map covering
  AzureCloud, AzureUSGovernment, and AzureChinaCloud with
  replace() fallback heuristic for unknown clouds
- Fix incorrect Azure China ADX DNS suffix
  (kusto.chinacloudapi.cn → kusto.windows.cn)
- Fix createUiDefinition.json storage URL validation regex
  to accept sovereign cloud storage suffixes
- Fix gitapp.hub.com typo in ADF linked service URL

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@MSBrett MSBrett added this to the v14 milestone Apr 6, 2026
@MSBrett MSBrett self-assigned this Apr 6, 2026
@microsoft-github-policy-service microsoft-github-policy-service Bot added the Needs: Review 👀 PR that is ready to be reviewed label Apr 6, 2026
chore: Update ms.date in changelog
3e78cd4 
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@RolandKrummenacher RolandKrummenacher modified the milestones: v14, v15 Apr 8, 2026
merge: merge dev into sovereign DNS branch
cebdaee 
Resolve the changelog merge conflict, keep the current v14 release notes, and preserve the sovereign cloud DNS entries under PR #2081.

Also use the deployed Data Explorer cluster resource name for the managed private endpoint FQDN source expression.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@MSBrett MSBrett merged commit 6567c6c into dev May 12, 2026
7 checks passed
@flanakin flanakin deleted the features/sovereign-dns-suffixes branch May 15, 2026 10:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@RolandKrummenacher RolandKrummenacher RolandKrummenacher approved these changes

@flanakin flanakin Awaiting requested review from flanakin flanakin is a code owner

Assignees

@MSBrett MSBrett

Labels

Needs: Review 👀 PR that is ready to be reviewed

Projects

None yet

Milestone

v15

Development

Successfully merging this pull request may close these issues.

2 participants

@MSBrett @RolandKrummenacher