Azure Cosmos DB for NoSQL-resources beheren met Bicep
In dit artikel leert u hoe u Bicep gebruikt om uw Azure Cosmos DB-accounts, -databases en -containers te implementeren en te beheren.
Dit artikel bevat Bicep-voorbeelden voor API voor NoSQL-accounts. U vindt ook Bicep-voorbeelden voor Cassandra-, Gremlin-, MongoDB- en Table-API's .
- Accountnamen zijn beperkt tot 44 tekens, allemaal kleine letters.
- Als u de doorvoerwaarden (RU/s) wilt wijzigen, implementeert u het Bicep-bestand opnieuw met bijgewerkte RU/s.
- Wanneer u locaties aan een Azure Cosmos DB-account toevoegt of verwijdert, kunt u andere eigenschappen niet tegelijk wijzigen. Deze bewerkingen moeten afzonderlijk worden uitgevoerd.
- Als u doorvoer wilt inrichten op databaseniveau en wilt delen in alle containers, past u de doorvoerwaarden toe op de eigenschap databaseopties.
Als u een van de onderstaande Azure Cosmos DB-resources wilt maken, kopieert u het volgende voorbeeld naar een nieuw bicep-bestand. U kunt eventueel een parameterbestand maken dat moet worden gebruikt bij het implementeren van meerdere exemplaren van dezelfde resource met verschillende namen en waarden. Er zijn veel manieren om Azure Bicep-bestanden te implementeren, waaronder Azure CLI, Azure PowerShell en Cloud Shell.
Azure Cosmos DB-account met doorvoer voor automatische schaalaanpassing
Maak een Azure Cosmos DB-account in twee regio's met opties voor consistentie en failover, waarbij database en container zijn geconfigureerd voor doorvoer voor automatische schaalaanpassing waarvoor de meeste opties voor indexbeleid zijn ingeschakeld.
@description('Cosmos DB account name, max length 44 characters, lowercase')
param accountName string = 'sql-${uniqueString(resourceGroup().id)}'
@description('Location for the Cosmos DB account.')
param location string = resourceGroup().location
@description('The primary region for the Cosmos DB account.')
param primaryRegion string
@description('The secondary region for the Cosmos DB account.')
param secondaryRegion string
@description('The default consistency level of the Cosmos DB account.')
param defaultConsistencyLevel string = 'Session'
@description('Max stale requests. Required for BoundedStaleness. Valid ranges, Single Region: 10 to 2147483647. Multi Region: 100000 to 2147483647.')
param maxStalenessPrefix int = 100000
@description('Max lag time (minutes). Required for BoundedStaleness. Valid ranges, Single Region: 5 to 84600. Multi Region: 300 to 86400.')
param maxIntervalInSeconds int = 300
@description('Enable system managed failover for regions')
param systemManagedFailover bool = true
@description('The name for the database')
param databaseName string
@description('The name for the container')
param containerName string
@description('Maximum autoscale throughput for the container')
param autoscaleMaxThroughput int = 1000
var consistencyPolicy = {
Eventual: {
defaultConsistencyLevel: 'Eventual'
ConsistentPrefix: {
defaultConsistencyLevel: 'ConsistentPrefix'
Session: {
defaultConsistencyLevel: 'Session'
BoundedStaleness: {
defaultConsistencyLevel: 'BoundedStaleness'
maxStalenessPrefix: maxStalenessPrefix
maxIntervalInSeconds: maxIntervalInSeconds
Strong: {
defaultConsistencyLevel: 'Strong'
var locations = [
locationName: primaryRegion
failoverPriority: 0
isZoneRedundant: false
locationName: secondaryRegion
failoverPriority: 1
isZoneRedundant: false
resource account 'Microsoft.DocumentDB/databaseAccounts@2022-05-15' = {
name: toLower(accountName)
kind: 'GlobalDocumentDB'
location: location
properties: {
consistencyPolicy: consistencyPolicy[defaultConsistencyLevel]
locations: locations
databaseAccountOfferType: 'Standard'
enableAutomaticFailover: systemManagedFailover
resource database 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases@2022-05-15' = {
parent: account
name: databaseName
properties: {
resource: {
id: databaseName
resource container 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers@2022-05-15' = {
parent: database
name: containerName
properties: {
resource: {
id: containerName
partitionKey: {
paths: [
kind: 'Hash'
indexingPolicy: {
indexingMode: 'consistent'
includedPaths: [
path: '/*'
excludedPaths: [
path: '/myPathToNotIndex/*'
path: '/_etag/?'
compositeIndexes: [
path: '/name'
order: 'ascending'
path: '/age'
order: 'descending'
spatialIndexes: [
path: '/path/to/geojson/property/?'
types: [
defaultTtl: 86400
uniqueKeyPolicy: {
uniqueKeys: [
paths: [
options: {
autoscaleSettings: {
maxThroughput: autoscaleMaxThroughput
Azure Cosmos DB-account met analytische opslag
Maak een Azure Cosmos DB-account in één regio met een container waarvoor Analytische TTL is ingeschakeld en opties voor handmatige of automatische schaalaanpassing van doorvoer.
@description('Azure Cosmos DB account name')
param accountName string = 'sql-${uniqueString(resourceGroup().id)}'
@description('Location for the Azure Cosmos DB account.')
param location string = resourceGroup().location
@description('The name for the database')
param databaseName string = 'database1'
@description('The name for the container')
param containerName string = 'container1'
@description('The partition key for the container')
param partitionKeyPath string = '/partitionKey'
@description('The throughput policy for the container')
param throughputPolicy string = 'Autoscale'
@description('Throughput value when using Manual Throughput Policy for the container')
param manualProvisionedThroughput int = 400
@description('Maximum throughput when using Autoscale Throughput Policy for the container')
param autoscaleMaxThroughput int = 1000
@description('Time to Live for data in analytical store. (-1 no expiry)')
param analyticalStoreTTL int = -1
var locations = [
locationName: location
failoverPriority: 0
isZoneRedundant: false
var throughput_Policy = {
Manual: {
throughput: manualProvisionedThroughput
Autoscale: {
autoscaleSettings: {
maxThroughput: autoscaleMaxThroughput
resource account 'Microsoft.DocumentDB/databaseAccounts@2022-05-15' = {
name: toLower(accountName)
location: location
properties: {
consistencyPolicy: {
defaultConsistencyLevel: 'Session'
databaseAccountOfferType: 'Standard'
locations: locations
enableAnalyticalStorage: true
resource database 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases@2022-05-15' = {
parent: account
name: databaseName
properties: {
resource: {
id: databaseName
resource container 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers@2022-05-15' = {
parent: database
name: containerName
properties: {
resource: {
id: containerName
partitionKey: {
paths: [
kind: 'Hash'
analyticalStorageTtl: analyticalStoreTTL
options: throughput_Policy[throughputPolicy]
Azure Cosmos DB-account met standaard ingerichte doorvoer
Maak een Azure Cosmos DB-account in twee regio's met opties voor consistentie en failover, waarbij de database en container zijn geconfigureerd voor standaarddoorvoer waarvoor de meeste beleidsopties zijn ingeschakeld.
@description('Azure Cosmos DB account name, max length 44 characters')
param accountName string = 'sql-${uniqueString(resourceGroup().id)}'
@description('Location for the Azure Cosmos DB account.')
param location string = resourceGroup().location
@description('The primary region for the Azure Cosmos DB account.')
param primaryRegion string
@description('The secondary region for the Azure Cosmos DB account.')
param secondaryRegion string
@description('The default consistency level of the Cosmos DB account.')
param defaultConsistencyLevel string = 'Session'
@description('Max stale requests. Required for BoundedStaleness. Valid ranges, Single Region: 10 to 2147483647. Multi Region: 100000 to 2147483647.')
param maxStalenessPrefix int = 100000
@description('Max lag time (minutes). Required for BoundedStaleness. Valid ranges, Single Region: 5 to 84600. Multi Region: 300 to 86400.')
param maxIntervalInSeconds int = 300
@description('Enable system managed failover for regions')
param systemManagedFailover bool = true
@description('The name for the database')
param databaseName string = 'myDatabase'
@description('The name for the container')
param containerName string = 'myContainer'
@description('The throughput for the container')
param throughput int = 400
var consistencyPolicy = {
Eventual: {
defaultConsistencyLevel: 'Eventual'
ConsistentPrefix: {
defaultConsistencyLevel: 'ConsistentPrefix'
Session: {
defaultConsistencyLevel: 'Session'
BoundedStaleness: {
defaultConsistencyLevel: 'BoundedStaleness'
maxStalenessPrefix: maxStalenessPrefix
maxIntervalInSeconds: maxIntervalInSeconds
Strong: {
defaultConsistencyLevel: 'Strong'
var locations = [
locationName: primaryRegion
failoverPriority: 0
isZoneRedundant: false
locationName: secondaryRegion
failoverPriority: 1
isZoneRedundant: false
resource account 'Microsoft.DocumentDB/databaseAccounts@2024-02-15-preview' = {
name: toLower(accountName)
location: location
kind: 'GlobalDocumentDB'
properties: {
consistencyPolicy: consistencyPolicy[defaultConsistencyLevel]
locations: locations
databaseAccountOfferType: 'Standard'
enableAutomaticFailover: systemManagedFailover
disableKeyBasedMetadataWriteAccess: true
resource database 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases@2024-02-15-preview' = {
parent: account
name: databaseName
properties: {
resource: {
id: databaseName
resource container 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers@2024-02-15-preview' = {
parent: database
name: containerName
properties: {
resource: {
id: containerName
partitionKey: {
paths: [
kind: 'Hash'
indexingPolicy: {
indexingMode: 'consistent'
includedPaths: [
path: '/*'
excludedPaths: [
path: '/myPathToNotIndex/*'
path: '/_etag/?'
compositeIndexes: [
path: '/name'
order: 'ascending'
path: '/age'
order: 'descending'
spatialIndexes: [
path: '/location/*'
types: [
defaultTtl: 86400
uniqueKeyPolicy: {
uniqueKeys: [
paths: [
options: {
throughput: throughput
output location string = location
output name string =
output resourceGroupName string = resourceGroup().name
output resourceId string =
Azure Cosmos DB-container met functionaliteit aan de serverzijde
Maak een Azure Cosmos DB-account, -database en -container met een opgeslagen procedure, trigger en door de gebruiker gedefinieerde functie.
@description('Cosmos DB account name')
param accountName string = 'sql-${uniqueString(resourceGroup().id)}'
@description('Location for the Cosmos DB account.')
param location string = resourceGroup().location
@description('The primary region for the Cosmos DB account.')
param primaryRegion string
@description('The default consistency level of the Cosmos DB account.')
param defaultConsistencyLevel string = 'Session'
@description('Max stale requests. Required for BoundedStaleness. Valid ranges, Single Region: 10 to 2147483647. Multi Region: 100000 to 2147483647.')
param maxStalenessPrefix int = 100000
@description('Max lag time (seconds). Required for BoundedStaleness. Valid ranges, Single Region: 5 to 84600. Multi Region: 300 to 86400.')
param maxIntervalInSeconds int = 300
@description('Enable system managed failover for regions')
param systemManagedFailover bool = true
@description('The name for the database')
param databaseName string = 'database1'
@description('The name for the container')
param containerName string = 'container1'
@description('The throughput for the container')
param throughput int = 400
var consistencyPolicy = {
Eventual: {
defaultConsistencyLevel: 'Eventual'
ConsistentPrefix: {
defaultConsistencyLevel: 'ConsistentPrefix'
Session: {
defaultConsistencyLevel: 'Session'
BoundedStaleness: {
defaultConsistencyLevel: 'BoundedStaleness'
maxStalenessPrefix: maxStalenessPrefix
maxIntervalInSeconds: maxIntervalInSeconds
Strong: {
defaultConsistencyLevel: 'Strong'
var locations = [
locationName: primaryRegion
failoverPriority: 0
isZoneRedundant: false
resource account 'Microsoft.DocumentDB/databaseAccounts@2022-05-15' = {
name: toLower(accountName)
location: location
kind: 'GlobalDocumentDB'
properties: {
consistencyPolicy: consistencyPolicy[defaultConsistencyLevel]
locations: locations
databaseAccountOfferType: 'Standard'
enableAutomaticFailover: systemManagedFailover
resource database 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases@2022-05-15' = {
parent: account
name: databaseName
properties: {
resource: {
id: databaseName
resource container 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers@2022-05-15' = {
parent: database
name: containerName
properties: {
resource: {
id: containerName
partitionKey: {
paths: [
kind: 'Hash'
indexingPolicy: {
indexingMode: 'consistent'
includedPaths: [
path: '/*'
excludedPaths: [
path: '/_etag/?'
options: {
throughput: throughput
resource storedProcedure 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers/storedProcedures@2022-05-15' = {
parent: container
name: 'myStoredProcedure'
properties: {
resource: {
id: 'myStoredProcedure'
body: 'function () { var context = getContext(); var response = context.getResponse(); response.setBody(\'Hello, World\'); }'
resource trigger 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers/triggers@2022-05-15' = {
parent: container
name: 'myPreTrigger'
properties: {
resource: {
id: 'myPreTrigger'
triggerType: 'Pre'
triggerOperation: 'Create'
body: 'function validateToDoItemTimestamp(){var context=getContext();var request=context.getRequest();var itemToCreate=request.getBody();if(!(\'timestamp\'in itemToCreate)){var ts=new Date();itemToCreate[\'timestamp\']=ts.getTime();}request.setBody(itemToCreate);}'
resource userDefinedFunction 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers/userDefinedFunctions@2022-05-15' = {
parent: container
name: 'myUserDefinedFunction'
properties: {
resource: {
id: 'myUserDefinedFunction'
body: 'function tax(income){if(income==undefined)throw\'no input\';if(income<1000)return income*0.1;else if(income<10000)return income*0.2;else return income*0.4;}'
Azure Cosmos DB-account met Microsoft Entra-id en RBAC
Maak een Azure Cosmos DB-account, een systeemeigen onderhouden roldefinitie en een systeemeigen onderhouden roltoewijzing voor een Microsoft Entra-identiteit.
@description('Location for all resources.')
param location string = resourceGroup().location
@description('Cosmos DB account name, max length 44 characters')
param accountName string = toLower('sql-rbac-${uniqueString(resourceGroup().id)}')
@description('Friendly name for the SQL Role Definition')
param roleDefinitionName string = 'My Read Write Role'
@description('Data actions permitted by the Role Definition')
param dataActions array = [
@description('Object ID of the AAD identity. Must be a GUID.')
param principalId string
var locations = [
locationName: location
failoverPriority: 0
isZoneRedundant: false
var roleDefinitionId = guid('sql-role-definition-', principalId,
var roleAssignmentId = guid(roleDefinitionId, principalId,
resource databaseAccount 'Microsoft.DocumentDB/databaseAccounts@2024-11-15' = {
name: accountName
kind: 'GlobalDocumentDB'
location: location
properties: {
consistencyPolicy: {
defaultConsistencyLevel: 'Session'
locations: locations
databaseAccountOfferType: 'Standard'
enableAutomaticFailover: false
enableMultipleWriteLocations: false
resource sqlRoleDefinition 'Microsoft.DocumentDB/databaseAccounts/sqlRoleDefinitions@2024-11-15' = {
parent: databaseAccount
name: roleDefinitionId
properties: {
roleName: roleDefinitionName
type: 'CustomRole'
assignableScopes: [
permissions: [
dataActions: dataActions
resource sqlRoleAssignment 'Microsoft.DocumentDB/databaseAccounts/sqlRoleAssignments@2024-11-15' = {
parent: databaseAccount
name: roleAssignmentId
properties: {
principalId: principalId
Gratis Laag Azure Cosmos DB-account
Maak een gratis Azure Cosmos DB-account en een database met gedeelde doorvoer die kan worden gedeeld met maximaal 25 containers.
@description('Cosmos DB account name')
param accountName string = 'cosmos-${uniqueString(resourceGroup().id)}'
@description('Location for the Cosmos DB account.')
param location string = resourceGroup().location
@description('The name for the SQL API database')
param databaseName string
@description('The name for the SQL API container')
param containerName string
resource account 'Microsoft.DocumentDB/databaseAccounts@2023-11-15' = {
name: toLower(accountName)
location: location
properties: {
enableFreeTier: true
databaseAccountOfferType: 'Standard'
consistencyPolicy: {
defaultConsistencyLevel: 'Session'
locations: [
locationName: location
resource database 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases@2023-11-15' = {
parent: account
name: databaseName
properties: {
resource: {
id: databaseName
options: {
throughput: 1000
resource container 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers@2023-11-15' = {
parent: database
name: containerName
properties: {
resource: {
id: containerName
partitionKey: {
paths: [
kind: 'Hash'
indexingPolicy: {
indexingMode: 'consistent'
includedPaths: [
path: '/*'
excludedPaths: [
path: '/_etag/?'
output location string = location
output name string =
output resourceGroupName string = resourceGroup().name
output resourceId string =
Volgende stappen
Hier volgen enkele aanvullende bronnen: