Управление ресурсами Azure Cosmos DB для NoSQL с помощью Bicep


Из этой статьи вы узнаете, как с помощью Bicep развертывать учетные записи, базы данных, графы и контейнеры в Azure Cosmos DB и управлять ими.

В этой статье показаны примеры Bicep для учетных записей API для NoSQL. Кроме того, можно найти примеры Bicep для API Cassandra, Gremlin, MongoDB и таблиц.


  • Длина имен учетных записей ограничена 44 символами (только строчные буквы).
  • Чтобы изменить значения пропускной способности (единиц запроса в секунду), повторно разверните файл Bicep с обновленным значением ЕЗ/с.
  • При добавлении или удалении расположений в учетную запись Azure Cosmos DB нельзя одновременно изменять другие свойства. Эти операции должны выполняться отдельно.
  • Чтобы подготовить пропускную способность на уровне базы данных и предоставить ее всем контейнерам, примените значения пропускной способности к свойству параметров базы данных.

Чтобы создать любой из перечисленных ниже ресурсов Azure Cosmos DB, скопируйте следующий пример в новый файл Bicep. При необходимости можно создать файл параметров, который будет использоваться при развертывании нескольких экземпляров одного и того же ресурса с разными именами и значениями. Файлы Azure Bicep можно развертывать множеством способов, в том числе с помощью Azure CLI, Azure PowerShell и Cloud Shell.

Учетная запись Azure Cosmos DB с пропускной способностью автомасштабирования

Создайте учетную запись Azure Cosmos DB в двух регионах с параметрами согласованности и отработки отказа с базой данных и контейнером, настроенными для автомасштабирования пропускной способности, включающей большинство параметров политики индекса.

@description('Cosmos DB account name, max length 44 characters, lowercase')
param accountName string = 'sql-${uniqueString(resourceGroup().id)}'

@description('Location for the Cosmos DB account.')
param location string = resourceGroup().location

@description('The primary region for the Cosmos DB account.')
param primaryRegion string

@description('The secondary region for the Cosmos DB account.')
param secondaryRegion string

@description('The default consistency level of the Cosmos DB account.')
param defaultConsistencyLevel string = 'Session'

@description('Max stale requests. Required for BoundedStaleness. Valid ranges, Single Region: 10 to 2147483647. Multi Region: 100000 to 2147483647.')
param maxStalenessPrefix int = 100000

@description('Max lag time (minutes). Required for BoundedStaleness. Valid ranges, Single Region: 5 to 84600. Multi Region: 300 to 86400.')
param maxIntervalInSeconds int = 300

@description('Enable system managed failover for regions')
param systemManagedFailover bool = true

@description('The name for the database')
param databaseName string

@description('The name for the container')
param containerName string

@description('Maximum autoscale throughput for the container')
param autoscaleMaxThroughput int = 1000

var consistencyPolicy = {
  Eventual: {
    defaultConsistencyLevel: 'Eventual'
  ConsistentPrefix: {
    defaultConsistencyLevel: 'ConsistentPrefix'
  Session: {
    defaultConsistencyLevel: 'Session'
  BoundedStaleness: {
    defaultConsistencyLevel: 'BoundedStaleness'
    maxStalenessPrefix: maxStalenessPrefix
    maxIntervalInSeconds: maxIntervalInSeconds
  Strong: {
    defaultConsistencyLevel: 'Strong'
var locations = [
    locationName: primaryRegion
    failoverPriority: 0
    isZoneRedundant: false
    locationName: secondaryRegion
    failoverPriority: 1
    isZoneRedundant: false

resource account 'Microsoft.DocumentDB/databaseAccounts@2022-05-15' = {
  name: toLower(accountName)
  kind: 'GlobalDocumentDB'
  location: location
  properties: {
    consistencyPolicy: consistencyPolicy[defaultConsistencyLevel]
    locations: locations
    databaseAccountOfferType: 'Standard'
    enableAutomaticFailover: systemManagedFailover

resource database 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases@2022-05-15' = {
  parent: account
  name: databaseName
  properties: {
    resource: {
      id: databaseName

resource container 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers@2022-05-15' = {
  parent: database
  name: containerName
  properties: {
    resource: {
      id: containerName
      partitionKey: {
        paths: [
        kind: 'Hash'
      indexingPolicy: {
        indexingMode: 'consistent'
        includedPaths: [
            path: '/*'
        excludedPaths: [
            path: '/myPathToNotIndex/*'
            path: '/_etag/?'
        compositeIndexes: [
              path: '/name'
              order: 'ascending'
              path: '/age'
              order: 'descending'
        spatialIndexes: [
            path: '/path/to/geojson/property/?'
            types: [
      defaultTtl: 86400
      uniqueKeyPolicy: {
        uniqueKeys: [
            paths: [
    options: {
      autoscaleSettings: {
        maxThroughput: autoscaleMaxThroughput

Учетная запись Azure Cosmos DB с аналитическим хранилищем

Создайте учетную запись Azure Cosmos DB в одном регионе с контейнером с включенным аналитическим TTL и параметрами для ручной или автомасштабируемой пропускной способности.

@description('Azure Cosmos DB account name')
param accountName string = 'sql-${uniqueString(resourceGroup().id)}'

@description('Location for the Azure Cosmos DB account.')
param location string = resourceGroup().location

@description('The name for the database')
param databaseName string = 'database1'

@description('The name for the container')
param containerName string = 'container1'

@description('The partition key for the container')
param partitionKeyPath string = '/partitionKey'

@description('The throughput policy for the container')
param throughputPolicy string = 'Autoscale'

@description('Throughput value when using Manual Throughput Policy for the container')
param manualProvisionedThroughput int = 400

@description('Maximum throughput when using Autoscale Throughput Policy for the container')
param autoscaleMaxThroughput int = 1000

@description('Time to Live for data in analytical store. (-1 no expiry)')
param analyticalStoreTTL int = -1

var locations = [
    locationName: location
    failoverPriority: 0
    isZoneRedundant: false
var throughput_Policy = {
  Manual: {
    throughput: manualProvisionedThroughput
  Autoscale: {
    autoscaleSettings: {
      maxThroughput: autoscaleMaxThroughput

resource account 'Microsoft.DocumentDB/databaseAccounts@2022-05-15' = {
  name: toLower(accountName)
  location: location
  properties: {
    consistencyPolicy: {
      defaultConsistencyLevel: 'Session'
    databaseAccountOfferType: 'Standard'
    locations: locations
    enableAnalyticalStorage: true

resource database 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases@2022-05-15' = {
  parent: account
  name: databaseName
  properties: {
    resource: {
      id: databaseName

resource container 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers@2022-05-15' = {
  parent: database
  name: containerName
  properties: {
    resource: {
      id: containerName
      partitionKey: {
        paths: [
        kind: 'Hash'
      analyticalStorageTtl: analyticalStoreTTL
    options: throughput_Policy[throughputPolicy]

Учетная запись Azure Cosmos DB со стандартной подготовленной пропускной способностью

Создайте учетную запись Azure Cosmos DB в двух регионах с параметрами согласованности и отработки отказа с базой данных и контейнером, настроенными для стандартной пропускной способности, которая включает большинство параметров политики.

@description('Azure Cosmos DB account name, max length 44 characters')
param accountName string = 'sql-${uniqueString(resourceGroup().id)}'

@description('Location for the Azure Cosmos DB account.')
param location string = resourceGroup().location

@description('The primary region for the Azure Cosmos DB account.')
param primaryRegion string

@description('The secondary region for the Azure Cosmos DB account.')
param secondaryRegion string

@description('The default consistency level of the Cosmos DB account.')
param defaultConsistencyLevel string = 'Session'

@description('Max stale requests. Required for BoundedStaleness. Valid ranges, Single Region: 10 to 2147483647. Multi Region: 100000 to 2147483647.')
param maxStalenessPrefix int = 100000

@description('Max lag time (minutes). Required for BoundedStaleness. Valid ranges, Single Region: 5 to 84600. Multi Region: 300 to 86400.')
param maxIntervalInSeconds int = 300

@description('Enable system managed failover for regions')
param systemManagedFailover bool = true

@description('The name for the database')
param databaseName string = 'myDatabase'

@description('The name for the container')
param containerName string = 'myContainer'

@description('The throughput for the container')
param throughput int = 400

var consistencyPolicy = {
  Eventual: {
    defaultConsistencyLevel: 'Eventual'
  ConsistentPrefix: {
    defaultConsistencyLevel: 'ConsistentPrefix'
  Session: {
    defaultConsistencyLevel: 'Session'
  BoundedStaleness: {
    defaultConsistencyLevel: 'BoundedStaleness'
    maxStalenessPrefix: maxStalenessPrefix
    maxIntervalInSeconds: maxIntervalInSeconds
  Strong: {
    defaultConsistencyLevel: 'Strong'
var locations = [
    locationName: primaryRegion
    failoverPriority: 0
    isZoneRedundant: false
    locationName: secondaryRegion
    failoverPriority: 1
    isZoneRedundant: false

resource account 'Microsoft.DocumentDB/databaseAccounts@2024-02-15-preview' = {
  name: toLower(accountName)
  location: location
  kind: 'GlobalDocumentDB'
  properties: {
    consistencyPolicy: consistencyPolicy[defaultConsistencyLevel]
    locations: locations
    databaseAccountOfferType: 'Standard'
    enableAutomaticFailover: systemManagedFailover
    disableKeyBasedMetadataWriteAccess: true

resource database 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases@2024-02-15-preview' = {
  parent: account
  name: databaseName
  properties: {
    resource: {
      id: databaseName

resource container 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers@2024-02-15-preview' = {
  parent: database
  name: containerName
  properties: {
    resource: {
      id: containerName
      partitionKey: {
        paths: [
        kind: 'Hash'
      indexingPolicy: {
        indexingMode: 'consistent'
        includedPaths: [
            path: '/*'
        excludedPaths: [
            path: '/myPathToNotIndex/*'
            path: '/_etag/?'
        compositeIndexes: [
              path: '/name'
              order: 'ascending'
              path: '/age'
              order: 'descending'
        spatialIndexes: [
            path: '/location/*'
            types: [
      defaultTtl: 86400
      uniqueKeyPolicy: {
        uniqueKeys: [
            paths: [
    options: {
      throughput: throughput

output location string = location
output name string = database.name
output resourceGroupName string = resourceGroup().name
output resourceId string = database.id

Контейнер Azure Cosmos DB с функциональностью на стороне сервера

Создайте учетную запись Azure Cosmos DB, базу данных и контейнер с хранимой процедурой, триггером и определяемой пользователем функцией.

@description('Cosmos DB account name')
param accountName string = 'sql-${uniqueString(resourceGroup().id)}'

@description('Location for the Cosmos DB account.')
param location string = resourceGroup().location

@description('The primary region for the Cosmos DB account.')
param primaryRegion string

@description('The default consistency level of the Cosmos DB account.')
param defaultConsistencyLevel string = 'Session'

@description('Max stale requests. Required for BoundedStaleness. Valid ranges, Single Region: 10 to 2147483647. Multi Region: 100000 to 2147483647.')
param maxStalenessPrefix int = 100000

@description('Max lag time (seconds). Required for BoundedStaleness. Valid ranges, Single Region: 5 to 84600. Multi Region: 300 to 86400.')
param maxIntervalInSeconds int = 300

@description('Enable system managed failover for regions')
param systemManagedFailover bool = true

@description('The name for the database')
param databaseName string = 'database1'

@description('The name for the container')
param containerName string = 'container1'

@description('The throughput for the container')
param throughput int = 400

var consistencyPolicy = {
  Eventual: {
    defaultConsistencyLevel: 'Eventual'
  ConsistentPrefix: {
    defaultConsistencyLevel: 'ConsistentPrefix'
  Session: {
    defaultConsistencyLevel: 'Session'
  BoundedStaleness: {
    defaultConsistencyLevel: 'BoundedStaleness'
    maxStalenessPrefix: maxStalenessPrefix
    maxIntervalInSeconds: maxIntervalInSeconds
  Strong: {
    defaultConsistencyLevel: 'Strong'
var locations = [
    locationName: primaryRegion
    failoverPriority: 0
    isZoneRedundant: false

resource account 'Microsoft.DocumentDB/databaseAccounts@2022-05-15' = {
  name: toLower(accountName)
  location: location
  kind: 'GlobalDocumentDB'
  properties: {
    consistencyPolicy: consistencyPolicy[defaultConsistencyLevel]
    locations: locations
    databaseAccountOfferType: 'Standard'
    enableAutomaticFailover: systemManagedFailover

resource database 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases@2022-05-15' = {
  parent: account
  name: databaseName
  properties: {
    resource: {
      id: databaseName

resource container 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers@2022-05-15' = {
  parent: database
  name: containerName
  properties: {
    resource: {
      id: containerName
      partitionKey: {
        paths: [
        kind: 'Hash'
      indexingPolicy: {
        indexingMode: 'consistent'
        includedPaths: [
            path: '/*'
        excludedPaths: [
            path: '/_etag/?'
    options: {
      throughput: throughput

resource storedProcedure 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers/storedProcedures@2022-05-15' = {
  parent: container
  name: 'myStoredProcedure'
  properties: {
    resource: {
      id: 'myStoredProcedure'
      body: 'function () { var context = getContext(); var response = context.getResponse(); response.setBody(\'Hello, World\'); }'

resource trigger 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers/triggers@2022-05-15' = {
  parent: container
  name: 'myPreTrigger'
  properties: {
    resource: {
      id: 'myPreTrigger'
      triggerType: 'Pre'
      triggerOperation: 'Create'
      body: 'function validateToDoItemTimestamp(){var context=getContext();var request=context.getRequest();var itemToCreate=request.getBody();if(!(\'timestamp\'in itemToCreate)){var ts=new Date();itemToCreate[\'timestamp\']=ts.getTime();}request.setBody(itemToCreate);}'

resource userDefinedFunction 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers/userDefinedFunctions@2022-05-15' = {
  parent: container
  name: 'myUserDefinedFunction'
  properties: {
    resource: {
      id: 'myUserDefinedFunction'
      body: 'function tax(income){if(income==undefined)throw\'no input\';if(income<1000)return income*0.1;else if(income<10000)return income*0.2;else return income*0.4;}'

Учетная запись Azure Cosmos DB с идентификатором Microsoft Entra и RBAC

Создайте учетную запись Azure Cosmos DB, собственное определение роли и собственное назначение ролей для удостоверения Microsoft Entra.

@description('Location for all resources.')
param location string = resourceGroup().location

@description('Cosmos DB account name, max length 44 characters')
param accountName string = toLower('sql-rbac-${uniqueString(resourceGroup().id)}')

@description('Friendly name for the SQL Role Definition')
param roleDefinitionName string = 'My Read Write Role'

@description('Data actions permitted by the Role Definition')
param dataActions array = [

@description('Object ID of the AAD identity. Must be a GUID.')
param principalId string

var locations = [
    locationName: location
    failoverPriority: 0
    isZoneRedundant: false
var roleDefinitionId = guid('sql-role-definition-', principalId, databaseAccount.id)
var roleAssignmentId = guid(roleDefinitionId, principalId, databaseAccount.id)

resource databaseAccount 'Microsoft.DocumentDB/databaseAccounts@2024-11-15' = {
  name: accountName
  kind: 'GlobalDocumentDB'
  location: location
  properties: {
    consistencyPolicy: {
      defaultConsistencyLevel: 'Session'
    locations: locations
    databaseAccountOfferType: 'Standard'
    enableAutomaticFailover: false
    enableMultipleWriteLocations: false

resource sqlRoleDefinition 'Microsoft.DocumentDB/databaseAccounts/sqlRoleDefinitions@2024-11-15' = {
  parent: databaseAccount
  name: roleDefinitionId
  properties: {
    roleName: roleDefinitionName
    type: 'CustomRole'
    assignableScopes: [
    permissions: [
        dataActions: dataActions

resource sqlRoleAssignment 'Microsoft.DocumentDB/databaseAccounts/sqlRoleAssignments@2024-11-15' = {
  parent: databaseAccount
  name: roleAssignmentId
  properties: {
    roleDefinitionId: sqlRoleDefinition.id
    principalId: principalId
    scope: databaseAccount.id

Учетная запись Azure Cosmos DB уровня "Бесплатный"

Создайте бесплатную учетную запись Azure Cosmos DB и базу данных с общей пропускной способностью, которую можно предоставить до 25 контейнеров.

@description('Cosmos DB account name')
param accountName string = 'cosmos-${uniqueString(resourceGroup().id)}'

@description('Location for the Cosmos DB account.')
param location string = resourceGroup().location

@description('The name for the SQL API database')
param databaseName string

@description('The name for the SQL API container')
param containerName string

resource account 'Microsoft.DocumentDB/databaseAccounts@2023-11-15' = {
  name: toLower(accountName)
  location: location
  properties: {
    enableFreeTier: true
    databaseAccountOfferType: 'Standard'
    consistencyPolicy: {
      defaultConsistencyLevel: 'Session'
    locations: [
        locationName: location

resource database 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases@2023-11-15' = {
  parent: account
  name: databaseName
  properties: {
    resource: {
      id: databaseName
    options: {
      throughput: 1000

resource container 'Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers@2023-11-15' = {
  parent: database
  name: containerName
  properties: {
    resource: {
      id: containerName
      partitionKey: {
        paths: [
        kind: 'Hash'
      indexingPolicy: {
        indexingMode: 'consistent'
        includedPaths: [
            path: '/*'
        excludedPaths: [
            path: '/_etag/?'

output location string = location
output name string = container.name
output resourceGroupName string = resourceGroup().name
output resourceId string = container.id

Следующие шаги

