emgarten/azure-iot-central-wfh

Scripts and How To's for getting started with Remote Development on Azure IoT Central

Working Remotely with Azure IoT Central

With the current global health crisis, the way we approach our daily tasks--including work--is changing. I've put together this documentation of how I've managed the transition to remote work in hope that other members of our team can benefit.

If you're an intern reading this: Welcome! We are incredibly excited to have you on board, and, on behalf of the entire IoT Solutions Team, thank you for working with us as we figure out the best way to support you guys from afar.

Goal

Laptops often aren't powerful enough to run our local environment in a developer-friendly way. If you don't have a desktop machine to RDP to (or, as in my case, don't enjoy coding through RDP), this solution allows you to leverage the computing power of an Azure VM, while still enjoying a native development experience.

Guide

Prerequisites

1. Powershell. All the commands on your local machine will be run using powershell.
2. Visual Studio Code.
3. For interns/new hires--make sure you have your access configured, your github account linked appropriately, DockerHub account created, etc. before going through this guide. Work with your manager/mentor to get this all set up correctly.

Set up Visual Studio Enterprise subscription with your MSDN Account

1. Go to the Visual Studio Enterprise Subscription Management Page

2. Login with your Microsoft Work Account (if you're an intern and either have not set this up or are getting Permission Denied, ask your manager)

3. Under "Azure $150 monthly credit" hit "Activate"

   

4. Enter the email of your personal MSDN Account (NOT your work email) and follow the steps.

Create a VM

Next, we are going to provision the guts of our development environment. I have put together a script to do this for you automatically (using Powershell).

1. Install Azure CLI for your operating system by following the instructions here. If you already have Azure CLI, make sure you upgrade to latest.
2. If you are on Windows, make sure you are running PowerShell as Administrator.
3. From your shell, run az login, and follow the prompts to login with your MSDN Account (Not your microsoft account).
4. Clone this repo
5. Open Powershell and navigate to the local directory under this project.
6. Run ./provisionVM.ps1.
7. The subscription name defaults to Visual Studio Enterprise Subscription. If your subscription name is different than that (for example, mine is Visual Studio Enterprise), enter that here.
8. The location defaults to West US, but feel free to change it to something closer to you (the list of valid location values will be listed for your convenience). This will provision your machine and generate all the scripts you'll need to use on the day-to-day in the local/user directory.

Set up your VM to run IoT Central

Okay, great! We have our machine. Next, let's get IoT Central running.

Before we set up our environment, we need to create a Personal Access Token (PAT) on the Azure Dev Ops PAT page. Make sure you are logged in as your Microsoft account.

1. Click "New Token."

1. Name it something like "WFH Machine Token" (just as long as you know what it is).
2. Leave the Organization field alone.
3. If you are an intern, change the Expiration Date to the day AFTER your internship ends.
4. Select "Custom Defined" under scopes.
5. Give the token the following
   1. Code -- Full
   2. Packaging -- Read, Write, and Manage
6. It should look something like this

1. Click "Create."
2. Copy the resulting string, but make sure you protect it like you would your password. It gives the owner access over your account :). Paste it somewhere TEMPORARY, because it will go away, and you won't be able to get it back.

Now that we have our token, let's set up our new machine.

1. Navigate to the local/user folder.
2. Run ./startWFH.ps1

You'll be ssh-ed into your new machine. These next set of instructions will all be on this remote machine.

1. Clone this repo.
2. Navigate to the remote directory.
3. run sh setup.sh
4. When prompted, enter your alias and the PAT you created earlier.
5. If git prompts you for your "password," that will be your PAT as well.
6. Your machine should be configured!
7. Run sudo reboot to finish configuration. This will reboot your remote machine.

This will kill our ssh connection, and we'll now be back on our local machine. Give it a minute, while your machine reboots, and then run ./ssh.ps1 from the user folder. If ssh connects successfully, we're good to move on to the next step. If not, your machine probably hasn't finished rebooting--try again!

1. Finally, run sh run.sh from the remote folder.
2. You'll be prompted to login with docker hub. Do that.
3. You'll be prompted to do a "device login." Just follow the prompt, but make sure you log in with your MICROSOFT ACCOUNT.

This will prompt you to login with docker hub, then will pull all the docker images for our service and run IoT Central on your remote machine. As soon as you see a ton of loading bars for the docker images (there's a lot to download here), go ahead and move on to the next section, and let this run in the background.

Set up remote ssh extension with VSCode

Alright, now our remote machine is almost totally configured, let's get our dev environment set up.

1. Go to the extensions tab in VSCode and search "ssh"

1. Install "Remote - SSH" extension. You'll probably need to reload vscode.
2. Go to the new "Remote Explorer" tab
3. Click the + button.
4. In the prompt enter the following: ssh <alias>@<ip> -A. You public ip is populated in some of the files under the user folder if you don't have it from earlier.
5. Hit Enter.

You should now see your ip pop up under "SSH TARGETS" in the left nav. Right click on it, and select "Connect to Host in New Window."

This will open a VSCode instance that points at your remote machine. wOw.

1. Click "Open Folder" and open "azure-iots-saas" (the IoT Central git repo).

Set up Firefox port proxy

Great, so we have our remote machine set up, and it should be running IoT Central locally. Next, let's see our instance of the app. For this portion of the tutorial, we are going to use Firefox, which I use exclusively for this purpose. In theory, it works with other browsers, too.

1. If you don't have it already, install Firefox.
2. Go to preferences (options on Windows) (Hamburger menu > Preferences (options)).

1. Search "proxy" and click the resulting "Settings."

1. Make your settings look like this:

Cool, that's all we need to do for firefox. Make sure the download script that's running on your remote machine is complete (and didn't fail) before continuing.

Proxy port over ssh

Here's where the magic happens.

1. Go to the user directory and run ./proxy-port.ps1.
2. Go to Firefox and navigate to https://apps.saas.localhost/.
   1. Depending on your Firefox configuration, you might get some warnings. If this is the case, after you tell Firefox it's safe, you'll need to navigate explicitly to https://static.saas.localhost, and tell Firefox this subdomain is safe as well. Then go back and you should see the whole page rendered.
3. You should see IoT Central running there :).

Normal Use

As configured here, your VM will auto-shutdown every day at 7pm PST. So, when you start working in the morning, run startWFH.ps1. This will start your VM and proxy your port on your machine. You can change this auto-shutdown configuration in the Azure Portal or using the CLI. You'll also get an email 30 minutes before shutdown--you can configure this behavior as well.

If you'd like to stop (full shutdown i.e. terminate) your machine, you can use the stopWFH.ps1 script.

If your proxy ever stops working (which can happen from time to time), just run proxy-port.ps1.

Also, for your convenience, you can ssh into your machine using ssh.ps1.

Generally, once you have your machine running, I do everything through VSCode using the Remote SSH Extension. You can open a terminal here as well.

Further Steps

Docker VSCode Extension

I recommend configuring the Docker VSCode extension on your remote machine. There is a known bug where this will not install correctly on your remote machine if you already have it installed on your local instance--to mitigate, remove on local machine, install on remote (VSCode will give you this option once you are remote-ed to your machine), then re-install on local. Once configured correctly, you can manage all the Docker containers on your remote machine from VSCode.

Firefox Proxy Switch

If you don't usually use Firefox, feel free to skip this step. If you do, Firefox will be basically busted because of the proxy configuration (it'll work while your remote machine is running and your proxy is set up, but not otherwise). If you want to easily toggle whether the proxy settings above are enabled, there are extensions for that. Haven't tried them myself but should be relatively straightforward.