Fix Azure roles resources always redeploying

[eerhardt]

Description

Everytime we check if we need to redeploy an Azure "roles" resource in run mode, we are getting a different CheckSum. This is because we are overwriting the "known parameters" like PrincipalId and PrincipalType with 'null' values, because these values aren't available yet.

The fix is to skip setting those known parameters, like we did in previous versions.

Fix #12651

Checklist

• Is this feature complete?
  • Yes. Ready to ship.
• Are you including unit tests for the changes and scenario tests if relevant?
  • Yes
• Did you add public API?
  • No
• Does the change make any security assumptions or guarantees?
  • No
• Does the change require an update in our Aspire docs?
  • No

[github-actions]

🚀 Dogfood this PR with:

⚠️ WARNING: Do not do this without first carefully reviewing the code of this PR to satisfy yourself it is safe.

curl -fsSL https://raw.githubusercontent.com/dotnet/aspire/main/eng/scripts/get-aspire-cli-pr.sh | bash -s -- 12901

Or

• Run remotely in PowerShell:

iex "& { $(irm https://raw.githubusercontent.com/dotnet/aspire/main/eng/scripts/get-aspire-cli-pr.ps1) } 12901"

[Copilot]

Pull Request Overview

This PR fixes an issue where Azure "roles" resources were being redeployed every time an application runs. The problem occurred because known parameters (like PrincipalId and PrincipalType) were being overwritten with null values during checksum calculation, causing the checksum to change unnecessarily.

Key Changes:

• Added a skipKnownValues parameter to SetParametersAsync to prevent overwriting known parameters with null values
• Modified GetCurrentChecksumAsync to use skipKnownValues: true when calculating checksums
• Added a test to verify known parameters are not overwritten during checksum calculation

Reviewed Changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 3 comments.

File	Description
src/Aspire.Hosting.Azure/Provisioning/BicepUtilities.cs	Introduces skipKnownValues parameter to SetParametersAsync and uses it in GetCurrentChecksumAsync to prevent overwriting known parameters with null values
tests/Aspire.Hosting.Azure.Tests/BicepUtilitiesTests.cs	Adds test to verify known parameters are not overwritten when calculating checksums, ensuring roles resources don't redeploy unnecessarily

[Copilot]

The test creates a parameters JsonObject with direct values, but based on the ARM template parameter format used by SetParametersAsync and expected by GetChecksum, each parameter should be wrapped in a JsonObject with a "value" property.

The parameters should be structured as:

var parameters = new JsonObject
{
    [AzureBicepResource.KnownParameters.PrincipalType] = new JsonObject { ["value"] = "User" },
    [AzureBicepResource.KnownParameters.PrincipalId] = new JsonObject { ["value"] = "1234" }
};

This matches the structure that SetParametersAsync creates (line 45-59 in BicepUtilities.cs) and what GetCurrentChecksumAsync expects when it parses parameters from configuration.

Suggested change

	[AzureBicepResource.KnownParameters.PrincipalType] = "User",
	[AzureBicepResource.KnownParameters.PrincipalId] = "1234"
	[AzureBicepResource.KnownParameters.PrincipalType] = new JsonObject { ["value"] = "User" },
	[AzureBicepResource.KnownParameters.PrincipalId] = new JsonObject { ["value"] = "1234" }

[Copilot]

The return type documentation <returns></returns> is empty and should be removed since this is a Task returning method (equivalent to void). According to the XML documentation guidelines, <returns> tags are only required for methods that return a value (non-void returns).

[davidfowl]

Backport to 13.0

[eerhardt]

/backport to release/13.0

[github-actions]

Started backporting to release/13.0: https://github.com/dotnet/aspire/actions/runs/19275080058

[eerhardt]

/backport to release/13.0

[github-actions]

Started backporting to release/13.0: https://github.com/dotnet/aspire/actions/runs/19276695129