title Cloud Access

actor "App\nDeveloper" as Dev
actor "Team SRE" as User
actor "Cloud Admin" as CloudAdmin
entity "Azure\nnative API" as AzureAPI
control "federated\nkube-apiserver" as KubeBootstrap

database AKS

User->CloudAdmin: new st/KUBEACCSS
activate User
CloudAdmin->AzureAPI:new subsription
CloudAdmin->AzureAPI: IDM/AD roles
CloudAdmin->KubeBootstrap: k apply -f AKS.yaml
activate CloudAdmin
KubeBootstrap->AzureAPI:CreateAKS
activate AzureAPI
AzureAPI-->KubeBootstrap:Done
deactivate AzureAPI
KubeBootstrap->AKS:k apply -f ASO.yaml
activate AKS
AKS-->KubeBootstrap:ready:True
deactivate AKS
KubeBootstrap-->CloudAdmin:ready:True
deactivate CloudAdmin
CloudAdmin-->User:Done
deactivate User
note over CloudAdmin,User:Setup instructions to access AKS
User->Dev:Instructions
Dev->AKS:k apply -f application.yaml
