This project creates a backend that can use OpenAI chat models that support the function calling ability to answer questions about your Azure SQL Database. It does this by first identifying if the user query is asking about an internal data source (in this case, it is Azure SQL), if it does, then the application generates a SQL query from the users prompt, connects to the database via user assigned manage identity, executes that query, and relates it back to the user in JSON Format. The flow of this application can be seen using the below diagram.
This project is designed for deployment via the Azure Developer CLI, hosting the backend on Azure Web Apps, the database being Azure SQL, and the models that support function calling in Azure OpenAI. This demo leverges the "AdventureWorks" Sample Database.
- Conversion of user queries into Azure SQL that can be executed
- Generate results from your internal Azure SQL database based on user queries
- Enforce only read queries to the database
- Ask questions like "What are the top 3 products we have?", "What is the cost associated with product HL Road Frame - Black, 58?" , "How many red products do we have?" & more!
This project leverages GPT-4o to generate the SQL query for the database. The model has contextual understanding of the SalesLT.Customer
& SalesLT.Product
tables. This is done by injecting the schema information of these tables as part of the prompt.
To have more understanding of the tables contents. Please login to your Azure SQL Database, and look through these tables.
Note
Further developments of this repository will include automatic schema detections for accessible tables in the Azure SQL Database
You can run this template virtually by using GitHub Codespaces. The button will open a web-based VS Code instance in your browser:
-
Open the template (this may take several minutes):
-
Open a terminal window
-
Continue with the deployment steps
A related option is VS Code Dev Containers, which will open the project in your local VS Code using the Dev Containers extension:
-
Start Docker Desktop (install it if not already installed)
-
Open the project:
-
In the VS Code window that opens, once the project files show up (this may take several minutes), open a terminal window.
-
Continue with the deployment steps
-
Make sure the following tools are installed:
-
Clone the repository to your local machine
-
Open the project folder
-
Create a Python virtual environment and activate it.
-
Install required Python packages and backend application:
pip install -r requirements-dev.txt pip install -e app
-
Continue with the deployment steps below.
Once you've opened the project, you can deploy it to Azure.
-
Sign in to your Azure account:
azd auth login
If you have any issues with that command, you may also want to try
azd auth login --use-device-code
. -
Create a new azd environment:
azd env new
This will create a folder under
.azure/
in your project to store the configuration for this deployment. You may have multiple azd environments if desired.You will be asked to select the location of which the resource will be provisioned. You will have the option between 3 options due to model availability.
-
Configure your environment variables that will be used for deployment:
[!IMPORTANT] This project code uses passwordless authentication with the Azure SQL server, but it doesn't currently turn off SQL password auth entirely, due to an issue with Bicep-based deployments. The username is set to a unique string, and the password is set to an auto-generated value. Once deployed, you can disable SQL password auth via the Azure portal.
For the passwordless authentication to be properly set up, you must set the principal name of the external administrator (UPN). If you need help finding this value, please login with the Azure CLI, add an .env file to the root directory and run the script: ./scripts/fetch-principal-info.sh or ./scripts/fetch-principal-info.ps1. The values should appear in the terminal and in the
.env
file in the root directory.Once you know your principal name, set it as an azd environment variable:
azd env set AZURE_PRINCIPAL_NAME yourprincipalname
-
Deploy the resources:
azd up
Note
If you are running this project via Github Codespaces. You may encounter an error during the post provisioning step.
If this occurs, please run the following command sudo apt --fix-broken install
If you wish to deploy this project via Github Actions, you will find a working azure-dev.yaml file in the .github\workflows. More information on the limitations and workarounds for using this deployment method can be found in the /docs
After all the resources have been provisioned and the deployment is complete, head to the endpoint the App Service created. You will be directed to a root entry point for the backend.
To test the APIs, please add docs
to the end of the url.
Note
For example, if your endpoint is: https://testing-function-call-demo-example-webapp.azurewebsites.net
To test the endpoint, you must add docs
at the end of this url, so the new url would be:
https://testing-function-call-demo-example-webapp.azurewebsites.net/docs
Use the Swagger UI to explore and test the available APIs.
You will have the ability to test 2 APIs:
execute_query
API which will take as input, a SQL command to execute on the Azure SQL Database.ask
API which will take a user message, convert it to a SQL Command using OpenAI, and execute the query against the database which will return the result in JSON format.
Pricing may vary per region and usage. Exact costs cannot be estimated. You may try the Azure pricing calculator for the resources below:
- Azure Web Apps: costs are based on the CPU, memory and storage resources you use. You can set the appServiceSkuName parameter in the main.parameters.json file to the sku of your choosing. Additional features like custom domains, SSL certificates and backups may incur additional charges.Pricing
- Azure OpenAI: Standard tier, GPT and Ada models. Pricing per 1K tokens used, and at least 1K tokens are used per question. Pricing
- Azure SQL: This project leverage the “General Purpose - Serverless: Gen5, 1 vCore” sku with the adventureworks database. The cost depends on the compute costs and storage costs associated with the project. Pricing
- Azure Monitor: Pay-as-you-go tier. Costs based on data ingested. Pricing
This template uses Managed Identity for authenticating to the Azure services used (Azure OpenAI, Azure SQL Server).
Additionally, we have added a GitHub Action that scans the infrastructure-as-code files and generates a report containing any detected issues. To ensure continued best practices in your own repository, we recommend that anyone creating solutions based on our templates ensure that the Github secret scanning setting is enabled.