changes for sql db export

Author: achyuth-ms

docs/azmcp-commands.md

@@ -1142,6 +1142,18 @@ azmcp sql db update --subscription <subscription> \
                     [--elastic-pool-name <elastic-pool-name>] \
                     [--zone-redundant <true/false>] \
                     [--read-scale <Enabled|Disabled>]
+
+# Export an Azure SQL Database to a BACPAC file in Azure Storage
+azmcp sql db export --subscription <subscription> \
+                    --resource-group <resource-group> \
+                    --server <server-name> \
+                    --database <database-name> \
+                    --storage-uri <storage-uri> \
+                    --storage-key <storage-key> \
+                    --storage-key-type <StorageAccessKey|SharedAccessKey|ManagedIdentity> \
+                    --admin-user <admin-user> \
+                    --admin-password <admin-password> \
+                    [--auth-type <SQL|ADPassword|ManagedIdentity>]
 ```
 
 #### Elastic Pool

docs/e2eTestPrompts.md

@@ -408,6 +408,8 @@ This file contains prompts used for end-to-end testing to ensure each tool is in
 | azmcp_sql_db_show | Show me the details of SQL database <database_name> in server <server_name> |
 | azmcp_sql_db_update | Update the performance tier of SQL database <database_name> on server <server_name> |
 | azmcp_sql_db_update | Scale SQL database <database_name> on server <server_name> to use <sku_name> SKU |
+| azmcp_sql_db_export | Export SQL database <database_name> from server <server_name> to Azure Storage |
+| azmcp_sql_db_export | Create a BACPAC backup of database <database_name> on server <server_name> |
 
 ## Azure SQL Elastic Pool Operations
 

servers/Azure.Mcp.Server/README.md

@@ -8,11 +8,11 @@ All Azure MCP tools in a single server. The Azure MCP Server implements the [MCP
 ## Table of Contents
 - [Overview](#overview)
 - [Installation](#installation)
-    - [IDE Extensions](#ide-extensions) 
+    - [IDE Extensions](#ide-extensions)
         - [VS Code (Recommended)](#vs-code-recommended)
         - [Visual Studio 2022](#visual-studio-2022)
         - [IntelliJ IDEA](#intellij-idea)
-    - [Package Managers](#package-managers) 
+    - [Package Managers](#package-managers)
         - [NuGet](#nuget)
         - [NPM](#npm)
         - [Docker](#docker)
@@ -110,7 +110,7 @@ Optionally, use `--env` or `--volume` to pass authentication values.
 
 ## <a id="custom-clients"></a> 🤖 Custom Clients
 
-You can easily configure your MCP client to use the Azure MCP Server. 
+You can easily configure your MCP client to use the Azure MCP Server.
 
 <details>
 <summary>Have your client run the following command and access it via standard IO:</summary>
@@ -164,7 +164,7 @@ The Azure MCP Server supercharges your agents with Azure context. Here are some
 * List foundry model deployments
 * List knowledge indexes
 * Get knowledge index schema configuration
-  
+
 ### 🔎 Azure AI Search
 
 * "What indexes do I have in my Azure AI Search service 'mysvc'?"
@@ -245,6 +245,7 @@ The Azure MCP Server supercharges your agents with Azure context. Here are some
 * "List all databases in my Azure SQL server 'myserver'"
 * "Update the performance tier of my Azure SQL database 'mydb'"
 * "Rename my Azure SQL database 'mydb' to 'newname'"
+* "Export my Azure SQL database 'mydb' to a BACPAC file in Azure Storage"
 * "List all firewall rules for my Azure SQL server 'myserver'"
 * "Create a firewall rule for my Azure SQL server 'myserver'"
 * "Delete a firewall rule from my Azure SQL server 'myserver'"

tools/Azure.Mcp.Tools.Sql/src/Commands/Database/DatabaseExportCommand.cs

@@ -0,0 +1,189 @@
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT License.
+
+using System.CommandLine;
+using System.CommandLine.Parsing;
+using Azure.Mcp.Core.Commands;
+using Azure.Mcp.Core.Extensions;
+using Azure.Mcp.Core.Models.Command;
+using Azure.Mcp.Tools.Sql.Commands;
+using Azure.Mcp.Tools.Sql.Models;
+using Azure.Mcp.Tools.Sql.Options;
+using Azure.Mcp.Tools.Sql.Options.Database;
+using Azure.Mcp.Tools.Sql.Services;
+using Azure.ResourceManager.Sql.Models;
+using Microsoft.Extensions.Logging;
+
+namespace Azure.Mcp.Tools.Sql.Commands.Database;
+
+public sealed class DatabaseExportCommand(ILogger<DatabaseExportCommand> logger)
+    : BaseDatabaseCommand<DatabaseExportOptions>(logger)
+{
+    private const string CommandTitle = "Export SQL Database";
+
+    public override string Name => "export";
+
+    public override string Description =>
+        """
+        Export an Azure SQL Database to a BACPAC file in Azure Storage. This command creates a logical backup
+        of the database schema and data that can be used for archiving or migration purposes. The export
+        operation is equivalent to 'az sql db export'. Returns export operation information including status.
+        """;
+
+    public override string Title => CommandTitle;
+
+    public override ToolMetadata Metadata => new()
+    {
+        Destructive = false,
+        Idempotent = false,
+        OpenWorld = false,
+        ReadOnly = true,
+        LocalRequired = false,
+        Secret = true
+    };
+
+    protected override void RegisterOptions(Command command)
+    {
+        base.RegisterOptions(command);
+        command.Options.Add(SqlOptionDefinitions.StorageUriOption);
+        command.Options.Add(SqlOptionDefinitions.StorageKeyOption);
+        command.Options.Add(SqlOptionDefinitions.StorageKeyTypeOption);
+        command.Options.Add(SqlOptionDefinitions.AdminUserOption);
+        command.Options.Add(SqlOptionDefinitions.AdminPasswordOption);
+        command.Options.Add(SqlOptionDefinitions.AuthTypeOption);
+    }
+
+    protected override DatabaseExportOptions BindOptions(ParseResult parseResult)
+    {
+        var options = base.BindOptions(parseResult);
+        options.StorageUri = parseResult.GetValueOrDefault(SqlOptionDefinitions.StorageUriOption);
+        options.StorageKey = parseResult.GetValueOrDefault(SqlOptionDefinitions.StorageKeyOption);
+        options.StorageKeyType = parseResult.GetValueOrDefault(SqlOptionDefinitions.StorageKeyTypeOption);
+        options.AdminUser = parseResult.GetValueOrDefault(SqlOptionDefinitions.AdminUserOption);
+        options.AdminPassword = parseResult.GetValueOrDefault(SqlOptionDefinitions.AdminPasswordOption);
+        options.AuthType = parseResult.GetValueOrDefault(SqlOptionDefinitions.AuthTypeOption);
+        return options;
+    }
+
+    public override async Task<CommandResponse> ExecuteAsync(CommandContext context, ParseResult parseResult)
+    {
+        if (!Validate(parseResult.CommandResult, context.Response).IsValid)
+        {
+            return context.Response;
+        }
+
+        var options = BindOptions(parseResult);
+
+        // Additional validation for export-specific parameters
+        if (string.IsNullOrEmpty(options.StorageUri))
+        {
+            context.Response.Status = 400;
+            context.Response.Message = "Storage URI is required for database export.";
+            return context.Response;
+        }
+
+        if (string.IsNullOrEmpty(options.StorageKey))
+        {
+            context.Response.Status = 400;
+            context.Response.Message = "Storage key is required for database export.";
+            return context.Response;
+        }
+
+        if (string.IsNullOrEmpty(options.StorageKeyType))
+        {
+            context.Response.Status = 400;
+            context.Response.Message = "Storage key type is required for database export.";
+            return context.Response;
+        }
+
+        if (string.IsNullOrEmpty(options.AdminUser))
+        {
+            context.Response.Status = 400;
+            context.Response.Message = "Administrator user is required for database export.";
+            return context.Response;
+        }
+
+        if (string.IsNullOrEmpty(options.AdminPassword))
+        {
+            context.Response.Status = 400;
+            context.Response.Message = "Administrator password is required for database export.";
+            return context.Response;
+        }
+
+        // Validate storage key type
+        var validStorageKeyTypes = new[] { "StorageAccessKey", "SharedAccessKey", "ManagedIdentity" };
+        if (!validStorageKeyTypes.Contains(options.StorageKeyType, StringComparer.OrdinalIgnoreCase))
+        {
+            context.Response.Status = 400;
+            context.Response.Message = $"Invalid storage key type '{options.StorageKeyType}'. Valid values are: {string.Join(", ", validStorageKeyTypes)}";
+            return context.Response;
+        }
+
+        // Validate storage URI format
+        if (!Uri.TryCreate(options.StorageUri, UriKind.Absolute, out _))
+        {
+            context.Response.Status = 400;
+            context.Response.Message = "Storage URI must be a valid absolute URI.";
+            return context.Response;
+        }
+
+        // Validate authentication type if provided
+        if (!string.IsNullOrEmpty(options.AuthType))
+        {
+            var validAuthTypes = new[] { "SQL", "ADPassword", "ManagedIdentity" };
+            if (!validAuthTypes.Contains(options.AuthType, StringComparer.OrdinalIgnoreCase))
+            {
+                context.Response.Status = 400;
+                context.Response.Message = $"Invalid authentication type '{options.AuthType}'. Valid values are: {string.Join(", ", validAuthTypes)}";
+                return context.Response;
+            }
+        }
+
+        try
+        {
+            var sqlService = context.GetService<ISqlService>();
+
+            var exportResult = await sqlService.ExportDatabaseAsync(
+                options.Server!,
+                options.Database!,
+                options.ResourceGroup!,
+                options.Subscription!,
+                options.StorageUri!,
+                options.StorageKey!,
+                options.StorageKeyType!,
+                options.AdminUser!,
+                options.AdminPassword!,
+                options.AuthType,
+                options.RetryPolicy);
+
+            context.Response.Results = ResponseResult.Create(
+                new DatabaseExportResult(exportResult),
+                SqlJsonContext.Default.DatabaseExportResult);
+        }
+        catch (Exception ex)
+        {
+            _logger.LogError(ex,
+                "Error exporting SQL database. Server: {Server}, Database: {Database}, ResourceGroup: {ResourceGroup}, StorageUri: {StorageUri}",
+                options.Server, options.Database, options.ResourceGroup, options.StorageUri);
+            HandleException(context, ex);
+        }
+
+        return context.Response;
+    }
+
+    protected override string GetErrorMessage(Exception ex) => ex switch
+    {
+        RequestFailedException reqEx when reqEx.Status == 404 =>
+            "SQL database or server not found. Verify the database name, server name, resource group, and that you have access.",
+        RequestFailedException reqEx when reqEx.Status == 403 =>
+            $"Authorization failed exporting the SQL database. Verify you have appropriate permissions and the storage account is accessible. Details: {reqEx.Message}",
+        RequestFailedException reqEx when reqEx.Status == 400 =>
+            $"Invalid export parameters. Check your storage URI, credentials, and database configuration. Details: {reqEx.Message}",
+        ArgumentException argEx =>
+            $"Invalid argument: {argEx.Message}",
+        RequestFailedException reqEx => reqEx.Message,
+        _ => base.GetErrorMessage(ex)
+    };
+
+    internal record DatabaseExportResult(SqlDatabaseExportResult ExportResult);
+}

tools/Azure.Mcp.Tools.Sql/src/Commands/SqlJsonContext.cs

@@ -17,6 +17,7 @@ namespace Azure.Mcp.Tools.Sql.Commands;
 [JsonSerializable(typeof(DatabaseCreateCommand.DatabaseCreateResult))]
 [JsonSerializable(typeof(DatabaseUpdateCommand.DatabaseUpdateResult))]
 [JsonSerializable(typeof(DatabaseRenameCommand.DatabaseRenameResult))]
+[JsonSerializable(typeof(DatabaseExportCommand.DatabaseExportResult))]
 [JsonSerializable(typeof(DatabaseDeleteCommand.DatabaseDeleteResult))]
 [JsonSerializable(typeof(EntraAdminListCommand.EntraAdminListResult))]
 [JsonSerializable(typeof(FirewallRuleListCommand.FirewallRuleListResult))]

tools/Azure.Mcp.Tools.Sql/src/Models/SqlDatabaseExportResult.cs

@@ -0,0 +1,18 @@
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT License.
+
+using System.Text.Json.Serialization;
+
+namespace Azure.Mcp.Tools.Sql.Models;
+
+public record SqlDatabaseExportResult(
+    [property: JsonPropertyName("operationId")] string? OperationId,
+    [property: JsonPropertyName("requestId")] string? RequestId,
+    [property: JsonPropertyName("status")] string? Status,
+    [property: JsonPropertyName("queuedTime")] DateTimeOffset? QueuedTime,
+    [property: JsonPropertyName("lastModifiedTime")] DateTimeOffset? LastModifiedTime,
+    [property: JsonPropertyName("serverName")] string? ServerName,
+    [property: JsonPropertyName("databaseName")] string? DatabaseName,
+    [property: JsonPropertyName("storageUri")] string? StorageUri,
+    [property: JsonPropertyName("message")] string? Message
+);

tools/Azure.Mcp.Tools.Sql/src/Options/Database/DatabaseExportOptions.cs

@@ -0,0 +1,27 @@
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT License.
+
+using System.Text.Json.Serialization;
+
+namespace Azure.Mcp.Tools.Sql.Options.Database;
+
+public class DatabaseExportOptions : BaseDatabaseOptions
+{
+    [JsonPropertyName(SqlOptionDefinitions.StorageUri)]
+    public string? StorageUri { get; set; }
+
+    [JsonPropertyName(SqlOptionDefinitions.StorageKey)]
+    public string? StorageKey { get; set; }
+
+    [JsonPropertyName(SqlOptionDefinitions.StorageKeyType)]
+    public string? StorageKeyType { get; set; }
+
+    [JsonPropertyName(SqlOptionDefinitions.AdminUser)]
+    public string? AdminUser { get; set; }
+
+    [JsonPropertyName(SqlOptionDefinitions.AdminPassword)]
+    public string? AdminPassword { get; set; }
+
+    [JsonPropertyName(SqlOptionDefinitions.AuthType)]
+    public string? AuthType { get; set; }
+}

tools/Azure.Mcp.Tools.Sql/src/Options/SqlOptionDefinitions.cs

@@ -25,6 +25,12 @@ public static class SqlOptionDefinitions
     public const string ElasticPoolName = "elastic-pool-name";
     public const string ZoneRedundant = "zone-redundant";
     public const string ReadScale = "read-scale";
+    public const string StorageUri = "storage-uri";
+    public const string StorageKey = "storage-key";
+    public const string StorageKeyType = "storage-key-type";
+    public const string AdminUser = "admin-user";
+    public const string AdminPassword = "admin-password";
+    public const string AuthType = "auth-type";
 
     public static readonly Option<string> Server = new(
         $"--{ServerName}"
@@ -185,4 +191,52 @@ public static class SqlOptionDefinitions
         Description = "Read scale option for the database (Enabled or Disabled).",
         Required = false
     };
+
+    public static readonly Option<string> StorageUriOption = new(
+        $"--{StorageUri}"
+    )
+    {
+        Description = "The storage URI for the BACPAC file (e.g., https://mystorageaccount.blob.core.windows.net/mycontainer/myfile.bacpac).",
+        Required = true
+    };
+
+    public static readonly Option<string> StorageKeyOption = new(
+        $"--{StorageKey}"
+    )
+    {
+        Description = "The storage access key or shared access signature for the storage account.",
+        Required = true
+    };
+
+    public static readonly Option<string> StorageKeyTypeOption = new(
+        $"--{StorageKeyType}"
+    )
+    {
+        Description = "The storage key type (StorageAccessKey, SharedAccessKey, or ManagedIdentity).",
+        Required = true
+    };
+
+    public static readonly Option<string> AdminUserOption = new(
+        $"--{AdminUser}"
+    )
+    {
+        Description = "The SQL Server administrator login name for database access.",
+        Required = true
+    };
+
+    public static readonly Option<string> AdminPasswordOption = new(
+        $"--{AdminPassword}"
+    )
+    {
+        Description = "The SQL Server administrator password for database access.",
+        Required = true
+    };
+
+    public static readonly Option<string> AuthTypeOption = new(
+        $"--{AuthType}"
+    )
+    {
+        Description = "The authentication type (SQL, ADPassword, or ManagedIdentity).",
+        Required = false
+    };
 }