chore: remove service.beta.kubernetes.io/azure-shared-securityrule

[YurDuiachenko]

What type of PR is this?

/kind cleanup

What this PR does / why we need it:

Removes the deprecated annotation service.beta.kubernetes.io/azure-shared-securityrule

Which issue(s) this PR fixes:

NONE

Special notes for your reviewer:

NONE

Does this PR introduce a user-facing change?

NONE

[k8s-ci-robot]

Hi @YurDuiachenko. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work.

Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: YurDuiachenko
Once this PR has been reviewed and has the lgtm label, please assign bridgetkromhout for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[YurDuiachenko]

closes #9905

[YurDuiachenko]

/assign nilo19

[YurDuiachenko]

/assign JoelSpeed

[YurDuiachenko]

also removed from docs MicrosoftDocs/azure-aks-docs#410

[andyzhangx]

/ok-to-test

[Copilot]

Pull request overview

Removes the deprecated service.beta.kubernetes.io/azure-shared-securityrule Service annotation and all in-repo references to it, including related helper logic and test coverage.

Changes:

• Deleted the ServiceAnnotationSharedSecurityRule constant and its documentation.
• Removed useSharedSecurityRule(...) and simplified getSecurityRuleName(...) to always use the per-service rule prefix.
• Updated unit/e2e tests to stop setting or validating the deprecated annotation behavior.

Reviewed changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
tests/e2e/network/ensureloadbalancer.go	Stops setting the deprecated shared-security-rule annotation in the e2e scenario.
pkg/provider/azure_standard_test.go	Removes the unit test case that depended on the shared-rule naming behavior.
pkg/provider/azure_standard.go	Simplifies security rule naming by removing the shared-rule branch.
pkg/provider/azure_loadbalancer.go	Deletes the now-unused useSharedSecurityRule helper.
pkg/consts/consts.go	Removes the deprecated annotation constant and associated comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[andyzhangx]

@nilo19 can you take a look?

[Copilot]

Pull request overview

Copilot reviewed 5 out of 5 changed files in this pull request and generated 1 comment.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

This change removes support for a previously recognized Service annotation. Even if it was deprecated, this is still a user-facing behavioral change for clusters/services that still set it (it will now be ignored and security rule names will change). Please add an explicit release note and/or upgrade/migration note, or (if desired) retain a compatibility shim that detects the raw annotation key and logs a warning to help users discover the removal.