Comments (3)
Here is the proposed code for the keyvault.tf file:
resource "azurecaf_naming_convention" "keyvault" {
for_each = var.keyvaults
name = each.value.name
resource_type = "kv"
convention = lookup(each.value, "convention", local.global_settings.convention)
prefix = lookup(each.value, "useprefix", false) == true ? local.prefix_start_alpha : ""
max_length = lookup(each.value, "max_length", null)
}
resource "azurerm_key_vault" "keyvault" {
for_each = var.keyvaults
name = azurecaf_naming_convention.keyvault[each.key].result
location = lookup(each.value, "location", local.global_settings.default_location)
resource_group_name = azurerm_resource_group.rg[each.value.resource_group_key].name
tenant_id = data.azurerm_client_config.current.tenant_id
sku_name = each.value.sku_name
tags = {
tfstate = var.level
environment = local.global_settings.environment
}
}
resource "azurerm_key_vault_access_policy" "keyvault_access_policy" {
for_each = azurerm_key_vault.keyvault
key_vault_id = each.value.id
tenant_id = data.azurerm_client_config.current.tenant_id
object_id = var.logged_user_objectId
key_permissions = []
secret_permissions = ["Get", "List", "Set", "Delete"]
}
A bunch of other code need to be adjusted also. See pull request below.
from caf-terraform-landingzones.
Summited the following pull request to implement: #70
from caf-terraform-landingzones.
Closing as fixed in 2010
from caf-terraform-landingzones.
Related Issues (20)
- [feature] add dynamic_keyvault_certificates to caf_solution
- [bug] Get deployment user object_id
- AAD graph deprecation HOT 1
- Management Group diagnostics through add-ons\caf_eslz (v3.3.0) does not work
- [bug] Errors during bootstrap procedure HOT 2
- [bug] Missing lb resources
- fatal: not a git repository (or any parent up to mount point /tf) Stopping at filesystem boundary (GIT_DISCOVERY_ACROSS_FILESYSTEM not set). Error /tf/rover/functions.sh on or near line landingzone folder not setup properly. Fix and restart.; exiting with status 1[bug] HOT 2
- Define an IP-configuration (static ip) for private endpoints
- [bug] Missing Map Accounts Resource
- [bug] running deploy_platform.sh in rover fails after following steps from tutorial HOT 2
- [bug] Global settings not
- [bug] Global settings not recognised HOT 4
- CAF Launchpad scenario 200 does not work with a bootstrap service principle.
- Add supporting auxiliary_tenant_ids for the cross-tenant tasks
- ASVM and landing zone configuration lifecycle HOT 1
- [bug] /templates/platform/deploy_platform.sh script is broken in 5.x.x, only works in 2203.1. HOT 1
- [bug] Is not possible to create a network_interface_backend_address_pool_association from another LZ
- [bug] Ther is know version of the scripts that work.
- [question] CAF Terraform landing zones Project direction HOT 3
- [bug] Changing Regions causes Diagnostic Module to fail
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from caf-terraform-landingzones.