From fe2589eebb81d33a84b99a21104583013d32ba72 Mon Sep 17 00:00:00 2001 From: Michele Zanotti Date: Thu, 12 Dec 2024 10:26:29 +0000 Subject: [PATCH] fix: missing role assignment on nebuly service principal --- main.tf | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/main.tf b/main.tf index b3820a6..c5c6086 100644 --- a/main.tf +++ b/main.tf @@ -328,6 +328,11 @@ resource "azuread_service_principal_password" "main" { service_principal_id = azuread_service_principal.main.id end_date_relative = null } +resource "azurerm_role_assignment" "nebuly_secrets_officer" { + scope = azurerm_key_vault.main.id + role_definition_name = "Key Vault Secrets Officer" + principal_id = azuread_service_principal.main.object_id +} resource "azurerm_key_vault_secret" "azuread_application_client_id" { key_vault_id = azurerm_key_vault.main.id name = format("%s-azure-client-id", var.resource_prefix)