We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent 0625909 commit 0bbff3eCopy full SHA for 0bbff3e
infra/main.security.tf
@@ -55,6 +55,12 @@ resource "azurerm_role_assignment" "script_main_storage_blob_owner" {
55
role_definition_name = "Storage Blob Data Contributor"
56
}
57
58
+resource "azurerm_role_assignment" "script_main_storage_reader" {
59
+ principal_id = azurerm_user_assigned_identity.script_identity.principal_id
60
+ scope = module.storage_account_and_container.resource_id
61
+ role_definition_name = "Reader"
62
+}
63
+
64
# --- Deployment Container Storage Account ---
65
resource "azurerm_role_assignment" "script_deployment_container_blob_contributor" {
66
principal_id = azurerm_user_assigned_identity.script_identity.principal_id
0 commit comments