fix: update kv access policy with new CI service principals

lorenzocorallo · lorenzocorallo · commit fd5f7bc9ed59 · 2025-02-10T20:15:46.000+01:00
diff --git a/keyvault/keyvault.tf b/keyvault/keyvault.tf
@@ -49,5 +49,35 @@ resource "azurerm_key_vault" "keyvalue" {
       storage_permissions     = [],
       tenant_id               = var.tenant_id,
       certificate_permissions = []
-  }]
-}
+    },
+    {
+      certificate_permissions = []
+      key_permissions = [
+        -"Get",
+        -"List",
+      ]
+      object_id = "81dd9fd1-ea71-420a-9f8a-8cbb74f479a6"
+      secret_permissions = [
+        -"Get",
+        -"List",
+      ]
+      storage_permissions = []
+      tenant_id           = var.tenant_id
+    },
+    {
+      certificate_permissions = []
+      key_permissions = [
+        -"Get",
+        -"List",
+      ]
+      object_id = "f220ce5b-e174-413d-b6f8-04e214b85d76"
+      secret_permissions = [
+        -"Get",
+        -"List",
+      ]
+      storage_permissions = []
+      tenant_id           = var.tenant_id
+    },
+
+  ]
+}
