在Azure App Service中使用Azure托管应用程序部署中的Azure App服务中的证书 我正在创建一个Azure托管应用程序,该应用程序将在Azure Marketplace中提供,以将其部署到客户的租户中。除其他外,托管资源组包括一个密钥...

问题描述 投票:0回答:1

BICEP现在支持Microsoft Graph(请参阅documentation),因此您可以获得对App Service资源提供商的参考并像这样抓住对象ID:

extension microsoftGraphV1

...

// Get a reference to app service resource provider
resource appServiceResourceProvider 'Microsoft.Graph/[email protected]' existing = {
  appId: 'abfa0a7c-a6b6-4736-8310-5855508787cd'
}

resource keyVault 'Microsoft.KeyVault/vaults@2023-02-01' = {
  name: keyVaultName
  location: location
  properties: {
    ...
    accessPolicies:[
       ...
       {
         objectId: appServiceResourceProvider.id
         permissions:{
           certificates: ['get']
           secrets:['get']
         }
         tenantId: tenantId
       }
     ]
  }
}

azure-web-app-service azure-keyvault azure-bicep azure-managed-identity azure-managed-app
1个回答
0
投票

最新问题
© www.soinside.com 2019 - 2024. All rights reserved.