adding updated key vault policy for Microsoft.Azure.WebSites (#3006)

* Fixes permissions on access policy needed for SSL cert syncing
2025-06-09 16:51:35 +00:00 · 2023-04-11 10:07:37 -07:00 · 2023-04-11 10:07:37 -07:00 · 77c42930a6
commit 77c42930a6
parent a39666021a
1 changed files with 12 additions and 0 deletions
--- a/src/deployment/azuredeploy.bicep
+++ b/src/deployment/azuredeploy.bicep
@ -124,6 +124,18 @@ resource keyVault 'Microsoft.KeyVault/vaults@2021-10-01' = {
          ]
        }
      }
+      {
+        objectId: 'abfa0a7c-a6b6-4736-8310-5855508787cd'
+        tenantId: tenantId
+        permissions: {
+          secrets: [
+            'get'
+          ]
+          certificates: [
+            'get'
+          ]
+        }
+      }
    ]
    tenantId: tenantId
  }