-
Notifications
You must be signed in to change notification settings - Fork 708
/
azuread_roles.tf
79 lines (61 loc) · 2.54 KB
/
azuread_roles.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
module "azuread_roles_security_groups" {
source = "./modules/azuread/roles"
for_each = try(local.azuread.azuread_roles.azuread_groups, {})
object_id = module.azuread_groups[each.key].object_id
settings = each.value
azuread_roles = each.value.roles
}
module "azuread_roles_applications" {
source = "./modules/azuread/roles"
for_each = try(local.azuread.azuread_roles.azuread_apps, {})
object_id = module.azuread_applications[each.key].azuread_service_principal.object_id
settings = each.value
azuread_roles = each.value.roles
}
module "azuread_roles_service_principals" {
source = "./modules/azuread/roles"
for_each = try(local.azuread.azuread_roles.azuread_service_principals, {})
object_id = module.azuread_service_principals[each.key].object_id
settings = each.value
azuread_roles = each.value.roles
}
module "azuread_roles_msi" {
source = "./modules/azuread/roles"
for_each = try(local.azuread.azuread_roles.managed_identities, {})
object_id = module.managed_identities[each.key].principal_id
settings = each.value
azuread_roles = each.value.roles
}
module "azuread_roles_sql_mi" {
source = "./modules/azuread/roles"
for_each = try(local.azuread.azuread_roles.mssql_managed_instances, {})
object_id = module.mssql_managed_instances[each.key].principal_id
azuread_roles = each.value.roles
}
module "azuread_roles_sql_mi_secondary" {
source = "./modules/azuread/roles"
for_each = try(local.azuread.azuread_roles.mssql_managed_instances_secondary, {})
object_id = module.mssql_managed_instances_secondary[each.key].principal_id
azuread_roles = each.value.roles
}
# module "azuread_roles_sql_mi_v1" {
# source = "./modules/azuread/roles"
# for_each = try(local.azuread.azuread_roles.mssql_managed_instances_v1, {})
# object_id = module.mssql_managed_instances_v1[each.key].principal_id
# settings = each.value
# azuread_roles = each.value.roles
# }
# module "azuread_roles_sql_mi_secondary_v1" {
# source = "./modules/azuread/roles"
# for_each = try(local.azuread.azuread_roles.mssql_managed_instances_secondary_v1, {})
# object_id = module.mssql_managed_instances_secondary_v1[each.key].principal_id
# settings = each.value
# azuread_roles = each.value.roles
# }
module "azuread_roles_mssql_server" {
source = "./modules/azuread/roles"
for_each = try(local.azuread.azuread_roles.mssql_servers, {})
object_id = module.mssql_servers[each.key].rbac_id
settings = each.value
azuread_roles = each.value.roles
}