Split the appServiceAllowedIPs ARM parameter in 2

This allows separate access restrictions to be passed to the front and backend apps.
SkillsFundingAgency · Jun 9, 2022 · 78ebc40 · 78ebc40
1 parent 79ecc74
commit 78ebc40
Showing 1 changed file with 7 additions and 5 deletions.
diff --git a/azure/finance.template.json b/azure/finance.template.json
@@ -70,9 +70,11 @@
         "sharedApimName": {
             "type": "string"
         },
-        "appServiceAllowedIPs": {
-            "type": "array",
-            "defaultValue": []
+        "backEndAccessRestrictions": {
+            "type": "array"
+        },
+        "frontEndAccessRestrictions": {
+            "type": "array"
         },
         "sharedSQLServerName": {
             "type": "string"
@@ -269,7 +271,7 @@
                         "value": "[if(greater(length(parameters('uiCustomHostname')), 0), reference('ui-app-service-certificate', '2018-11-01').outputs.certificateThumbprint.value, '')]"
                     },
                     "ipSecurityRestrictions": {
-                        "value": "[parameters('appServiceAllowedIPs')]"
+                        "value": "[parameters('frontEndAccessRestrictions')]"
                     }
                 }
             }
@@ -379,7 +381,7 @@
                         "value": "[if(greater(length(parameters('apiCustomHostname')), 0), reference('api-app-service-certificate', '2018-11-01').outputs.certificateThumbprint.value, '')]"
                     },
                     "ipSecurityRestrictions": {
-                        "value": "[parameters('appServiceAllowedIPs')]"
+                        "value": "[parameters('backEndAccessRestrictions')]"
                     }
                 }
             }