Skip to content

Commit

Permalink
Docs: udpate azurerm_key_vault_access_policy object_id descriptio…
Browse files Browse the repository at this point in the history
…n for principal app (#20366)

* udpate keyvault access policy resource object for principal app

* fix doc typo
  • Loading branch information
wuxu92 authored Feb 9, 2023
1 parent c95c9a1 commit b423f24
Showing 1 changed file with 15 additions and 1 deletion.
16 changes: 15 additions & 1 deletion website/docs/r/key_vault_access_policy.html.markdown
Original file line number Diff line number Diff line change
Expand Up @@ -45,6 +45,20 @@ resource "azurerm_key_vault_access_policy" "example" {
"Get",
]
}
data "azuread_service_principal" "example" {
display_name = "example-app"
}
resource "azurerm_key_vault_access_policy" "example-principal" {
key_vault_id = azurerm_key_vault.example.id
tenant_id = data.azurerm_client_config.current.tenant_id
object_id = data.azuread_service_principal.example.object_id
key_permissions = [
"Get", "List", "Encrypt", "Decrypt"
]
}
```

## Argument Reference
Expand All @@ -55,7 +69,7 @@ The following arguments are supported:

* `tenant_id` - (Required) The Azure Active Directory tenant ID that should be used for authenticating requests to the key vault. Changing this forces a new resource to be created.

* `object_id` - (Required) The object ID of a user, service principal or security group in the Azure Active Directory tenant for the vault. The object ID must be unique for the list of access policies. Changing this forces a new resource to be created.
* `object_id` - (Required) The object ID of a user, service principal or security group in the Azure Active Directory tenant for the vault. The object ID of a service principal can be fetched from `azuread_service_principal.object_id`. The object ID must be unique for the list of access policies. Changing this forces a new resource to be created.

* `application_id` - (Optional) The object ID of an Application in Azure Active Directory. Changing this forces a new resource to be created.

Expand Down

0 comments on commit b423f24

Please sign in to comment.