Tips-Of-Mine/terraform-azure
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Moved code into sp.tf to make it more self-contained

Browse Source
This commit is contained in:
Tom Archer 2023-05-26 16:21:01 -07:00
parent c3623b46bd
commit 99fa801597
2 changed files with 10 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
quickstart/201-k8s-cluster-with-tf-and-aks/main.tf
View File

@ -8,12 +8,6 @@ resource "azurerm_resource_group" "rg" {
name = random_pet.rg_name.id name = random_pet.rg_name.id
} }
data "azurerm_client_config" "current" {}
locals {
current_user_id = coalesce(var.msi_id, data.azurerm_client_config.current.object_id)
}
resource "random_pet" "azurerm_kubernetes_cluster_name" { resource "random_pet" "azurerm_kubernetes_cluster_name" {
prefix = "cluster" prefix = "cluster"
} }

14
quickstart/201-k8s-cluster-with-tf-and-aks/sp.tf
View File

@ -1,17 +1,23 @@
# Create Azure AD App Registration data "azurerm_client_config" "current" {}
locals {
current_user_id = coalesce(var.msi_id, data.azurerm_client_config.current.object_id)
}
# Create Azure AD app registration.
resource "azuread_application" "app" { resource "azuread_application" "app" {
display_name = "my-app" display_name = "my-app"
owners = [local.current_user_id] owners = [local.current_user_id]
} }
# Create Service Principal # Create service principal.
resource "azuread_service_principal" "app" { resource "azuread_service_principal" "app" {
application_id = azuread_application.app.application_id application_id = azuread_application.app.application_id
app_role_assignment_required = true app_role_assignment_required = true
owners = [local.current_user_id] owners = [local.current_user_id]
} }
# Create Service Principal password # Create service principal password.
resource "azuread_service_principal_password" "app" { resource "azuread_service_principal_password" "app" {
service_principal_id = azuread_service_principal.app.id service_principal_id = azuread_service_principal.app.id
} }
@ -25,7 +31,7 @@ resource "time_sleep" "wait_30_seconds" {
depends_on = [azuread_service_principal_password.app] depends_on = [azuread_service_principal_password.app]
} }
# Output the Service Principal and password # Output the service principal and password.
output "sp" { output "sp" {
value = azuread_service_principal.app.id value = azuread_service_principal.app.id
sensitive = true sensitive = true