Skip to content

Draft: Add and purge kv secrets

Artem Sereda requested to merge as/add_and_purge_KV_secrets into master

All Submissions:

  • [YES] Have you added an explanation of what your changes do and why you'd like us to include them?
  • [NO] I have updated the documentation accordingly.
  • [YES] My code follows the code style of this project.

Current Behavior or Linked Issues

  1. Errors purging of Secret after terraform destroy for DP, SR, CR:
Error: purging of Secret "..." (Key Vault "...") : keyvault.BaseClient#PurgeDeletedSecret: Failure responding to request: StatusCode=403 -- Original Error: autorest/azure: Service returned an error. Status=403 Code="Forbidden" Message="Operation \"purge\" is not allowed because purge protection is enabled for this vault.
  1. No aad-client-secret in Key Vault after terraform apply for Central Resources.

Does this introduce a breaking change?

  • [NO]

Other information

Discussion at hashicorp gihub about the same errors and how to avoid it.
So added features to azurerm provider in main.tf.
Added Application Information to Key Vault for secret.

Merge request reports