Draft: Add and purge kv secrets (!755) · Merge requests · OSDU Software / OSDU Data Platform / Deployment and Operations / infra-azure-provisioning

Artem Sereda requested to merge as/add_and_purge_KV_secrets into master Nov 25, 2022

All Submissions:

[YES] Have you added an explanation of what your changes do and why you'd like us to include them?
[NO] I have updated the documentation accordingly.
[YES] My code follows the code style of this project.

Current Behavior or Linked Issues

Errors purging of Secret after terraform destroy for DP, SR, CR:

Error: purging of Secret "..." (Key Vault "...") : keyvault.BaseClient#PurgeDeletedSecret: Failure responding to request: StatusCode=403 -- Original Error: autorest/azure: Service returned an error. Status=403 Code="Forbidden" Message="Operation \"purge\" is not allowed because purge protection is enabled for this vault.

No aad-client-secret in Key Vault after terraform apply for Central Resources.

Does this introduce a breaking change?

[NO]

Other information

Discussion at hashicorp gihub about the same errors and how to avoid it.
So added features to azurerm provider in main.tf.
Added Application Information to Key Vault for secret.

Draft: Add and purge kv secrets

All Submissions:

Current Behavior or Linked Issues

Does this introduce a breaking change?

Other information

Merge request reports