Skip to content

/ SetRBAConARMmodel

Solution with code for RBAC management in Azure

2 stars 1 fork
Star
Watch
master
1 branch 0 tags
Go to file
Code

Clone with HTTPS

Use Git or checkout with SVN using the web URL.

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
setrbacarmincode
 
 
.gitattributes
 
 
.gitignore
 
 
README.md
 
 

README.md

SetRBAConARMmodel

Solution with simplified code for RBAC management of developer/IT teams accessing one common Azure subscription for projects/environments. Code snippets in Program.cs solving this:

  • create authorization tokens for Azure Resource Management API, Microsoft Graph API
  • create resource group based on ARM template, start VM, stop VM, delete resource group
  • get list of users in AAD associated with tenant and Azure Subscription throught REST. Translate users to simplified model "Display name, ObjectId" for simplier usage in application (e.g. in combobox ui elements)
  • get list of roles existing in resource group
  • create role assignment for user from AAD and role from role list in resource group
  • get list of role assignments in resource group
  • delete role assignment from resource group Program.cs contains comments explaining source code and api call, incl. powershell instruction for application registration in your Azure Active Directory.

Actions can be called through parameters of console application. E.g. this is example, how to list all roles in resource group "rg_moj_projekt": SetRBAConARMmodel listRBACroles "rg_moj_projekt"

Don't forget to change identifications of your subscription in app.config:

  • TenantID    
  • SubscriptionID
  • ApplicationID_ClientID
  • ServiceCredential_ClientPassword

About

Solution with code for RBAC management in Azure

Resources

Readme

Releases

No releases published

Packages

No packages published

Languages

You can’t perform that action at this time.