Identities, Roles & existing resources #9770
-
|
I'm looking for a bit of advice. We have existing resources within Azure e.g. blob storage, cosmos db. We want to use this with our aspire solution, so we 'add it' by just providing the connection string. This 'works' but when we try any operations on the blob, we get an unauthorised error. We can go in and add in the identity with appropriate roles into the Access Control section for the blob storage, and this then allows the solution to work. But, quite often we delete the deployed resource group of the aspire solution and, start again, which I believe means we are going to have to add another identity + roles into the access control section for the blob storage. So, my question is, how can we automate with aspire the assignment of the relevant identity + roles in those resources that already exist? e.g. is there either a way of customizing the configureInfrastructure call for a StorageAccount to reference an existing resource. Thanks in advance for any suggestions. |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment
-
|
Existing resources referenced with these APIs can be enhanced with role assignments and other customizations that are available with .NET Aspire's infrastructure as code capabilities. These APIs are limited to Azure resources that can be deployed with Bicep templates. |
Beta Was this translation helpful? Give feedback.
https://learn.microsoft.com/en-us/dotnet/aspire/azure/integrations-overview?tabs=dotnet-cli#use-existing-azure-resources
Existing resources referenced with these APIs can be enhanced with role assignments and other customizations that are available with .NET Aspire's infrastructure as code capabilities. These APIs are limited to Azure resources that can be deployed with Bicep templates.