farmer icon indicating copy to clipboard operation
farmer copied to clipboard
verified publisher icon CompositionalIT

Feature Request: Add user-assigned-identity to AAD group

Open r30e opened this issue 4 years ago • 0 comments

When creating a user-assigned identity, it would be great if there was a way to automatically add the given user to a named AAD group. This would allow permissions to be assigned at deployment time.

I don't believe its possible to add members to groups through ARM so this, I believe would need to be a post-deploy action. Something like the following:

let myId = userAssignedIdentity {
  name "my-identity"
  add_to_ad_group "my-production-apps"
  add_to_ad_groups ["my-all-apps"; "my-commerce-apps"]
}

r30e avatar Dec 22 '21 09:12 r30e