Update azurerm to v4.3.0 & Switch to Modules #110

marvinbuss · 2024-09-26T07:36:39Z

Proposed changes:

Update azurerm to v4.3.0
Switch to secure-by-default Terraform modules

github-actions · 2024-09-26T07:36:57Z

Terraform Lint Results

Terraform Version 📎1.9.6
Working Directory 📂./code/infra
Terraform Format and Style 🖌success

github-actions · 2024-09-26T07:41:48Z

Terraform Lint Results

Terraform Version 📎1.9.6
Working Directory 📂./code/infra
Terraform Format and Style 🖌success

github-actions · 2024-09-26T07:42:57Z

Terraform Lint Results

Terraform Version 📎1.9.6
Working Directory 📂./code/infra
Terraform Format and Style 🖌success

github-actions · 2024-09-26T07:46:07Z

Terraform Lint Results

Terraform Version 📎1.9.6
Working Directory 📂./code/infra
Terraform Format and Style 🖌success

github-actions · 2024-09-26T08:14:20Z

Terraform Lint Results

Terraform Version 📎1.9.6
Working Directory 📂./code/infra
Terraform Format and Style 🖌success

github-actions · 2024-09-26T08:15:50Z

Terraform Validation & Plan Results

Terraform Version 📎1.9.6
Working Directory 📂./code/infra
Terraform Initialization ⚙️success
Terraform Validation 🤖success
Terraform Plan 📖success

Show Plan


terraform
�[0m�[1mdata.azurerm_network_security_group.network_security_group: Reading...�[0m�[0m
�[0m�[1mdata.azurerm_route_table.route_table: Reading...�[0m�[0m
�[0m�[1mdata.azurerm_log_analytics_workspace.log_analytics_workspace: Reading...�[0m�[0m
�[0m�[1mmodule.key_vault.data.azurerm_client_config.current: Reading...�[0m�[0m
�[0m�[1mdata.azurerm_client_config.current: Reading...�[0m�[0m
�[0m�[1mdata.azurerm_virtual_network.virtual_network: Reading...�[0m�[0m
�[0m�[1mmodule.key_vault.data.azurerm_client_config.current: Read complete after 0s [id=Y2xpZW50Q29uZmlncy9jbGllbnRJZD1hYzA5N2FkYS0yOTQyLTQwMjItYTEzNy1lN2JhYmQ3N2I4Yzc7b2JqZWN0SWQ9ZjgxYjViOTYtZjEwZS00NjdkLWJhMGMtNDE5NmZkMWEzMWY4O3N1YnNjcmlwdGlvbklkPWU4MmM1MjY3LTlkYzQtNGY0NS1hYzEzLWFiZGQ1ZTEzMGQyNzt0ZW5hbnRJZD0zNzk2M2RkNC1mNGU2LTQwZjgtYTdkNi0yNGI5NzkxOWU0NTI=]�[0m
�[0m�[1mdata.azurerm_client_config.current: Read complete after 0s [id=Y2xpZW50Q29uZmlncy9jbGllbnRJZD1hYzA5N2FkYS0yOTQyLTQwMjItYTEzNy1lN2JhYmQ3N2I4Yzc7b2JqZWN0SWQ9ZjgxYjViOTYtZjEwZS00NjdkLWJhMGMtNDE5NmZkMWEzMWY4O3N1YnNjcmlwdGlvbklkPWU4MmM1MjY3LTlkYzQtNGY0NS1hYzEzLWFiZGQ1ZTEzMGQyNzt0ZW5hbnRJZD0zNzk2M2RkNC1mNGU2LTQwZjgtYTdkNi0yNGI5NzkxOWU0NTI=]�[0m
�[0m�[1mdata.azurerm_log_analytics_workspace.log_analytics_workspace: Read complete after 1s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-logging-rg/providers/Microsoft.OperationalInsights/workspaces/ptt-dev-log001]�[0m
�[0m�[1mdata.azurerm_route_table.route_table: Read complete after 1s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/routeTables/ptt-dev-default-rt001]�[0m
�[0m�[1mdata.azurerm_virtual_network.virtual_network: Read complete after 1s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/virtualNetworks/ptt-dev-vnet001]�[0m
�[0m�[1mdata.azurerm_network_security_group.network_security_group: Read complete after 1s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/networkSecurityGroups/ptt-dev-default-nsg001]�[0m

Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
  �[32m+�[0m create�[0m
 �[36m<=�[0m read (data resources)�[0m

Terraform will perform the following actions:

�[1m  # azapi_resource.container_apps_environment�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azapi_resource" "container_apps_environment" {
      �[32m+�[0m�[0m body                      = (sensitive value)
      �[32m+�[0m�[0m id                        = (known after apply)
      �[32m+�[0m�[0m ignore_casing             = false
      �[32m+�[0m�[0m ignore_missing_property   = true
      �[32m+�[0m�[0m location                  = "northeurope"
      �[32m+�[0m�[0m name                      = "ghar-prd-cae001"
      �[32m+�[0m�[0m output                    = (known after apply)
      �[32m+�[0m�[0m parent_id                 = (known after apply)
      �[32m+�[0m�[0m removing_special_chars    = false
      �[32m+�[0m�[0m schema_validation_enabled = true
      �[32m+�[0m�[0m tags                      = {
          �[32m+�[0m�[0m "workload" = "github-action-runners"
        }
      �[32m+�[0m�[0m type                      = "Microsoft.App/managedEnvironments@2024-03-01"
    }

�[1m  # azapi_resource.container_apps_job�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azapi_resource" "container_apps_job" {
      �[32m+�[0m�[0m body                      = (sensitive value)
      �[32m+�[0m�[0m id                        = (known after apply)
      �[32m+�[0m�[0m ignore_casing             = false
      �[32m+�[0m�[0m ignore_missing_property   = true
      �[32m+�[0m�[0m location                  = "northeurope"
      �[32m+�[0m�[0m name                      = "ghar-prd-caj001"
      �[32m+�[0m�[0m output                    = (known after apply)
      �[32m+�[0m�[0m parent_id                 = (known after apply)
      �[32m+�[0m�[0m removing_special_chars    = false
      �[32m+�[0m�[0m schema_validation_enabled = true
      �[32m+�[0m�[0m tags                      = {
          �[32m+�[0m�[0m "workload" = "github-action-runners"
        }
      �[32m+�[0m�[0m type                      = "Microsoft.App/jobs@2024-03-01"

      �[32m+�[0m�[0m identity {
          �[32m+�[0m�[0m identity_ids = [
              �[32m+�[0m�[0m (known after apply),
            ]
          �[32m+�[0m�[0m principal_id = (known after apply)
          �[32m+�[0m�[0m tenant_id    = (known after apply)
          �[32m+�[0m�[0m type         = "UserAssigned"
        }
    }

�[1m  # azapi_resource.subnet_container_app�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azapi_resource" "subnet_container_app" {
      �[32m+�[0m�[0m body                      = jsonencode(
            {
              �[32m+�[0m�[0m properties = {
                  �[32m+�[0m�[0m addressPrefix                     = "10.0.1.192/26"
                  �[32m+�[0m�[0m delegations                       = [
                      �[32m+�[0m�[0m {
                          �[32m+�[0m�[0m name       = "ContainerAppDelegation"
                          �[32m+�[0m�[0m properties = {
                              �[32m+�[0m�[0m serviceName = "Microsoft.App/environments"
                            }
                        },
                    ]
                  �[32m+�[0m�[0m ipAllocations                     = []
                  �[32m+�[0m�[0m networkSecurityGroup              = {
                      �[32m+�[0m�[0m id = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/networkSecurityGroups/ptt-dev-default-nsg001"
                    }
                  �[32m+�[0m�[0m privateEndpointNetworkPolicies    = "Enabled"
                  �[32m+�[0m�[0m privateLinkServiceNetworkPolicies = "Enabled"
                  �[32m+�[0m�[0m routeTable                        = {
                      �[32m+�[0m�[0m id = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/routeTables/ptt-dev-default-rt001"
                    }
                  �[32m+�[0m�[0m serviceEndpointPolicies           = []
                  �[32m+�[0m�[0m serviceEndpoints                  = []
                }
            }
        )
      �[32m+�[0m�[0m id                        = (known after apply)
      �[32m+�[0m�[0m ignore_casing             = false
      �[32m+�[0m�[0m ignore_missing_property   = true
      �[32m+�[0m�[0m name                      = "ContainerAppSubnet"
      �[32m+�[0m�[0m output                    = (known after apply)
      �[32m+�[0m�[0m parent_id                 = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/virtualNetworks/ptt-dev-vnet001"
      �[32m+�[0m�[0m removing_special_chars    = false
      �[32m+�[0m�[0m schema_validation_enabled = true
      �[32m+�[0m�[0m type                      = "Microsoft.Network/virtualNetworks/subnets@2024-01-01"
    }

�[1m  # azapi_resource.subnet_private_endpoints�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azapi_resource" "subnet_private_endpoints" {
      �[32m+�[0m�[0m body                      = jsonencode(
            {
              �[32m+�[0m�[0m properties = {
                  �[32m+�[0m�[0m addressPrefix                     = "10.0.2.0/26"
                  �[32m+�[0m�[0m delegations                       = []
                  �[32m+�[0m�[0m ipAllocations                     = []
                  �[32m+�[0m�[0m networkSecurityGroup              = {
                      �[32m+�[0m�[0m id = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/networkSecurityGroups/ptt-dev-default-nsg001"
                    }
                  �[32m+�[0m�[0m privateEndpointNetworkPolicies    = "Enabled"
                  �[32m+�[0m�[0m privateLinkServiceNetworkPolicies = "Enabled"
                  �[32m+�[0m�[0m routeTable                        = {
                      �[32m+�[0m�[0m id = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/routeTables/ptt-dev-default-rt001"
                    }
                  �[32m+�[0m�[0m serviceEndpointPolicies           = []
                  �[32m+�[0m�[0m serviceEndpoints                  = []
                }
            }
        )
      �[32m+�[0m�[0m id                        = (known after apply)
      �[32m+�[0m�[0m ignore_casing             = false
      �[32m+�[0m�[0m ignore_missing_property   = true
      �[32m+�[0m�[0m name                      = "CaPrivateEndpointSubnet"
      �[32m+�[0m�[0m output                    = (known after apply)
      �[32m+�[0m�[0m parent_id                 = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/virtualNetworks/ptt-dev-vnet001"
      �[32m+�[0m�[0m removing_special_chars    = false
      �[32m+�[0m�[0m schema_validation_enabled = true
      �[32m+�[0m�[0m type                      = "Microsoft.Network/virtualNetworks/subnets@2024-01-01"
    }

�[1m  # azurerm_key_vault_secret.key_vault_secret_github_pat�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_key_vault_secret" "key_vault_secret_github_pat" {
      �[32m+�[0m�[0m content_type            = "text/plain"
      �[32m+�[0m�[0m id                      = (known after apply)
      �[32m+�[0m�[0m key_vault_id            = (known after apply)
      �[32m+�[0m�[0m name                    = "github-pat"
      �[32m+�[0m�[0m resource_id             = (known after apply)
      �[32m+�[0m�[0m resource_versionless_id = (known after apply)
      �[32m+�[0m�[0m value                   = (sensitive value)
      �[32m+�[0m�[0m version                 = (known after apply)
      �[32m+�[0m�[0m versionless_id          = (known after apply)
    }

�[1m  # azurerm_resource_group.resource_group_container_app�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_resource_group" "resource_group_container_app" {
      �[32m+�[0m�[0m id       = (known after apply)
      �[32m+�[0m�[0m location = "northeurope"
      �[32m+�[0m�[0m name     = "ghar-prd-container-rg"
      �[32m+�[0m�[0m tags     = {
          �[32m+�[0m�[0m "workload" = "github-action-runners"
        }
    }

�[1m  # azurerm_role_assignment.current_role_assignment_key_vault_secrets_officer�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_role_assignment" "current_role_assignment_key_vault_secrets_officer" {
      �[32m+�[0m�[0m id                               = (known after apply)
      �[32m+�[0m�[0m name                             = (known after apply)
      �[32m+�[0m�[0m principal_id                     = "f81b5b96-f10e-467d-ba0c-4196fd1a31f8"
      �[32m+�[0m�[0m principal_type                   = (known after apply)
      �[32m+�[0m�[0m role_definition_id               = (known after apply)
      �[32m+�[0m�[0m role_definition_name             = "Key Vault Secrets Officer"
      �[32m+�[0m�[0m scope                            = (known after apply)
      �[32m+�[0m�[0m skip_service_principal_aad_check = (known after apply)
    }

�[1m  # azurerm_role_assignment.uai_role_assignment_key_vault_secrets_user�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_role_assignment" "uai_role_assignment_key_vault_secrets_user" {
      �[32m+�[0m�[0m id                               = (known after apply)
      �[32m+�[0m�[0m name                             = (known after apply)
      �[32m+�[0m�[0m principal_id                     = (known after apply)
      �[32m+�[0m�[0m principal_type                   = (known after apply)
      �[32m+�[0m�[0m role_definition_id               = (known after apply)
      �[32m+�[0m�[0m role_definition_name             = "Key Vault Secrets User"
      �[32m+�[0m�[0m scope                            = (known after apply)
      �[32m+�[0m�[0m skip_service_principal_aad_check = (known after apply)
    }

�[1m  # module.application_insights.data.azurerm_monitor_diagnostic_categories.diagnostic_categories_application_insights�[0m will be read during apply
  # (config refers to values not yet known)
�[0m �[36m<=�[0m�[0m data "azurerm_monitor_diagnostic_categories" "diagnostic_categories_application_insights" {
      �[32m+�[0m�[0m id                  = (known after apply)
      �[32m+�[0m�[0m log_category_groups = (known after apply)
      �[32m+�[0m�[0m log_category_types  = (known after apply)
      �[32m+�[0m�[0m metrics             = (known after apply)
      �[32m+�[0m�[0m resource_id         = (known after apply)
    }

�[1m  # module.application_insights.azurerm_application_insights.application_insights�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_application_insights" "application_insights" {
      �[32m+�[0m�[0m app_id                                = (known after apply)
      �[32m+�[0m�[0m application_type                      = "web"
      �[32m+�[0m�[0m connection_string                     = (sensitive value)
      �[32m+�[0m�[0m daily_data_cap_in_gb                  = 100
      �[32m+�[0m�[0m daily_data_cap_notifications_disabled = false
      �[32m+�[0m�[0m disable_ip_masking                    = false
      �[32m+�[0m�[0m force_customer_storage_for_profiler   = false
      �[32m+�[0m�[0m id                                    = (known after apply)
      �[32m+�[0m�[0m instrumentation_key                   = (sensitive value)
      �[32m+�[0m�[0m internet_ingestion_enabled            = true
      �[32m+�[0m�[0m internet_query_enabled                = true
      �[32m+�[0m�[0m local_authentication_disabled         = false
      �[32m+�[0m�[0m location                              = "northeurope"
      �[32m+�[0m�[0m name                                  = "ghar-prd-appi001"
      �[32m+�[0m�[0m resource_group_name                   = "ghar-prd-container-rg"
      �[32m+�[0m�[0m retention_in_days                     = 90
      �[32m+�[0m�[0m sampling_percentage                   = 100
      �[32m+�[0m�[0m tags                                  = {
          �[32m+�[0m�[0m "workload" = "github-action-runners"
        }
      �[32m+�[0m�[0m workspace_id                          = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-logging-rg/providers/Microsoft.OperationalInsights/workspaces/ptt-dev-log001"
    }

�[1m  # module.application_insights.azurerm_monitor_diagnostic_setting.diagnostic_setting_application_insights["0"]�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_monitor_diagnostic_setting" "diagnostic_setting_application_insights" {
      �[32m+�[0m�[0m id                             = (known after apply)
      �[32m+�[0m�[0m log_analytics_destination_type = (known after apply)
      �[32m+�[0m�[0m log_analytics_workspace_id     = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-logging-rg/providers/Microsoft.OperationalInsights/workspaces/ptt-dev-log001"
      �[32m+�[0m�[0m name                           = "applicationLogs-0"
      �[32m+�[0m�[0m target_resource_id             = (known after apply)

      �[32m+�[0m�[0m enabled_log (known after apply)

      �[32m+�[0m�[0m metric (known after apply)
    }

�[1m  # module.key_vault.data.azurerm_monitor_diagnostic_categories.diagnostic_categories_key_vault�[0m will be read during apply
  # (config refers to values not yet known)
�[0m �[36m<=�[0m�[0m data "azurerm_monitor_diagnostic_categories" "diagnostic_categories_key_vault" {
      �[32m+�[0m�[0m id                  = (known after apply)
      �[32m+�[0m�[0m log_category_groups = (known after apply)
      �[32m+�[0m�[0m log_category_types  = (known after apply)
      �[32m+�[0m�[0m metrics             = (known after apply)
      �[32m+�[0m�[0m resource_id         = (known after apply)
    }

�[1m  # module.key_vault.azurerm_key_vault.key_vault�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_key_vault" "key_vault" {
      �[32m+�[0m�[0m access_policy                   = []
      �[32m+�[0m�[0m enable_rbac_authorization       = true
      �[32m+�[0m�[0m enabled_for_deployment          = false
      �[32m+�[0m�[0m enabled_for_disk_encryption     = false
      �[32m+�[0m�[0m enabled_for_template_deployment = false
      �[32m+�[0m�[0m id                              = (known after apply)
      �[32m+�[0m�[0m location                        = "northeurope"
      �[32m+�[0m�[0m name                            = "ghar-prd-kv001"
      �[32m+�[0m�[0m public_network_access_enabled   = false
      �[32m+�[0m�[0m purge_protection_enabled        = true
      �[32m+�[0m�[0m resource_group_name             = "ghar-prd-container-rg"
      �[32m+�[0m�[0m sku_name                        = "standard"
      �[32m+�[0m�[0m soft_delete_retention_days      = 7
      �[32m+�[0m�[0m tags                            = {
          �[32m+�[0m�[0m "workload" = "github-action-runners"
        }
      �[32m+�[0m�[0m tenant_id                       = "37963dd4-f4e6-40f8-a7d6-24b97919e452"
      �[32m+�[0m�[0m vault_uri                       = (known after apply)

      �[32m+�[0m�[0m contact (known after apply)

      �[32m+�[0m�[0m network_acls {
          �[32m+�[0m�[0m bypass         = "AzureServices"
          �[32m+�[0m�[0m default_action = "Deny"
        }
    }

�[1m  # module.key_vault.azurerm_monitor_diagnostic_setting.diagnostic_setting_key_vault["0"]�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_monitor_diagnostic_setting" "diagnostic_setting_key_vault" {
      �[32m+�[0m�[0m id                             = (known after apply)
      �[32m+�[0m�[0m log_analytics_destination_type = (known after apply)
      �[32m+�[0m�[0m log_analytics_workspace_id     = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-logging-rg/providers/Microsoft.OperationalInsights/workspaces/ptt-dev-log001"
      �[32m+�[0m�[0m name                           = "applicationLogs-0"
      �[32m+�[0m�[0m target_resource_id             = (known after apply)

      �[32m+�[0m�[0m enabled_log (known after apply)

      �[32m+�[0m�[0m metric (known after apply)
    }

�[1m  # module.key_vault.azurerm_private_endpoint.private_endpoint_cognitive_account_vault�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_private_endpoint" "private_endpoint_cognitive_account_vault" {
      �[32m+�[0m�[0m custom_dns_configs            = (known after apply)
      �[32m+�[0m�[0m custom_network_interface_name = "ghar-prd-kv001-vault-nic"
      �[32m+�[0m�[0m id                            = (known after apply)
      �[32m+�[0m�[0m location                      = "northeurope"
      �[32m+�[0m�[0m name                          = "ghar-prd-kv001-vault-pe"
      �[32m+�[0m�[0m network_interface             = (known after apply)
      �[32m+�[0m�[0m private_dns_zone_configs      = (known after apply)
      �[32m+�[0m�[0m resource_group_name           = "ghar-prd-container-rg"
      �[32m+�[0m�[0m subnet_id                     = (known after apply)
      �[32m+�[0m�[0m tags                          = {
          �[32m+�[0m�[0m "workload" = "github-action-runners"
        }

      �[32m+�[0m�[0m private_dns_zone_group {
          �[32m+�[0m�[0m id                   = (known after apply)
          �[32m+�[0m�[0m name                 = "ghar-prd-kv001-arecord"
          �[32m+�[0m�[0m private_dns_zone_ids = [
              �[32m+�[0m�[0m "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-privatedns-rg/providers/Microsoft.Network/privateDnsZones/privatelink.vaultcore.azure.net",
            ]
        }

      �[32m+�[0m�[0m private_service_connection {
          �[32m+�[0m�[0m is_manual_connection           = false
          �[32m+�[0m�[0m name                           = "ghar-prd-kv001-vault-svc"
          �[32m+�[0m�[0m private_connection_resource_id = (known after apply)
          �[32m+�[0m�[0m private_ip_address             = (known after apply)
          �[32m+�[0m�[0m subresource_names              = [
              �[32m+�[0m�[0m "vault",
            ]
        }
    }

�[1m  # module.key_vault.azurerm_role_assignment.current_roleassignment_key_vault�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_role_assignment" "current_roleassignment_key_vault" {
      �[32m+�[0m�[0m id                               = (known after apply)
      �[32m+�[0m�[0m name                             = (known after apply)
      �[32m+�[0m�[0m principal_id                     = "f81b5b96-f10e-467d-ba0c-4196fd1a31f8"
      �[32m+�[0m�[0m principal_type                   = (known after apply)
      �[32m+�[0m�[0m role_definition_id               = (known after apply)
      �[32m+�[0m�[0m role_definition_name             = "Key Vault Administrator"
      �[32m+�[0m�[0m scope                            = (known after apply)
      �[32m+�[0m�[0m skip_service_principal_aad_check = (known after apply)
    }

�[1m  # module.key_vault.time_sleep.sleep_connectivity�[0m will be created
�[0m  �[32m+�[0m�[0m resource "time_sleep" "sleep_connectivity" {
      �[32m+�[0m�[0m create_duration = "120s"
      �[32m+�[0m�[0m id              = (known after apply)
    }

�[1m  # module.user_assigned_identity.azurerm_user_assigned_identity.user_assigned_identity�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_user_assigned_identity" "user_assigned_identity" {
      �[32m+�[0m�[0m client_id           = (known after apply)
      �[32m+�[0m�[0m id                  = (known after apply)
      �[32m+�[0m�[0m location            = "northeurope"
      �[32m+�[0m�[0m name                = "ghar-prd-uai001"
      �[32m+�[0m�[0m principal_id        = (known after apply)
      �[32m+�[0m�[0m resource_group_name = "ghar-prd-container-rg"
      �[32m+�[0m�[0m tags                = {
          �[32m+�[0m�[0m "workload" = "github-action-runners"
        }
      �[32m+�[0m�[0m tenant_id           = (known after apply)
    }

�[1mPlan:�[0m 16 to add, 0 to change, 0 to destroy.
�[0m�[90m
─────────────────────────────────────────────────────────────────────────────�[0m

Note: You didn't use the -out option to save this plan, so Terraform can't
guarantee to take exactly these actions if you run "terraform apply" now.

github-actions · 2024-09-26T08:22:29Z

Terraform Lint Results

Terraform Version 📎1.9.6
Working Directory 📂./code/infra
Terraform Format and Style 🖌success

github-actions · 2024-09-26T08:23:55Z

Terraform Validation & Plan Results

Terraform Version 📎1.9.6
Working Directory 📂./code/infra
Terraform Initialization ⚙️success
Terraform Validation 🤖success
Terraform Plan 📖success

Show Plan


terraform
�[0m�[1mdata.azurerm_virtual_network.virtual_network: Reading...�[0m�[0m
�[0m�[1mdata.azurerm_log_analytics_workspace.log_analytics_workspace: Reading...�[0m�[0m
�[0m�[1mmodule.key_vault.data.azurerm_client_config.current: Reading...�[0m�[0m
�[0m�[1mdata.azurerm_client_config.current: Reading...�[0m�[0m
�[0m�[1mdata.azurerm_network_security_group.network_security_group: Reading...�[0m�[0m
�[0m�[1mazurerm_resource_group.resource_group_container_app: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg]�[0m
�[0m�[1mdata.azurerm_route_table.route_table: Reading...�[0m�[0m
�[0m�[1mmodule.key_vault.data.azurerm_client_config.current: Read complete after 0s [id=Y2xpZW50Q29uZmlncy9jbGllbnRJZD1hYzA5N2FkYS0yOTQyLTQwMjItYTEzNy1lN2JhYmQ3N2I4Yzc7b2JqZWN0SWQ9ZjgxYjViOTYtZjEwZS00NjdkLWJhMGMtNDE5NmZkMWEzMWY4O3N1YnNjcmlwdGlvbklkPWU4MmM1MjY3LTlkYzQtNGY0NS1hYzEzLWFiZGQ1ZTEzMGQyNzt0ZW5hbnRJZD0zNzk2M2RkNC1mNGU2LTQwZjgtYTdkNi0yNGI5NzkxOWU0NTI=]�[0m
�[0m�[1mdata.azurerm_client_config.current: Read complete after 0s [id=Y2xpZW50Q29uZmlncy9jbGllbnRJZD1hYzA5N2FkYS0yOTQyLTQwMjItYTEzNy1lN2JhYmQ3N2I4Yzc7b2JqZWN0SWQ9ZjgxYjViOTYtZjEwZS00NjdkLWJhMGMtNDE5NmZkMWEzMWY4O3N1YnNjcmlwdGlvbklkPWU4MmM1MjY3LTlkYzQtNGY0NS1hYzEzLWFiZGQ1ZTEzMGQyNzt0ZW5hbnRJZD0zNzk2M2RkNC1mNGU2LTQwZjgtYTdkNi0yNGI5NzkxOWU0NTI=]�[0m
�[0m�[1mmodule.user_assigned_identity.azurerm_user_assigned_identity.user_assigned_identity: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.ManagedIdentity/userAssignedIdentities/ghar-prd-uai001]�[0m
�[0m�[1mmodule.key_vault.azurerm_key_vault.key_vault: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001]�[0m
�[0m�[1mmodule.application_insights.azurerm_application_insights.application_insights: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.Insights/components/ghar-prd-appi001]�[0m
�[0m�[1mdata.azurerm_route_table.route_table: Read complete after 0s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/routeTables/ptt-dev-default-rt001]�[0m
�[0m�[1mdata.azurerm_network_security_group.network_security_group: Read complete after 0s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/networkSecurityGroups/ptt-dev-default-nsg001]�[0m
�[0m�[1mdata.azurerm_virtual_network.virtual_network: Read complete after 0s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/virtualNetworks/ptt-dev-vnet001]�[0m
�[0m�[1mdata.azurerm_log_analytics_workspace.log_analytics_workspace: Read complete after 0s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-logging-rg/providers/Microsoft.OperationalInsights/workspaces/ptt-dev-log001]�[0m
�[0m�[1mmodule.application_insights.data.azurerm_monitor_diagnostic_categories.diagnostic_categories_application_insights: Reading...�[0m�[0m
�[0m�[1mmodule.application_insights.data.azurerm_monitor_diagnostic_categories.diagnostic_categories_application_insights: Read complete after 1s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.Insights/components/ghar-prd-appi001]�[0m
�[0m�[1mmodule.application_insights.azurerm_monitor_diagnostic_setting.diagnostic_setting_application_insights["0"]: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.Insights/components/ghar-prd-appi001|applicationLogs-0]�[0m
�[0m�[1mmodule.key_vault.azurerm_role_assignment.current_roleassignment_key_vault: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001/providers/Microsoft.Authorization/roleAssignments/d57023f6-9785-298e-a302-37abbe739271]�[0m
�[0m�[1mmodule.key_vault.data.azurerm_monitor_diagnostic_categories.diagnostic_categories_key_vault: Reading...�[0m�[0m
�[0m�[1mazurerm_role_assignment.uai_role_assignment_key_vault_secrets_user: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001/providers/Microsoft.Authorization/roleAssignments/0ccead67-5873-d54b-c77e-c82584e25096]�[0m
�[0m�[1mazurerm_role_assignment.current_role_assignment_key_vault_secrets_officer: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001/providers/Microsoft.Authorization/roleAssignments/47ed6b6b-edec-179d-cca8-76371fdbf9d6]�[0m
�[0m�[1mmodule.key_vault.data.azurerm_monitor_diagnostic_categories.diagnostic_categories_key_vault: Read complete after 0s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001]�[0m
�[0m�[1mmodule.key_vault.azurerm_monitor_diagnostic_setting.diagnostic_setting_key_vault["0"]: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001|applicationLogs-0]�[0m

Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
  �[32m+�[0m create�[0m

Terraform will perform the following actions:

�[1m  # azapi_resource.container_apps_environment�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azapi_resource" "container_apps_environment" {
      �[32m+�[0m�[0m body                      = (sensitive value)
      �[32m+�[0m�[0m id                        = (known after apply)
      �[32m+�[0m�[0m ignore_casing             = false
      �[32m+�[0m�[0m ignore_missing_property   = true
      �[32m+�[0m�[0m location                  = "northeurope"
      �[32m+�[0m�[0m name                      = "ghar-prd-cae001"
      �[32m+�[0m�[0m output                    = (known after apply)
      �[32m+�[0m�[0m parent_id                 = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg"
      �[32m+�[0m�[0m removing_special_chars    = false
      �[32m+�[0m�[0m schema_validation_enabled = true
      �[32m+�[0m�[0m tags                      = {
          �[32m+�[0m�[0m "workload" = "github-action-runners"
        }
      �[32m+�[0m�[0m type                      = "Microsoft.App/managedEnvironments@2024-03-01"
    }

�[1m  # azapi_resource.container_apps_job�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azapi_resource" "container_apps_job" {
      �[32m+�[0m�[0m body                      = (sensitive value)
      �[32m+�[0m�[0m id                        = (known after apply)
      �[32m+�[0m�[0m ignore_casing             = false
      �[32m+�[0m�[0m ignore_missing_property   = true
      �[32m+�[0m�[0m location                  = "northeurope"
      �[32m+�[0m�[0m name                      = "ghar-prd-caj001"
      �[32m+�[0m�[0m output                    = (known after apply)
      �[32m+�[0m�[0m parent_id                 = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg"
      �[32m+�[0m�[0m removing_special_chars    = false
      �[32m+�[0m�[0m schema_validation_enabled = true
      �[32m+�[0m�[0m tags                      = {
          �[32m+�[0m�[0m "workload" = "github-action-runners"
        }
      �[32m+�[0m�[0m type                      = "Microsoft.App/jobs@2024-03-01"

      �[32m+�[0m�[0m identity {
          �[32m+�[0m�[0m identity_ids = [
              �[32m+�[0m�[0m "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.ManagedIdentity/userAssignedIdentities/ghar-prd-uai001",
            ]
          �[32m+�[0m�[0m principal_id = (known after apply)
          �[32m+�[0m�[0m tenant_id    = (known after apply)
          �[32m+�[0m�[0m type         = "UserAssigned"
        }
    }

�[1m  # azapi_resource.subnet_container_app�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azapi_resource" "subnet_container_app" {
      �[32m+�[0m�[0m body                      = jsonencode(
            {
              �[32m+�[0m�[0m properties = {
                  �[32m+�[0m�[0m addressPrefix                     = "10.0.2.64/26"
                  �[32m+�[0m�[0m delegations                       = [
                      �[32m+�[0m�[0m {
                          �[32m+�[0m�[0m name       = "ContainerAppDelegation"
                          �[32m+�[0m�[0m properties = {
                              �[32m+�[0m�[0m serviceName = "Microsoft.App/environments"
                            }
                        },
                    ]
                  �[32m+�[0m�[0m ipAllocations                     = []
                  �[32m+�[0m�[0m networkSecurityGroup              = {
                      �[32m+�[0m�[0m id = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/networkSecurityGroups/ptt-dev-default-nsg001"
                    }
                  �[32m+�[0m�[0m privateEndpointNetworkPolicies    = "Enabled"
                  �[32m+�[0m�[0m privateLinkServiceNetworkPolicies = "Enabled"
                  �[32m+�[0m�[0m routeTable                        = {
                      �[32m+�[0m�[0m id = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/routeTables/ptt-dev-default-rt001"
                    }
                  �[32m+�[0m�[0m serviceEndpointPolicies           = []
                  �[32m+�[0m�[0m serviceEndpoints                  = []
                }
            }
        )
      �[32m+�[0m�[0m id                        = (known after apply)
      �[32m+�[0m�[0m ignore_casing             = false
      �[32m+�[0m�[0m ignore_missing_property   = true
      �[32m+�[0m�[0m name                      = "ConAppEnvironmentSubnet"
      �[32m+�[0m�[0m output                    = (known after apply)
      �[32m+�[0m�[0m parent_id                 = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/virtualNetworks/ptt-dev-vnet001"
      �[32m+�[0m�[0m removing_special_chars    = false
      �[32m+�[0m�[0m schema_validation_enabled = true
      �[32m+�[0m�[0m type                      = "Microsoft.Network/virtualNetworks/subnets@2024-01-01"
    }

�[1m  # azapi_resource.subnet_private_endpoints�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azapi_resource" "subnet_private_endpoints" {
      �[32m+�[0m�[0m body                      = jsonencode(
            {
              �[32m+�[0m�[0m properties = {
                  �[32m+�[0m�[0m addressPrefix                     = "10.0.2.128/26"
                  �[32m+�[0m�[0m delegations                       = []
                  �[32m+�[0m�[0m ipAllocations                     = []
                  �[32m+�[0m�[0m networkSecurityGroup              = {
                      �[32m+�[0m�[0m id = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/networkSecurityGroups/ptt-dev-default-nsg001"
                    }
                  �[32m+�[0m�[0m privateEndpointNetworkPolicies    = "Enabled"
                  �[32m+�[0m�[0m privateLinkServiceNetworkPolicies = "Enabled"
                  �[32m+�[0m�[0m routeTable                        = {
                      �[32m+�[0m�[0m id = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/routeTables/ptt-dev-default-rt001"
                    }
                  �[32m+�[0m�[0m serviceEndpointPolicies           = []
                  �[32m+�[0m�[0m serviceEndpoints                  = []
                }
            }
        )
      �[32m+�[0m�[0m id                        = (known after apply)
      �[32m+�[0m�[0m ignore_casing             = false
      �[32m+�[0m�[0m ignore_missing_property   = true
      �[32m+�[0m�[0m name                      = "ConAppPrivateEndpointSubnet"
      �[32m+�[0m�[0m output                    = (known after apply)
      �[32m+�[0m�[0m parent_id                 = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/virtualNetworks/ptt-dev-vnet001"
      �[32m+�[0m�[0m removing_special_chars    = false
      �[32m+�[0m�[0m schema_validation_enabled = true
      �[32m+�[0m�[0m type                      = "Microsoft.Network/virtualNetworks/subnets@2024-01-01"
    }

�[1m  # azurerm_key_vault_secret.key_vault_secret_github_pat�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_key_vault_secret" "key_vault_secret_github_pat" {
      �[32m+�[0m�[0m content_type            = "text/plain"
      �[32m+�[0m�[0m id                      = (known after apply)
      �[32m+�[0m�[0m key_vault_id            = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001"
      �[32m+�[0m�[0m name                    = "github-pat"
      �[32m+�[0m�[0m resource_id             = (known after apply)
      �[32m+�[0m�[0m resource_versionless_id = (known after apply)
      �[32m+�[0m�[0m value                   = (sensitive value)
      �[32m+�[0m�[0m version                 = (known after apply)
      �[32m+�[0m�[0m versionless_id          = (known after apply)
    }

�[1m  # module.key_vault.azurerm_private_endpoint.private_endpoint_cognitive_account_vault�[0m will be created
�[0m  �[32m+�[0m�[0m resource "azurerm_private_endpoint" "private_endpoint_cognitive_account_vault" {
      �[32m+�[0m�[0m custom_dns_configs            = (known after apply)
      �[32m+�[0m�[0m custom_network_interface_name = "ghar-prd-kv001-vault-nic"
      �[32m+�[0m�[0m id                            = (known after apply)
      �[32m+�[0m�[0m location                      = "northeurope"
      �[32m+�[0m�[0m name                          = "ghar-prd-kv001-vault-pe"
      �[32m+�[0m�[0m network_interface             = (known after apply)
      �[32m+�[0m�[0m private_dns_zone_configs      = (known after apply)
      �[32m+�[0m�[0m resource_group_name           = "ghar-prd-container-rg"
      �[32m+�[0m�[0m subnet_id                     = (known after apply)
      �[32m+�[0m�[0m tags                          = {
          �[32m+�[0m�[0m "workload" = "github-action-runners"
        }

      �[32m+�[0m�[0m private_dns_zone_group {
          �[32m+�[0m�[0m id                   = (known after apply)
          �[32m+�[0m�[0m name                 = "ghar-prd-kv001-arecord"
          �[32m+�[0m�[0m private_dns_zone_ids = [
              �[32m+�[0m�[0m "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-privatedns-rg/providers/Microsoft.Network/privateDnsZones/privatelink.vaultcore.azure.net",
            ]
        }

      �[32m+�[0m�[0m private_service_connection {
          �[32m+�[0m�[0m is_manual_connection           = false
          �[32m+�[0m�[0m name                           = "ghar-prd-kv001-vault-svc"
          �[32m+�[0m�[0m private_connection_resource_id = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001"
          �[32m+�[0m�[0m private_ip_address             = (known after apply)
          �[32m+�[0m�[0m subresource_names              = [
              �[32m+�[0m�[0m "vault",
            ]
        }
    }

�[1m  # module.key_vault.time_sleep.sleep_connectivity�[0m will be created
�[0m  �[32m+�[0m�[0m resource "time_sleep" "sleep_connectivity" {
      �[32m+�[0m�[0m create_duration = "120s"
      �[32m+�[0m�[0m id              = (known after apply)
    }

�[1mPlan:�[0m 7 to add, 0 to change, 0 to destroy.
�[0m�[90m
─────────────────────────────────────────────────────────────────────────────�[0m

Note: You didn't use the -out option to save this plan, so Terraform can't
guarantee to take exactly these actions if you run "terraform apply" now.

github-actions · 2024-09-26T10:19:46Z

Terraform Lint Results

Terraform Version 📎1.9.6
Working Directory 📂./code/infra
Terraform Format and Style 🖌success

github-actions · 2024-09-26T10:20:23Z

Terraform Validation & Plan Results

Terraform Version 📎1.9.6
Working Directory 📂./code/infra
Terraform Initialization ⚙️success
Terraform Validation 🤖success
Terraform Plan 📖success

Show Plan


terraform
�[0m�[1mazurerm_resource_group.resource_group_container_app: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg]�[0m
�[0m�[1mdata.azurerm_log_analytics_workspace.log_analytics_workspace: Reading...�[0m�[0m
�[0m�[1mdata.azurerm_virtual_network.virtual_network: Reading...�[0m�[0m
�[0m�[1mdata.azurerm_client_config.current: Reading...�[0m�[0m
�[0m�[1mmodule.key_vault.data.azurerm_client_config.current: Reading...�[0m�[0m
�[0m�[1mdata.azurerm_route_table.route_table: Reading...�[0m�[0m
�[0m�[1mdata.azurerm_network_security_group.network_security_group: Reading...�[0m�[0m
�[0m�[1mdata.azurerm_client_config.current: Read complete after 0s [id=Y2xpZW50Q29uZmlncy9jbGllbnRJZD1hYzA5N2FkYS0yOTQyLTQwMjItYTEzNy1lN2JhYmQ3N2I4Yzc7b2JqZWN0SWQ9ZjgxYjViOTYtZjEwZS00NjdkLWJhMGMtNDE5NmZkMWEzMWY4O3N1YnNjcmlwdGlvbklkPWU4MmM1MjY3LTlkYzQtNGY0NS1hYzEzLWFiZGQ1ZTEzMGQyNzt0ZW5hbnRJZD0zNzk2M2RkNC1mNGU2LTQwZjgtYTdkNi0yNGI5NzkxOWU0NTI=]�[0m
�[0m�[1mmodule.key_vault.data.azurerm_client_config.current: Read complete after 0s [id=Y2xpZW50Q29uZmlncy9jbGllbnRJZD1hYzA5N2FkYS0yOTQyLTQwMjItYTEzNy1lN2JhYmQ3N2I4Yzc7b2JqZWN0SWQ9ZjgxYjViOTYtZjEwZS00NjdkLWJhMGMtNDE5NmZkMWEzMWY4O3N1YnNjcmlwdGlvbklkPWU4MmM1MjY3LTlkYzQtNGY0NS1hYzEzLWFiZGQ1ZTEzMGQyNzt0ZW5hbnRJZD0zNzk2M2RkNC1mNGU2LTQwZjgtYTdkNi0yNGI5NzkxOWU0NTI=]�[0m
�[0m�[1mdata.azurerm_route_table.route_table: Read complete after 0s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/routeTables/ptt-dev-default-rt001]�[0m
�[0m�[1mmodule.user_assigned_identity.azurerm_user_assigned_identity.user_assigned_identity: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.ManagedIdentity/userAssignedIdentities/ghar-prd-uai001]�[0m
�[0m�[1mmodule.key_vault.azurerm_key_vault.key_vault: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001]�[0m
�[0m�[1mmodule.application_insights.azurerm_application_insights.application_insights: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.Insights/components/ghar-prd-appi001]�[0m
�[0m�[1mdata.azurerm_virtual_network.virtual_network: Read complete after 1s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/virtualNetworks/ptt-dev-vnet001]�[0m
�[0m�[1mdata.azurerm_network_security_group.network_security_group: Read complete after 1s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/networkSecurityGroups/ptt-dev-default-nsg001]�[0m
�[0m�[1mazapi_resource.subnet_container_app: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/virtualNetworks/ptt-dev-vnet001/subnets/ConAppEnvironmentSubnet]�[0m
�[0m�[1mdata.azurerm_log_analytics_workspace.log_analytics_workspace: Read complete after 1s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-logging-rg/providers/Microsoft.OperationalInsights/workspaces/ptt-dev-log001]�[0m
�[0m�[1mmodule.key_vault.data.azurerm_monitor_diagnostic_categories.diagnostic_categories_key_vault: Reading...�[0m�[0m
�[0m�[1mmodule.key_vault.azurerm_role_assignment.current_roleassignment_key_vault: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001/providers/Microsoft.Authorization/roleAssignments/d57023f6-9785-298e-a302-37abbe739271]�[0m
�[0m�[1mazurerm_role_assignment.current_role_assignment_key_vault_secrets_officer: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001/providers/Microsoft.Authorization/roleAssignments/47ed6b6b-edec-179d-cca8-76371fdbf9d6]�[0m
�[0m�[1mazurerm_role_assignment.uai_role_assignment_key_vault_secrets_user: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001/providers/Microsoft.Authorization/roleAssignments/0ccead67-5873-d54b-c77e-c82584e25096]�[0m
�[0m�[1mmodule.application_insights.data.azurerm_monitor_diagnostic_categories.diagnostic_categories_application_insights: Reading...�[0m�[0m
�[0m�[1mmodule.application_insights.data.azurerm_monitor_diagnostic_categories.diagnostic_categories_application_insights: Read complete after 0s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.Insights/components/ghar-prd-appi001]�[0m
�[0m�[1mmodule.application_insights.azurerm_monitor_diagnostic_setting.diagnostic_setting_application_insights["0"]: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.Insights/components/ghar-prd-appi001|applicationLogs-0]�[0m
�[0m�[1mmodule.key_vault.data.azurerm_monitor_diagnostic_categories.diagnostic_categories_key_vault: Read complete after 1s [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001]�[0m
�[0m�[1mmodule.key_vault.azurerm_monitor_diagnostic_setting.diagnostic_setting_key_vault["0"]: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.KeyVault/vaults/ghar-prd-kv001|applicationLogs-0]�[0m
�[0m�[1mazapi_resource.subnet_private_endpoints: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ptt-dev-hub-northeurope-rg/providers/Microsoft.Network/virtualNetworks/ptt-dev-vnet001/subnets/ConAppPrivateEndpointSubnet]�[0m
�[0m�[1mazapi_resource.container_apps_environment: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.App/managedEnvironments/ghar-prd-cae001]�[0m
�[0m�[1mmodule.key_vault.azurerm_private_endpoint.private_endpoint_cognitive_account_vault: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.Network/privateEndpoints/ghar-prd-kv001-vault-pe]�[0m
�[0m�[1mmodule.key_vault.time_sleep.sleep_connectivity: Refreshing state... [id=2024-09-26T08:28:50Z]�[0m
�[0m�[1mazurerm_key_vault_secret.key_vault_secret_github_pat: Refreshing state... [id=https://ghar-prd-kv001.vault.azure.net/secrets/github-pat/c8738d71cacd437195e1cb7da5147276]�[0m
�[0m�[1mazapi_resource.container_apps_job: Refreshing state... [id=/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.App/jobs/ghar-prd-caj001]�[0m

Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
  �[33m~�[0m update in-place�[0m

Terraform will perform the following actions:

�[1m  # azapi_resource.container_apps_job�[0m will be updated in-place
�[0m  �[33m~�[0m�[0m resource "azapi_resource" "container_apps_job" {
      �[33m~�[0m�[0m body                      = (sensitive value)
        id                        = "/subscriptions/e82c5267-9dc4-4f45-ac13-abdd5e130d27/resourceGroups/ghar-prd-container-rg/providers/Microsoft.App/jobs/ghar-prd-caj001"
        name                      = "ghar-prd-caj001"
      �[33m~�[0m�[0m output                    = jsonencode({}) -> (known after apply)
        tags                      = {
            "workload" = "github-action-runners"
        }
        �[90m# (7 unchanged attributes hidden)�[0m�[0m

        �[90m# (1 unchanged block hidden)�[0m�[0m
    }

�[1mPlan:�[0m 0 to add, 1 to change, 0 to destroy.
�[0m�[90m
─────────────────────────────────────────────────────────────────────────────�[0m

Note: You didn't use the -out option to save this plan, so Terraform can't
guarantee to take exactly these actions if you run "terraform apply" now.

marvinbuss

LGTM!

marvinbuss added 2 commits September 26, 2024 09:34

Update azurerm to v4.3.0

3b84451

Tets deployment

db62439

marvinbuss added the enhancement New feature or request label Sep 26, 2024

marvinbuss self-assigned this Sep 26, 2024

marvinbuss had a problem deploying to dev September 26, 2024 07:37 — with GitHub Actions Failure

marvinbuss added 3 commits September 26, 2024 09:38

Update provider config

c21c088

Add missing provider reference and dependency

98bdf91

lint

7bd41aa

marvinbuss had a problem deploying to dev September 26, 2024 07:41 — with GitHub Actions Failure

Add concurrency feature to workflow

ad5833a

marvinbuss had a problem deploying to dev September 26, 2024 07:43 — with GitHub Actions Failure

Fix minor bugs

c77eb82

marvinbuss had a problem deploying to dev September 26, 2024 07:46 — with GitHub Actions Failure

Fix reference in module

cb9b414

marvinbuss temporarily deployed to dev September 26, 2024 08:14 — with GitHub Actions Inactive

marvinbuss had a problem deploying to dev September 26, 2024 08:15 — with GitHub Actions Failure

Update network settings

755c796

marvinbuss temporarily deployed to dev September 26, 2024 08:22 — with GitHub Actions Inactive

marvinbuss had a problem deploying to dev September 26, 2024 08:24 — with GitHub Actions Failure

marvinbuss had a problem deploying to dev September 26, 2024 08:30 — with GitHub Actions Failure

marvinbuss had a problem deploying to dev September 26, 2024 08:34 — with GitHub Actions Failure

marvinbuss had a problem deploying to dev September 26, 2024 09:40 — with GitHub Actions Failure

marvinbuss temporarily deployed to dev September 26, 2024 10:05 — with GitHub Actions Inactive

Disable apply on PR

3659a2f

marvinbuss temporarily deployed to dev September 26, 2024 10:19 — with GitHub Actions Inactive

marvinbuss commented Sep 26, 2024

View reviewed changes

marvinbuss merged commit 4ffaef3 into main Sep 26, 2024
4 checks passed

marvinbuss deleted the marvinbuss/update_azurerm branch September 26, 2024 10:21

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update azurerm to v4.3.0 & Switch to Modules #110

Update azurerm to v4.3.0 & Switch to Modules #110

marvinbuss commented Sep 26, 2024

github-actions bot commented Sep 26, 2024

github-actions bot commented Sep 26, 2024

github-actions bot commented Sep 26, 2024

github-actions bot commented Sep 26, 2024

github-actions bot commented Sep 26, 2024

github-actions bot commented Sep 26, 2024

github-actions bot commented Sep 26, 2024

github-actions bot commented Sep 26, 2024

github-actions bot commented Sep 26, 2024

github-actions bot commented Sep 26, 2024

marvinbuss left a comment

Update azurerm to v4.3.0 & Switch to Modules #110

Update azurerm to v4.3.0 & Switch to Modules #110

Conversation

marvinbuss commented Sep 26, 2024

github-actions bot commented Sep 26, 2024

Terraform Lint Results

github-actions bot commented Sep 26, 2024

Terraform Lint Results

github-actions bot commented Sep 26, 2024

Terraform Lint Results

github-actions bot commented Sep 26, 2024

Terraform Lint Results

github-actions bot commented Sep 26, 2024

Terraform Lint Results

github-actions bot commented Sep 26, 2024

Terraform Validation & Plan Results

github-actions bot commented Sep 26, 2024

Terraform Lint Results

github-actions bot commented Sep 26, 2024

Terraform Validation & Plan Results

github-actions bot commented Sep 26, 2024

Terraform Lint Results

github-actions bot commented Sep 26, 2024

Terraform Validation & Plan Results

marvinbuss left a comment

Choose a reason for hiding this comment