@@ -55,36 +55,6 @@ resource "azurerm_role_assignment" "meshcloud_metering" {
5555 principal_id = . meshcloud_metering . id
5656}
5757
58- // ---------------------------------------------------------------------------
59- // Create custom role definition
60- // ---------------------------------------------------------------------------
61- # If more resources are collected in the future, the permissions to read those should be added here.
62- resource "azurerm_role_definition" "meshcloud_metering_cloud_inventory_role" {
63- name = " metering.${ var . service_principal_name_suffix } _cloud_inventory_role"
64- scope = . scope
65- description = " Permissions required by meshcloud in order to collect information about resources in the metering module"
66-
67- permissions {
68- actions =
69- " Microsoft.Network/publicIPAddresses/read"
70- " Microsoft.Network/networkInterfaces/read"
71- " Microsoft.Compute/virtualMachines/*/read"
72- ]
73- }
74-
75- assignable_scopes =
76- var . scope
77- ]
78- }
79-
80- // ---------------------------------------------------------------------------
81- // Assign Custom role to the enterprise application
82- // ---------------------------------------------------------------------------
83- resource "azurerm_role_assignment" "meshcloud_metering_cloud_inventory" {
84- scope = . scope
85- role_definition_id = . meshcloud_metering_cloud_inventory_role . role_definition_resource_id
86- principal_id = . meshcloud_metering . id
87- }
8858
8959// ---------------------------------------------------------------------------
9060// Create New application in Microsoft Entra ID
@@ -141,16 +111,6 @@ moved {
141111 to = . meshcloud_metering
142112}
143113
144- moved {
145- from = . meshcloud_kraken_cloud_inventory_role
146- to = . meshcloud_metering_cloud_inventory_role
147- }
148-
149- moved {
150- from = . meshcloud_kraken_cloud_inventory
151- to = . meshcloud_metering_cloud_inventory
152- }
153-
154114moved {
155115 from = . meshcloud_kraken
156116 to = . meshcloud_metering
0 commit comments