-
Notifications
You must be signed in to change notification settings - Fork 499
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Namespace-level role assignments are created on resource group level #408
Comments
The issue could very likely come from I unfortunately do not have the bandwidth right now to help triage this further, but the tip I will leave for you is:
Meaning:
I'm hoping one of those situations are what you are facing. If not, we can keep this issue open, but expect quite a delay before our team could engage further. |
I have since gotten feedback from Azure's support. My issue was a lack in the bicep compiler, apparently, which doesn't provide enough information about the issue at hand. I was generating the role assignment in a for-loop, where the scope was built using the for-variable. This is currently not supported, which leads to the scope defaulting to the resource group (in this case). The issue is that this is not communicated to the user as an error, masking the problem. The solution was then to eliminate the for loop, making the scope known at compile time. Below is my response from support:
|
Hello all,
I am currently experiencing a peculiar problem, where the namespace role assignments (
aks-baseline/cluster-stamp.bicep
Line 1956 in 51cd9d0
Below is my adaptation of this repository, in a minimal working example, which results in the described behaviour. Is this something that other users of
aks-baseline
experience? Can I troubleshoot this somehow?The text was updated successfully, but these errors were encountered: