Closed KSchlobohm closed 1 year ago
Observations:
App:RelecloudApi:BaseUri
failed, it has not interaction with other resources. It's just text so when we see that the access is deined error applies to this setting I am led to understand that the access isn't to key vault but the access to App Configuration Service itself. As the permissions for APp Configuration Service are applied by this deployment the resource becomes more accessible, not less. So this surfaces the idea that the 'access' issue is a network issue.This error appears to match the error, and behavior, of what would happen if the Azure Resource Provider used the data plane to set a key value in App Configuration Service while the Configuration Service has public-network-access disabled.
PUT /subscriptions/eeeeeeee-8888-3333-9999-cccccccccccc/resourceGroups/temp/providers/Microsoft.AppConfiguration/configurationStores/appcc/keyValues/test?api-version=2022-05-01
{ "properties": { "value": "hello" } }
{ "error": { "code": "Forbidden", "message": "Access to the requested resource is forbidden.", "additionalInfo": [ { "type": "ActivityId", "info": { "activityId": "11111111-bbbb-4444-dddd-666666666666" } } ] } }
After adding network security to the app config service we're seeing a new error related to setting values.