search

agera-edc / MinimumViableDataspace

Guidance on documentation, scripts and integration steps on using the EDC project results
Apache License 2.0
0 stars 2 forks source link

Deployment fails with AKV RBAC #205

Closed algattik closed 2 years ago

algattik commented 2 years ago

Verify step fails https://github.com/agera-edc/MinimumViableDataspace/runs/7384302037?check_suite_focus=true

Status code 403, "{"error":{"code":"Forbidden","message":"Caller is not authorized to perform action on resource.\r\nIf role assignments, deny assignments or role definitions were changed recently, please observe propagation time.\r\nCaller: appid=fd29669c-a4f5-4225-bb06-506117b34254;oid=d73ce6d5-d4c9-462e-9d04-8260e39fad63;iss=[https://sts.windows.net/***/\r\nAction:](https://sts.windows.net/***//r/nAction:) 'Microsoft.KeyVault/vaults/secrets/readMetadata/action'\r\nResource: '/subscriptions/***/resourcegroups/rg-company2-ag99/providers/microsoft.keyvault/vaults/kvag99company2'\r\nAssignment: (not found)\r\nVault: kvag99company2;location=northeurope\r\n","innererror":{"code":"ForbiddenByRbac"}}}"
[283](https://github.com/agera-edc/MinimumViableDataspace/runs/7384302037?check_suite_focus=true#step:5:284)
    com.azure.core.exception.HttpResponseException: Status code 403, "{"error":{"code":"Forbidden","message":"Caller is not authorized to perform action on resource.\r\nIf role assignments, deny assignments or role definitions were changed recently, please observe propagation time.\r\nCaller: appid=fd29669c-a4f5-4225-bb06-506117b34254;oid=d73ce6d5-d4c9-462e-9d04-8260e39fad63;iss=[https://sts.windows.net/***/\r\nAction:](https://sts.windows.net/***//r/nAction:) 'Microsoft.KeyVault/vaults/secrets/readMetadata/action'\r\nResource: '/subscriptions/***/resourcegroups/rg-company2-ag99/providers/microsoft.keyvault/vaults/kvag99company2'\r\nAssignment: (not found)\r\nVault: kvag99company2;location=northeurope\r\n","innererror":{"code":"ForbiddenByRbac"}}}"
[284](https://github.com/agera-edc/MinimumViableDataspace/runs/7384302037?check_suite_focus=true#step:5:285)
        at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
[285](https://github.com/agera-edc/MinimumViableDataspace/runs/7384302037?check_suite_focus=true#step:5:286)
        at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:77)
[286](https://github.com/agera-edc/MinimumViableDataspace/runs/7384302037?check_suite_focus=true#step:5:287)
        at