search

hashicorp / terraform-provider-azurerm

Terraform provider for Azure Resource Manager
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs
Mozilla Public License 2.0
4.59k stars 4.63k forks source link

Missing key vault certificate permissions #538

Closed JasonNguyenTX closed 6 years ago

JasonNguyenTX commented 6 years ago

For certificate_permissions, purge, recover, and all are not accepted as permissions. Can these be added?

tombuildsstuff commented 6 years ago

Hi @JasonNguyenTX

Thanks for opening this issue :)

We previously supported the all permission across the KeyVault Permissions - however support for this has been removed by Azure in favour of listing each permission individually - so we're unable to support this unfortunately.

From what I can see Purge and Recover have also been deprecated - would it be possible to give an example usage of these? Here's the values for this field available in the Azure SDK for Go:

// KeyUsageType enumerates the values for key usage type.
type KeyUsageType string

const (
    // CRLSign specifies the crl sign state for key usage type.
    CRLSign KeyUsageType = "cRLSign"
    // DataEncipherment specifies the data encipherment state for key usage type.
    DataEncipherment KeyUsageType = "dataEncipherment"
    // DecipherOnly specifies the decipher only state for key usage type.
    DecipherOnly KeyUsageType = "decipherOnly"
    // DigitalSignature specifies the digital signature state for key usage type.
    DigitalSignature KeyUsageType = "digitalSignature"
    // EncipherOnly specifies the encipher only state for key usage type.
    EncipherOnly KeyUsageType = "encipherOnly"
    // KeyAgreement specifies the key agreement state for key usage type.
    KeyAgreement KeyUsageType = "keyAgreement"
    // KeyCertSign specifies the key cert sign state for key usage type.
    KeyCertSign KeyUsageType = "keyCertSign"
    // KeyEncipherment specifies the key encipherment state for key usage type.
    KeyEncipherment KeyUsageType = "keyEncipherment"
    // NonRepudiation specifies the non repudiation state for key usage type.
    NonRepudiation KeyUsageType = "nonRepudiation"
)

Thanks!

tombuildsstuff commented 6 years ago

ping @JasonNguyenTX :)

tombuildsstuff commented 6 years ago

Hi @JasonNguyenTX

Given we've not heard back from you here, I'm going to close this issue for the moment - that said please feel free to re-open this if you're still having issues here and we'll take another look.

Thanks!

ghost commented 4 years ago

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 hashibot-feedback@hashicorp.com. Thanks!