search

ssc-spc-ccoe-cei / azure-guardrails-solution-accelerator

This implementation automates reporting to verify compliance with GC Cloud Guardrails. SSC and TBS review the results. Cette mise en œuvre automatise la production de rapports afin de vérifier la conformité aux mesures de sécurité infonuagique du GC. SPC et SCT examinent les résultats.
Other
11 stars 5 forks source link

Test environment CI/CD pipeline failing during deployment #284

Open dutt0 opened 4 days ago

dutt0 commented 4 days ago

Describe the bug Test environment CI/CD pipeline failing when running the deployment

To Reproduce Go to workflow dispatch for test environment/tenant. Run main branch.

Expected behavior Run the pipeline and deploy CaC as expected

Screenshots image

Additional context Add any other context about the problem here.

singhgss commented 4 days ago

Status Code: BadRequest Headers: Cache-Control : no-cache Pragma : no-cache x-ms-request-id : b168be49-725a-4834-a318-ba1f0ec0c4ca X-Content-Type-Options : nosniff Strict-Transport-Security : max-age=31536000; includeSubDomains x-ms-ratelimit-remaining-tenant-writes: 199 x-ms-correlation-request-id : c3ead799-cfa4-4607-bdcd-dbb35f1b1607 x-ms-routing-request-id : EASTUS:20241128T153007Z:c3ead799-cfa4-4607-bdcd-dbb35f1b1607 X-Cache : CONFIG_NOCACHE X-MSEdge-Ref : Ref A: C3CB9CD49EA74366BF7D5190D4EE3D6C Ref B: MNZ221060618053 Ref C: 2024-11-28T15:30:06Z Date : Thu, 28 Nov 2024 15:30:06 GMT Body: { "error": { "code": "RoleAssignmentLimitExceeded", "message": "No more role assignments can be created." } }

We need to check for role assignments that are no longer in use or valid and remove them

The real solution is to remove the automation account managedidentity role assignment that was added during installation when doing cleanup so it doesn't linger around and keep piling up for each installation.