Usage
module "azure_oidc" {
source = "github.com/fencepencil/fencepencil-azure-modules//azure-oidc"
trust_subjects = ["<value>"]
role_assignments = ["<value>"]
tags = var.tags
}Inputs (4)
| Name | Type | Description | Default | Required |
|---|---|---|---|---|
application_name | string | Display name for the Azure AD app | GitHubActionsDeployRole | no |
trust_subjects | list(string) | GitHub OIDC subject claims to trust | — | yes |
role_assignments | list(string) | Azure scope IDs to assign the role to | — | yes |
role_definition_name | string | Azure RBAC role to assign | Contributor | no |
Outputs (4)
| Name | Description |
|---|---|
application_id | Application (client) ID |
service_principal_id | Service principal object ID |
tenant_id | Azure AD tenant ID |
subscription_id | Azure subscription ID |