Fix: storage account 403 error when creating new tre env#4406
Merged
Conversation
…ntributor" and "Storage Account Contributor" roles
Unit Test Results0 tests 0 ✅ 0s ⏱️ Results for commit c1e5441. ♻️ This comment has been updated with latest results. |
RonShakutai
changed the title
RonShakutai
changed the title
…tor in bootstrap.sh
Collaborator
Author
|
/test |
|
🤖 pr-bot 🤖 🏃 Running tests: https://github.com/microsoft/AzureTRE/actions/runs/13545863577 (with refid (in response to this comment from @ShakutaiGit) |
LizaShak
reviewed
Mar 10, 2025
Collaborator
Author
|
/test |
|
🤖 pr-bot 🤖 🏃 Running tests: https://github.com/microsoft/AzureTRE/actions/runs/13769103068 (with refid (in response to this comment from @ShakutaiGit) |
Collaborator
Author
|
/test |
|
🤖 pr-bot 🤖 🏃 Running tests: https://github.com/microsoft/AzureTRE/actions/runs/13783417156 (with refid (in response to this comment from @ShakutaiGit) |
…torage Blob Data Contributor
…sions in bootstrap.sh
RonShakutai
requested review from
ashis-kar91
and removed request for
ashis-kar91
Collaborator
Author
tests passed |
Collaborator
Author
|
/test-force-approve |
|
🤖 pr-bot 🤖 ✅ Marking tests as complete (for commit a60f169) (in response to this comment from @ShakutaiGit) |
yuvalyaron
approved these changes
Mar 11, 2025
…n in bootstrap.sh
…ta Contributor permissions in bootstrap.sh
Collaborator
Author
|
/test-force-approve |
|
🤖 pr-bot 🤖 ✅ Marking tests as complete (for commit c1e5441) (in response to this comment from @ShakutaiGit) |
marrobi
pushed a commit
to marrobi/AzureTRE
that referenced
this pull request
May 20, 2025
) * Refactor role assignment check to validate both "Storage Blob Data Contributor" and "Storage Account Contributor" roles * Remove unused script source from bootstrap.sh * Refactor role assignment check to use local variables for clarity * Update CHANGELOG and add role assignment for Storage Account Contributor in bootstrap.sh * Refactor role assignment check to use counts for validation and streamline script execution * Refactor role assignment check to use non-empty value validation and enhance storage container creation with retry logic * CR changes * Refactor role assignment check to verify access via storage container list * Implement retry logic for role assignment checks in bootstrap script * Refactor check_terraform_role_assignments function to simplify error handling and remove unnecessary output * Enhance error message in check_terraform_role_assignments function to indicate retry mechanism on unexpected output * Remove unnecessary echo statement from retry_with_backoff function in bootstrap script * Add validation for required environment variables in bootstrap script * Refactor bootstrap script to streamline Terraform initialization and backend configuration * Add shellcheck disable comments for unbound variable warnings in bootstrap script * Update terraform_wrapper invocation and add blank line for readability in bootstrap script * Bump version to 0.12.7 in version.txt * Refactor bootstrap script to move backend configuration inline and remove redundant function * Remove redundant function call for writing bootstrap Terraform backend * Remove TODO comments from Terraform command output in bootstrap script * Bump version to 0.12.8 in version.txt * Bump version to 0.12.7 in version.txt * Refactor bootstrap script to inline backend configuration and improve error handling * fix: update condition for Azure and ACR login to check for 'make bootstrap' * fix: resolve CI issue with Azure login steps for branches containing 'bootstrap' * refactor: move Terraform backend configuration to a dedicated section in bootstrap.sh * fix: update role assignment to use Storage Blob Data Contributor in bootstrap.sh * fix: refine role assignment query in bootstrap.sh to check only for Storage Blob Data Contributor * fix: update role check in bootstrap.sh to return status instead of echoing * fix: update comment for granting Storage Blob Data Contributor role in bootstrap.sh * fix: update comment for granting Storage Blob Data Contributor permissions in bootstrap.sh
martinpeck
pushed a commit
that referenced
this pull request
May 20, 2025
* Refactor role assignment check to validate both "Storage Blob Data Contributor" and "Storage Account Contributor" roles * Remove unused script source from bootstrap.sh * Refactor role assignment check to use local variables for clarity * Update CHANGELOG and add role assignment for Storage Account Contributor in bootstrap.sh * Refactor role assignment check to use counts for validation and streamline script execution * Refactor role assignment check to use non-empty value validation and enhance storage container creation with retry logic * CR changes * Refactor role assignment check to verify access via storage container list * Implement retry logic for role assignment checks in bootstrap script * Refactor check_terraform_role_assignments function to simplify error handling and remove unnecessary output * Enhance error message in check_terraform_role_assignments function to indicate retry mechanism on unexpected output * Remove unnecessary echo statement from retry_with_backoff function in bootstrap script * Add validation for required environment variables in bootstrap script * Refactor bootstrap script to streamline Terraform initialization and backend configuration * Add shellcheck disable comments for unbound variable warnings in bootstrap script * Update terraform_wrapper invocation and add blank line for readability in bootstrap script * Bump version to 0.12.7 in version.txt * Refactor bootstrap script to move backend configuration inline and remove redundant function * Remove redundant function call for writing bootstrap Terraform backend * Remove TODO comments from Terraform command output in bootstrap script * Bump version to 0.12.8 in version.txt * Bump version to 0.12.7 in version.txt * Refactor bootstrap script to inline backend configuration and improve error handling * fix: update condition for Azure and ACR login to check for 'make bootstrap' * fix: resolve CI issue with Azure login steps for branches containing 'bootstrap' * refactor: move Terraform backend configuration to a dedicated section in bootstrap.sh * fix: update role assignment to use Storage Blob Data Contributor in bootstrap.sh * fix: refine role assignment query in bootstrap.sh to check only for Storage Blob Data Contributor * fix: update role check in bootstrap.sh to return status instead of echoing * fix: update comment for granting Storage Blob Data Contributor role in bootstrap.sh * fix: update comment for granting Storage Blob Data Contributor permissions in bootstrap.sh
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
5 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Resolves #4405
What is being addressed
Testing: