Reference
Recipes
Terraform
Azure
Design Partners
Enable Azure Storage Account Trusted Microsoft Services access
** org.openrewrite.terraform.azure.EnableAzureStorageAccountTrustedMicrosoftServicesAccess** Certain Microsoft services that interact with storage accounts operate from networks that cannot be granted access through network rules. Using this configuration, you can allow the set of trusted Microsoft services to bypass those network rules.

Tags

  • Azure
  • CKV_AZURE_36
  • terraform

Source

  • groupId: org.openrewrite.recipe
  • artifactId: rewrite-terraform
  • version: 1.6.0

Usage

This recipe has no required configuration options and can be activated directly after taking a dependency on org.openrewrite.recipe:rewrite-terraform:1.6.0 in your build file:
Gradle
Maven
build.gradle
1
plugins {
2
id("org.openrewrite.rewrite") version("5.22.2")
3
}
4
5
rewrite {
6
activeRecipe("org.openrewrite.terraform.azure.EnableAzureStorageAccountTrustedMicrosoftServicesAccess")
7
}
8
9
repositories {
10
mavenCentral()
11
}
12
13
dependencies {
14
rewrite("org.openrewrite.recipe:rewrite-terraform:1.6.0")
15
}
Copied!
pom.xml
1
<project>
2
<build>
3
<plugins>
4
<plugin>
5
<groupId>org.openrewrite.maven</groupId>
6
<artifactId>rewrite-maven-plugin</artifactId>
7
<version>4.25.0</version>
8
<configuration>
9
<activeRecipes>
10
<recipe>org.openrewrite.terraform.azure.EnableAzureStorageAccountTrustedMicrosoftServicesAccess</recipe>
11
</activeRecipes>
12
</configuration>
13
<dependencies>
14
<dependency>
15
<groupId>org.openrewrite.recipe</groupId>
16
<artifactId>rewrite-terraform</artifactId>
17
<version>1.6.0</version>
18
</dependency>
19
</dependencies>
20
</plugin>
21
</plugins>
22
</build>
23
</project>
Copied!
Recipes can also be activated directly from the command line by adding the argument -Drewrite.activeRecipesorg.openrewrite.terraform.azure.EnableAzureStorageAccountTrustedMicrosoftServicesAccess

Definition

Recipe List
Yaml Recipe List
1
---
2
type: specs.openrewrite.org/v1beta/recipe
3
name: org.openrewrite.terraform.azure.EnableAzureStorageAccountTrustedMicrosoftServicesAccess
4
displayName: Enable Azure Storage Account Trusted Microsoft Services access
5
description: Certain Microsoft services that interact with storage accounts operate from networks that cannot be granted access through network rules. Using this configuration, you can allow the set of trusted Microsoft services to bypass those network rules.
6
tags:
7
- Azure
8
- CKV_AZURE_36
9
- terraform
10
recipeList:
11
- org.openrewrite.terraform.AddConfiguration:
12
resourceName: azurerm_storage_account
13
content: bypass = ["AzureServices"]
14
- org.openrewrite.terraform.AddConfiguration:
15
resourceName: azurerm_storage_account_network_rules
16
content: bypass = ["AzureServices"]
Copied!
Export as PDF
Copy link