f55da18555
* Create rule S6381 * Add rule description * Apply suggestions from code review Co-authored-by: Loris S. <91723853+loris-s-sonarsource@users.noreply.github.com> Co-authored-by: pierre-loup-tristant-sonarsource <pierre-loup-tristant-sonarsource@users.noreply.github.com> Co-authored-by: Pierre-Loup Tristant <pierre-loup.tristant@sonarsource.com> Co-authored-by: Loris S. <91723853+loris-s-sonarsource@users.noreply.github.com> Co-authored-by: Nils Werner <64034005+nils-werner-sonarsource@users.noreply.github.com>
39 lines
808 B
Plaintext
39 lines
808 B
Plaintext
include::../description.adoc[]
|
|
|
|
include::../ask-yourself.adoc[]
|
|
|
|
include::../recommended.adoc[]
|
|
|
|
== Sensitive Code Example
|
|
|
|
----
|
|
resource "azurerm_role_assignment" "example" {
|
|
scope = azurerm_resource_group.example.id
|
|
role_definition_name = "Owner" # Sensitive
|
|
principal_id = data.azuread_user.example.id
|
|
}
|
|
----
|
|
|
|
== Compliant Solution
|
|
|
|
----
|
|
resource "azurerm_role_assignment" "example" {
|
|
scope = azurerm_resource_group.example.id
|
|
role_definition_name = "Azure Maps Data Reader"
|
|
principal_id = data.azuread_user.example.id
|
|
}
|
|
----
|
|
|
|
include::../see.adoc[]
|
|
|
|
ifdef::env-github,rspecator-view[]
|
|
|
|
'''
|
|
== Implementation Specification
|
|
(visible only on this page)
|
|
|
|
include::../message.adoc[]
|
|
|
|
include::../highlighting.adoc[]
|
|
|
|
endif::env-github,rspecator-view[] |