You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I would like to request a feature in form of configuration options to enable Network ACL support for TerraspacePluginAzurerm auto-creation of the backend Storage Account.
Current implementation of the plugin creates the storage account backend with no Network ACLs, so the container can be accessed from anywhere.
The configuration could be:
Specify the default action to the Network Access ("Allow" or "Deny") for the storage account
Specify one or more network rules if the default action is "Deny":
The rules would contain CIDR and Action parameters
Security would be greatly improved if network access policies could be specified for the backend configuration.
Also, if security policies require an ACL to be present, the auto-creation of the storage account would fail.
The text was updated successfully, but these errors were encountered:
I would like to request a feature in form of configuration options to enable Network ACL support for TerraspacePluginAzurerm auto-creation of the backend Storage Account.
Current implementation of the plugin creates the storage account backend with no Network ACLs, so the container can be accessed from anywhere.
The configuration could be:
Security would be greatly improved if network access policies could be specified for the backend configuration.
Also, if security policies require an ACL to be present, the auto-creation of the storage account would fail.
The text was updated successfully, but these errors were encountered: