Merge pull request #105 from aztfmod/owner-permissions-fix

Fix - Update searching for subscription owner role
aztfmod · Feb 1, 2021 · 62fc952 · 62fc952
2 parents 689ea03 + 7aa255f
commit 62fc952
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/scripts/functions.sh b/scripts/functions.sh
@@ -176,7 +176,7 @@ function verify_azure_session {
 
 function check_subscription_required_role {
     echo "@checking if current user (object_id: ${TF_VAR_logged_user_objectId}) is ${1} of the subscription - only for launchpad"
-    role=$(az role assignment list --role "${1}" --assignee ${TF_VAR_logged_user_objectId})
+    role=$(az role assignment list --role "${1}" --assignee ${TF_VAR_logged_user_objectId} --include-inherited --include-groups)
 
     if [ "${role}" == "[]" ]; then
            error ${LINENO} "the current account must have ${1} privilege on the subscription to deploy launchpad." 2
@@ -1073,4 +1073,4 @@ function process_target_subscription {
     echo "Tfstates subscription set to ${TF_VAR_tfstate_subscription_id} (${tfstate_subscription_name})"
     echo ""
 
-}
+}