Azdevify eshopOnWeb

infra/core/security/keyvault.bicep

@@ -0,0 +1,29 @@
+param environmentName string
+param location string = resourceGroup().location
+
+param keyVaultName string = ''
+param principalId string = ''
+
+var abbrs = loadJsonContent('../../abbreviations.json')
+var resourceToken = toLower(uniqueString(subscription().id, environmentName, location))
+var tags = { 'azd-env-name': environmentName }
+
+resource keyVault 'Microsoft.KeyVault/vaults@2022-07-01' = {
+  name: !empty(keyVaultName) ? keyVaultName : '${abbrs.keyVaultVaults}${resourceToken}'
+  location: location
+  tags: tags
+  properties: {
+    tenantId: subscription().tenantId
+    sku: { family: 'A', name: 'standard' }
+    accessPolicies: !empty(principalId) ? [
+      {
+        objectId: principalId
+        permissions: { secrets: [ 'get', 'list' ] }
+        tenantId: subscription().tenantId
+      }
+    ] : []
+  }
+}
+
+output keyVaultEndpoint string = keyVault.properties.vaultUri
+output keyVaultName string = keyVault.name