From 093c8051284f976b67fd08b4be0966f51a0e80cc Mon Sep 17 00:00:00 2001
From: Luca Cavallaro <luca.cavallaro@pagopa.it>
Date: Tue, 3 Dec 2024 11:36:07 +0100
Subject: [PATCH] add blob perm

---
 infra/resources/_modules/web_apps/op_func.tf | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/infra/resources/_modules/web_apps/op_func.tf b/infra/resources/_modules/web_apps/op_func.tf
index 15ff8cd..0a55fd3 100644
--- a/infra/resources/_modules/web_apps/op_func.tf
+++ b/infra/resources/_modules/web_apps/op_func.tf
@@ -58,6 +58,12 @@ resource "azurerm_role_assignment" "config_queue_op_func" {
   principal_id         = module.op_func.function_app.function_app.principal_id
 }
 
+resource "azurerm_role_assigment" "audit_event_container_op_func" {
+  scope                = var.audit_storage.id
+  role_definition_name = "Storage Blob Data Contributor"
+  principal_id         = module.op_func.function_app.function_app.principal_id
+}
+
 resource "azurerm_cosmosdb_sql_role_assignment" "op_func" {
   resource_group_name = data.azurerm_cosmosdb_account.fims.resource_group_name
   account_name        = data.azurerm_cosmosdb_account.fims.name