infra/azure-peerpods: don't depend on AKS resource group

This resource group is only used for the non-peerpods AKS resource group. The peerpods cluster doesn't need to read from this resource group.
edgelesssys · Oct 18, 2024 · f2120a4 · f2120a4
1 parent e705f46
commit f2120a4
Showing 1 changed file with 0 additions and 10 deletions.
diff --git a/infra/azure-peerpods/main.tf b/infra/azure-peerpods/main.tf
@@ -36,10 +36,6 @@ locals {
   name = "${var.name_prefix}_caa_cluster"
 }
 
-data "azurerm_resource_group" "rg_podvm_image" {
-  name = var.image_resource_group_name
-}
-
 data "azurerm_resource_group" "rg" {
   name     = local.name
 }
@@ -81,12 +77,6 @@ resource "azuread_application_federated_identity_credential" "federated_credenti
   audiences      = ["api://AzureADTokenExchange"]
 }
 
-resource "azurerm_role_assignment" "ra_image" {
-  scope                = data.azurerm_resource_group.rg_podvm_image.id
-  role_definition_name = "Reader"
-  principal_id         = azuread_service_principal.sp.object_id
-}
-
 resource "azuread_application_password" "cred" {
   application_id = azuread_application.app.id
 }