Files
dev-intel-v2/foxtrot-docs-v3/reference/terraform/runtime-cloud-iam-azure-reltio.com.md
Jarvis Prime 0265ec7a60 feat: confluence benchmark, pattern extractor, agent KB, UX spec
- extract-patterns.js: mines layered arch, ArgoCD appsets, cloud regions,
  CIDR allocations, naming conventions, sync waves, tech stack from code
- agent-kb.js: token-efficient JSON rendering of same doc tree
- eval-confluence-ref-questions.json: 32 reference-only benchmark questions
- wiggum-v2.sh: Ralph Wiggum loop targeting confluence baseline (77.8%)
- docs/human-ux-spec.md: BMad UX designer spec for human doc structure
- Eval results: V2 at 28.7% vs confluence 77.8% baseline
- Hub/spoke ownership now correctly extracted (95% on that question)
- Naming conventions, regions, CIDRs surfaced in system-architecture.md
2026-03-10 14:20:35 +00:00

6.0 KiB

Terraform: runtime/cloud-iam/azure/reltio.com

Requirements

Name Version
terraform >=1.0.0
azuread =1.4.0
azurerm =2.49.0
random =3.1.0
time =0.7.1

Providers

Name Version
azuread =1.4.0
azurerm =2.49.0
random =3.1.0
time =0.7.1

Modules

No modules.

Resources

Name Type
azuread_application.prisma_cloud_ad_app resource
azuread_application_password.password resource
azuread_service_principal.prisma_cloud_sp resource
azurerm_role_assignment.assign_custom_prisma_role resource
azurerm_role_assignment.assign_network_contrib resource
azurerm_role_assignment.assign_reader resource
azurerm_role_assignment.assign_reader_data_access resource
azurerm_role_definition.custom_prisma_role resource
random_password.application_password resource
random_string.unique_id resource
time_sleep.wait_20_seconds resource
azurerm_management_group.tenant_root_group data source

Inputs

Name Description Type Default Required
application_password_expiration By default setting the password to last for a year string "8760h" no
cloud_environment ################################# EDIT THE FOLLOWING PARAMETERS cloud_environment: Cloud environment to be used. Default: public Possible values are public, usgovernment, german, and china tenant_id : Active directory's ID (Portal) Azure AD -> Properties -> Directory ID string "public" no
custom_role_compute_agentless_permissions n/a list(string)
[
"Microsoft.Resources/subscriptions/resourceGroups/write",
"Microsoft.Compute/disks/write",
"Microsoft.Compute/disks/delete",
"Microsoft.Compute/disks/beginGetAccess/action",
"Microsoft.Compute/snapshots/write",
"Microsoft.Compute/snapshots/delete",
"Microsoft.Compute/virtualMachines/write",
"Microsoft.Compute/virtualMachines/delete"
]
no
custom_role_permissions The list of permissions added to the custom role list(string)
[
"Microsoft.Network/networkInterfaces/effectiveNetworkSecurityGroups/action",
"Microsoft.Network/networkInterfaces/effectiveRouteTable/action",
"Microsoft.Network/networkWatchers/securityGroupView/action",
"Microsoft.Network/networkWatchers/queryFlowLogStatus/action",
"Microsoft.Network/virtualwans/vpnconfiguration/action",
"Microsoft.ContainerRegistry/registries/webhooks/getCallbackConfig/action",
"Microsoft.Web/sites/config/list/action",
"Microsoft.Web/sites/publishxml/action",
"Microsoft.Storage/storageAccounts/*",
"Microsoft.Compute/virtualMachines/runCommand/action",
"Microsoft.Web/sites/Write",
"Microsoft.Web/sites/config/Write",
"Microsoft.ContainerRegistry/registries/listCredentials/action",
"Microsoft.DBforMySQL/flexibleServers/configurations/write"
]
no
tenant_id n/a string "ec5dd7b3-0e80-414c-ba2a-6495e1f57384" no

Outputs

Name Description
a__directory_tenant_id ###################################################### Output Details to fill in the onboarding screen ######################################################
b__application_client_id n/a
c__application_client_secret n/a
d__enterprise_application_object_id n/a
e_consent_link n/a