Created
October 4, 2021 10:49
-
-
Save janisBerz/c9774f5cdc39d381e1adbcea6a736ea4 to your computer and use it in GitHub Desktop.
Remove Azure Service Bus Topic Role Assigment RBAC
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $sbResources = Get-AzResource | Where-Object ResourceType -EQ Microsoft.KeyVault/vaults | |
| # Get-AzServiceBusAuthorizationRule -ResourceGroupName $sbResources[0].ResourceGroupName -Namespace $sbResources[0].Name | |
| # Get-AzServiceBusNamespace -ResourceGroupName $sbResources[0].ResourceGroupName -Namespace $sbResources[0].Name | select * | |
| foreach ($serviceBus in $sbResources) { | |
| write-host "Collecting topics from $($serviceBus.Name)" | |
| $topics = Get-AzServiceBusTopic -ResourceGroupName $serviceBus.ResourceGroupName -Namespace $serviceBus.Name | |
| # Get-AzServiceBusTopic -ResourceGroupName $serviceBus.ResourceGroupName -Namespace $serviceBus.Name | select id | |
| foreach ($topic in $topics) { | |
| write-host "cleaning up $($topic.name)" | |
| Get-AzRoleAssignment -Scope $topic.Id | Where-Object { ($_.DisplayName -like '*func-inventory-api*') -or ($_.DisplayName -eq $null) -and ($_.RoleDefinitionName -eq 'Azure Service Bus Data Receiver') } | Remove-AzRoleAssignment | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment