So we are deploying a new application to an existing Azure App Service (Linux) we were able to initially deploy fine but suspect our application doesn’t run because the previous prototype version of our application is still there.
So we changed the Process step for the Azure App Service deployment such that the following was configured
Remove Additional Files: Files in the destination that are not part of the deployment will be removed
Now when it comes to get rid of the unwanted files we get:
Unable to perform the operation (“Delete File”) for the specified directory (“xyz.BusinessService.dll”). This can occur if the server administrator has not authorized this operation for the user credentials you are using.
Error Learn more at: http://go.microsoft.com/fwlink/?LinkId=221672#ERROR_INSUFFICIENT_ACCESS_TO_SITE_FOLDER.
Now the Azure Service Principal our deployments run under is a Contributor on the App Service however this does not seem to give it the necessary rights to get the job done. We are reluctant to make it the Owner of the App Service as it could then have the rights to do bad things like delete the App Service.
Any advice on what level / specific permissions the Service Principal requires to get the job done?