Fix Azure role assignments and app removal (#128)

* Add role assignment for Azure Ranger Audit role
* Delete Azure AD app during teardown

Signed-off-by: Jim Enright <jenright@cloudera.com>

Author: jimright

roles/platform/tasks/setup_azure_authz.yml

@@ -201,6 +201,11 @@
       scope: "{{ plat__azure_datapath_uri }}"
       assignee: "{{ __azure_ranger_audit_identity.properties.principalId }}"
       desc: Assign Storage Blob Data Contributor Role to Ranger Audit Role at Data Container level
+    - role: "{{ __azure_storageblobdata_ctrb_role_id }}"
+      scope: "{{ plat__azure_logpath_uri }}"
+      assignee: "{{ __azure_ranger_audit_identity.properties.principalId }}"      
+      desc: Assign Storage Blob Data Contributor Role to Ranger Audit Role at Logs Container level
+
   loop_control:
     loop_var: __azure_rl_assgn_item
     label: "{{ __azure_rl_assgn_item.desc }}"

roles/platform/tasks/teardown_azure_authz.yml

@@ -74,8 +74,8 @@
 - name: Tear down Azure AD App Registration
   when: plat__teardown_deletes_xaccount and ( plat__azure_xaccount_app_uuid is defined ) and ( plat__azure_xaccount_app_uuid | length > 0 )
   command: >
-      az ad sp delete
-      --id {{ plat__azure_application_service_principal_objuuid }}
+      az ad app delete
+      --id {{ plat__azure_xaccount_app_uuid }}
 
 - name: Tear down Custom Role
   when: plat__teardown_deletes_roles