Permit use parameters for effects (Audit/Deny) in Azure Policy
With Azure Policy, parameters in definition permit to build some rules based on variables, without edit definitions, just changing assignement.
But parameters are limited and it's really useful if we could at least add a parameters for the effect, which can be Audit, Deny or Append.
Why ? In many cases, we will build some JSON policy rules in Audit mode and will assign it for check actual compliance. OK, and then after some audit period, we want to change it to Deny for apply definitively this compliance. So at this point, we have to edit the policy for change Audit to Deny, and it could be very good to just change it in assignement.
Another point, it could be nice to have same policy rules assigned to different resources group, on some in Audit Mode, other RG in Deny Mode. Today, we have to use 2 Policy rules else if we can hafe "effect" with parameters.