Failed to start api: Cosmos DB RBAC Forbidden (managed identity)

[Menghua1]

Describe the issue:
Running the VS Code task Start API fails. The API tries to connect to Azure Cosmos DB using Managed Identity, but Cosmos rejects the request with RBAC/Forbidden (403). The error indicates the principal does not have permission to perform Microsoft.DocumentDB/databaseAccounts/readMetadata as follows:

Repro Steps:

1. Run azd init -t todo-nodejs-mongo.
2. Run azd up.
3. Run task: start api.

Environment:

• Template: todo-nodejs-mongo.
• Azd version: azd version 1.24.0-beta.1-daily.6038122 (commit 69ab5ebc77e88cd93240670a208b04488d7c3c3c).
• OS: Windows and Linux.
• Branch: Main.

Expected behavior:
The start api task can run successfully.

@rajeshkamal5050 for notification.

[Menghua1]

@rajeshkamal5050 In the latest round of azd manual testing, this issue still exists.

• Template: todo-nodejs-mongo.
• Azd version: azd version 1.24.2-daily.6223381 (commit 7d52038731150e12a5f12aadbfcb09d7413ed0f5) (daily)
• OS: Windows and Linux.
• Branch: Main.

[Menghua1]

@rajeshkamal5050 and @RickWinter In the latest round of azd manual testing, this issue still exists.

• Template: todo-nodejs-mongo.
• Azd version: azd version 1.26.0-beta.1-daily.6301145 (commit 444ec22a6de98d7ee775da0a380efb9a023f8869) (daily)
• OS: Windows and Linux.
• Branch: Main.

[Menghua1]

@RickWinter In the latest round of azd manual testing, this issue still exists.

• Template: todo-nodejs-mongo.
• Azd version: azd version 1.25.3-daily.6367899 (commit 5415d38ec116421c280491764d5ff559e6cd0f7f) (daily).
• OS: Windows and Linux.
• Branch: Main.