Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

client: propagate ClientID to MSI auth #355

Merged
merged 1 commit into from
Dec 21, 2023
Merged

client: propagate ClientID to MSI auth #355

merged 1 commit into from
Dec 21, 2023

Conversation

lbajolet-hashicorp
Copy link
Contributor

Manages System Identity authentication methods support using a ClientID, but wasn't propagated to the SDK.

This causes issues for users that had more than one identity managed by the endpoint, as the authenticator would default to using the system-assigned identity, which may not have the permissions required to perform the build.

Since this is already supported by the SDK used by the plugin, we forward this information (already available as part of the configuration for the builders) to the SDK so it gets the requested user-assigned identity token from the authentication endpoint.

Closes #353

@lbajolet-hashicorp
client: propagate ClientID to MSI auth
13c0859 
Manages System Identity authentication methods support using a ClientID,
but wasn't propagated to the SDK.

This causes issues for users that had more than one identity managed by
the endpoint, as the authenticator would default to using the
system-assigned identity, which may not have the permissions required
to perform the build.

Since this is already supported by the SDK used by the plugin, we
forward this information (already available as part of the configuration
for the builders) to the SDK so it gets the requested user-assigned
identity token from the authentication endpoint.
@lbajolet-hashicorp lbajolet-hashicorp requested a review from a team as a code owner December 21, 2023 19:19
JenGoldstrich
JenGoldstrich approved these changes Dec 21, 2023
View reviewed changes
Copy link
Contributor

@JenGoldstrich JenGoldstrich left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks Lucas for the investigation and fix!

@JenGoldstrich JenGoldstrich merged commit 7c3085f into main Dec 21, 2023
12 checks passed
@JenGoldstrich JenGoldstrich deleted the client_id_auth_msi branch December 21, 2023 20:58
KidiIT
KidiIT reviewed Feb 10, 2024
View reviewed changes
Copy link

@KidiIT KidiIT left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

All reviewed and approved🫶❤️

@KidiIT
Copy link

KidiIT commented Feb 10, 2024

All checked here!! Thank you and you're welcome😉❤️

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@KidiIT KidiIT KidiIT left review comments

@JenGoldstrich JenGoldstrich JenGoldstrich approved these changes

Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

User Managed Identity not used when System Assigned Identity present
3 participants
@lbajolet-hashicorp @KidiIT @JenGoldstrich