r\iothub: Support managed service identity
#14354
Conversation
myc2h6o
changed the title
r\iothub: Support managed identityr\iothub: Support managed service identity
There was a problem hiding this comment.
hi @myc2h6o
Thanks for this PR.
I've taken a look through and left some comments inline, but if we can fix those up then we can take another look.
Thanks!
| var identityIds map[string]*devices.ArmUserIdentity | ||
| if len(config.UserAssignedIdentityIds) != 0 { | ||
| identityIds = map[string]*devices.ArmUserIdentity{} | ||
| for _, id := range config.UserAssignedIdentityIds { | ||
| identityIds[id] = &devices.ArmUserIdentity{} | ||
| } | ||
| } |
There was a problem hiding this comment.
this'll ensure these are always removed:
| var identityIds map[string]*devices.ArmUserIdentity | |
| if len(config.UserAssignedIdentityIds) != 0 { | |
| identityIds = map[string]*devices.ArmUserIdentity{} | |
| for _, id := range config.UserAssignedIdentityIds { | |
| identityIds[id] = &devices.ArmUserIdentity{} | |
| } | |
| } | |
| identityIds = make(map[string]*devices.ArmUserIdentity, 0) | |
| for _, id := range config.UserAssignedIdentityIds { | |
| identityIds[id] = &devices.ArmUserIdentity{} | |
| } |
There was a problem hiding this comment.
Have updated the code, but I didn't fully understand the comment, is it related to the garbage collection mechanism?
And I found that identityIds has to be nil for a SystemAssigned identity. An error will be thrown if an empty map is given. So I've updated the code to first create the ArmUserIdentity without identityIds and set it only when provided. Please check if it looks good.
website/docs/r/iothub.html.markdown
Outdated
|
|
||
| * `identity_ids` - (Optional) A list of User Managed Identity ID's which should be assigned to the Iot Hub. | ||
|
|
||
| ~> **NOTE:** This is required when `type` is set to `UserAssigned`. |
There was a problem hiding this comment.
this is also required when it's set to SystemAssigned/UserAssigned:
| ~> **NOTE:** This is required when `type` is set to `UserAssigned`. |
|
@tombuildsstuff thanks for reviewing the change. I've updated the code, please take another look. |
myc2h6o
force-pushed
the
iothub_identity
branch
from
0811b41
to
5528f59
Compare
myc2h6o
force-pushed
the
iothub_identity
branch
from
5528f59
to
aff5802
Compare
|
Rebased to latest main to resolve conflict |
|
Hi @tombuildsstuff I saw you added new identity types in the linked pr, I've updated this change to use the new |
|
Tests pass:
|
|
This functionality has been released in v2.91.0 of the Terraform Provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. For further feature requests or bug reports with this functionality, please create a new GitHub issue following the template. Thank you! |
|
I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active contributions. |
Fix #9139
This is required when Iot Hub needs to talk to other resources on a private v-net. Support for
AuthenticatinTypein routing, file upload, device import/export will be added in following prsTest result: