-
Notifications
You must be signed in to change notification settings - Fork 1.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Service Bus] upgrade ms-rest-nodeauth due to critical bug #8041
Comments
Thanks for reporting @shlomiassaf @chradek, I recall removing the dependency on ms-rest-nodeauth from amqp-common preview 7. See https://github.com/Azure/azure-sdk-for-js/blob/amqp-common/sdk/core/amqp-common/changelog.md#2019-9-11-100-preview7 Can you check how that got reverted? I'd prefer if we had no dependency on this package in Service Bus at all |
@ramya-rao-a It looks like we removed some runtime code that depended on it, but didn't remove the actual dependency in #5010 It's actually still being imported by amqp-common. I can work on removing this dependency and rereleasing service-bus. |
I believe @bterlson's thoughts at the time was that since the current usage is only in method signatures, the final bundle shouldn't have the ms-rest-nodeauth dependency at all |
I can investigate if it is showing up in the final bundle. |
@ramya-rao-a This would allow us to completely remove the I looked into simply upgrading amqp-common and service-bus to /cc @bterlson Edit: I do not see |
Thanks @chradek @shlomiassaf, Can you change your direct dependency on ms-rest-nodeauth to be 3.0.3 and see if that works? Use this version to create the credentials and pass them to Service Bus package |
There is an issue with the types when trying to work with static createFromAadTokenCredentials(host: string, credentials: ApplicationTokenCredentials | UserTokenCredentials | DeviceTokenCredentials | MSITokenCredentials, options?: ServiceBusClientOptions): ServiceBusClient; All of the types of
If I cast the type I provide to the method into a I tested it with a credentials object using Anyway, I think it's time to upgrade :) |
@shlomiassaf @ramya-rao-a |
That makes sense @chradek, lets go ahead with that plan |
The latest version 1.1.6 of the This allows users to use any version of |
Describe the bug
A clear and concise description of what the bug is.
The service-bus package depends on
@azure/ms-rest-nodeauth
^0.9.2.The current version of
ms-rest-nodeauth
is 3.0.3The problem with version
^0.9.2
(or any other version up to 3.0.3) is a critical bug that cause the application to halt due to an unresolved promiseSee the bug fix here:
Azure/ms-rest-nodeauth@43c52f9
Done on Aug 22, 2019 and included in version 3.0.3 (the latest)
This is causing my node application to halt due to that unresolved promise.
The text was updated successfully, but these errors were encountered: