use jwtCallback to get the token

cvvz · Apr 23, 2023 · 223fa07 · 223fa07
1 parent 976b588
commit 223fa07
Showing 1 changed file with 9 additions and 4 deletions.
diff --git a/pkg/provider/config/azure_auth.go b/pkg/provider/config/azure_auth.go
@@ -110,11 +110,16 @@ func GetServicePrincipalToken(config *AzureAuthConfig, env *azure.Environment, r
 		if err != nil {
 			return nil, fmt.Errorf("failed to create the OAuth config: %w", err)
 		}
-		jwt, err := os.ReadFile(config.AADFederatedTokenFile)
-		if err != nil {
-			return nil, fmt.Errorf("failed to read a file with a federated token: %w", err)
+
+		jwtCallback := func() (string, error) {
+			jwt, err := os.ReadFile(config.AADFederatedTokenFile)
+			if err != nil {
+				return "", fmt.Errorf("failed to read a file with a federated token: %w", err)
+			}
+			return string(jwt), nil
 		}
-		token, err := adal.NewServicePrincipalTokenFromFederatedToken(*oauthConfig, config.AADClientID, string(jwt), env.ResourceManagerEndpoint)
+
+		token, err := adal.NewServicePrincipalTokenFromFederatedToken(*oauthConfig, config.AADClientID, jwtCallback, env.ResourceManagerEndpoint)
 		if err != nil {
 			return nil, fmt.Errorf("failed to create a workload identity token: %w", err)
 		}