Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

All requests should use user identity auth if user identity configured #509

Closed
Tracked by #366
kostrse opened this issue Nov 4, 2022 · 1 comment · Fixed by #533
Closed
Tracked by #366

All requests should use user identity auth if user identity configured #509

kostrse opened this issue Nov 4, 2022 · 1 comment · Fixed by #533
Labels
datasource/ADX effort/none type/bug Something isn't working

Comments

@kostrse
Copy link
Contributor

kostrse commented Nov 4, 2022

When user configures OBO authentication then some requests authenticated using the user identity of OBO and some continue to use service identity directly.

Properly using user identity:

Methods using service identity directly (need to be fixed):

  • CheckHealth(here)
  • CallResource getDatabases (here)
  • CallResource getSchema (here)

Regardless of type of the request, authentication method should be consistent with user's configuration.
@kostrse kostrse added datasource/ADX type/bug Something isn't working labels Nov 4, 2022
@kostrse kostrse mentioned this issue Nov 4, 2022
Closed
10 tasks
@kostrse
Copy link
Contributor Author

kostrse commented Dec 13, 2022
edited

This PR #525 isolates the issue to CheckHealth (here).

Short term solution for CheckHealth would be to temporary remove server-side implementation and implement it via testDatasource() on frontend which would make a normal query request.

Ideal solution would be grafana/grafana-plugin-sdk-go#579 to include IdToken to req.PluginContext.User (here), so ID token could be accessed from the User struct regardless of which backend func was called (query req, resource call, etc.).

This was referenced Dec 13, 2022
Merged
Open
@aangelisc aangelisc mentioned this issue Jan 9, 2023
Merged
@kostrse kostrse mentioned this issue Jan 9, 2023
Closed
6 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
datasource/ADX effort/none type/bug Something isn't working
Projects
Partner Datasources
Archived in project
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Add full support for OBO user requests grafana/azure-data-explorer-datasource
2 participants
@kostrse @aangelisc