Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

The Azure DevOps Provider should be able to authenticate with a managed identity. #238

Closed
LichtBlick-PENG-Daniel opened this issue Dec 14, 2023 · 2 comments
Closed

The Azure DevOps Provider should be able to authenticate with a managed identity. #238

LichtBlick-PENG-Daniel opened this issue Dec 14, 2023 · 2 comments
Assignees
@iwahbe
Labels
awaiting-upstream The issue cannot be resolved without action in another repository (may be owned by Pulumi). kind/enhancement Improvements or new features resolution/fixed This issue was fixed

Comments

@LichtBlick-PENG-Daniel
Copy link

Hello!

Currently the Azure DevOps Provider only authenticates with a PAT provided by a setting or an environment variable.
See: https://github.com/pulumi/pulumi-azuredevops

  • Vote on this issue by adding a 👍 reaction
  • If you want to implement this feature, comment to let us know (we'll work with you on design, scheduling, etc.)

Issue details

Azure extended the API authentication to allow Entra ID identities. Currently the PAT has to be rotated regularly. With the new authentication the deployment credentials can be reused.

Affected area/feature

The new authentication can be implemented according to the links at the introduction page: https://devblogs.microsoft.com/devops/introducing-service-principal-and-managed-identity-support-on-azure-devops/
@LichtBlick-PENG-Daniel LichtBlick-PENG-Daniel added kind/enhancement Improvements or new features needs-triage Needs attention from the triage team labels Dec 14, 2023
@iwahbe
Copy link
Member

iwahbe commented Dec 14, 2023

Hi @LichtBlick-PENG-Daniel. Thanks for opening an issue. This provider is "bridged" from a TF provider that Microsoft manages: https://github.com/microsoft/terraform-provider-azuredevops. We will add support for this as soon as they do. I believe the tracking issue they have is microsoft/terraform-provider-azuredevops#784, and it looks like there is already a PR in progress.

@iwahbe iwahbe added awaiting-upstream The issue cannot be resolved without action in another repository (may be owned by Pulumi). and removed needs-triage Needs attention from the triage team labels Dec 14, 2023
@algompluecker
Copy link

Hi,

I think that has been released with version 1.0.0 of the Terraform forvider for Azure DevOps:
microsoft/terraform-provider-azuredevops#747

Thus implementing #324 should close this.

@iwahbe iwahbe added the resolution/fixed This issue was fixed label Apr 25, 2024
@iwahbe iwahbe self-assigned this Apr 25, 2024
@iwahbe iwahbe closed this as completed Apr 25, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@iwahbe iwahbe

Labels
awaiting-upstream The issue cannot be resolved without action in another repository (may be owned by Pulumi). kind/enhancement Improvements or new features resolution/fixed This issue was fixed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@iwahbe @algompluecker @LichtBlick-PENG-Daniel