Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: add envvar AZURE_CLIENT_ID option #1326

Merged
merged 1 commit into from
Jun 23, 2023
Merged

fix: add envvar AZURE_CLIENT_ID option #1326

merged 1 commit into from
Jun 23, 2023

Conversation

popas90
Copy link
Contributor

@popas90 popas90 commented Jun 22, 2023
edited

Add envvar AZURE_CLIENT_ID that allows specifying a managed identity to be used when pulling images for scanning.

  • Tests written and linted ℹ︎
  • Documentation written ℹ︎
  • Commit history is tidy ℹ︎

What this does

Updated Helm chart to add AZURE_CLIENT_ID envvar to snyk-monitor container, when needed (not empty string). The envvar is needed to avoid conflicting managed identities that allow the snyk-monitor to pull images from the container registry, therefore explicitly saying which of the identities to be used (by specifying its Client ID).

Notes for the reviewer

Will update documentation about setting up kubernetes-monitor in Azure.

Screenshots

N/A

@popas90 popas90 requested a review from a team as a code owner June 22, 2023 08:32
minsiyang
minsiyang reviewed Jun 22, 2023
View reviewed changes
Copy link
Contributor

@minsiyang minsiyang left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can you also update the docs here too with how to set this up and why 🤗

minsiyang
minsiyang reviewed Jun 22, 2023
View reviewed changes
snyk-monitor/README.md Outdated Show resolved Hide resolved
@popas90 popas90 changed the title fix: add envvar AZURE_CLIENT_ID that allows specifying a managed identity … fix: add envvar AZURE_CLIENT_ID option Jun 22, 2023
minsiyang
minsiyang reviewed Jun 22, 2023
View reviewed changes
Copy link
Contributor

@minsiyang minsiyang left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nit: you can squash all 6 commits into one commit, and give it a meaningful prefix before the commit message
https://www.notion.so/snyk/NOT-ARCHIVE-Git-Work-Methodologies-be6d298d764d47ca998d8f84991f4344?pvs=4#f2af5841f22446f28b3c27aec7a53642
eg, fix: add envvar AZURE_CLIENT_ID option

@popas90 popas90 force-pushed the popas90/azure-client-id-in-helm branch from 86ebef9 to 41d3a12 Compare June 23, 2023 05:20
@github-actions
Copy link

github-actions bot commented Jun 23, 2023
edited by minsiyang

Expected release notes (by @popas90)

fixes:
add envvar AZURE_CLIENT_ID option (41d3a12)

  • I hereby acknowledge these release notes are 🥙 AWESOME 🥙

@popas90 popas90 force-pushed the popas90/azure-client-id-in-helm branch from 41d3a12 to 8d0d282 Compare June 23, 2023 09:38
@popas90 popas90 force-pushed the popas90/azure-client-id-in-helm branch from 8d0d282 to 3422ff8 Compare June 23, 2023 09:51
@kat1906 kat1906 closed this Jun 23, 2023
@kat1906 kat1906 reopened this Jun 23, 2023
@popas90 popas90 merged commit edc7f7e into staging Jun 23, 2023
9 of 11 checks passed
@popas90 popas90 deleted the popas90/azure-client-id-in-helm branch June 23, 2023 20:38
@team-container-integration
Copy link
Collaborator

🎉 This PR is included in version 2.4.2 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@minsiyang minsiyang minsiyang approved these changes

@ivanstanev ivanstanev ivanstanev approved these changes

@kat1906 kat1906 kat1906 approved these changes

Assignees
No one assigned
Labels
released
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@popas90 @team-container-integration @ivanstanev @kat1906 @minsiyang