-
Notifications
You must be signed in to change notification settings - Fork 15
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support VMSS Flex Authentications #63
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks for opening this PR, @zmyzheng. I've left some initial feedback and questions.
…t return principleID
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM. Thanks again for this contribution, @zmyzheng.
I'm happy to contribute the Vault documentation for this if you haven't started on it already. Let me know.
Thanks @austingebauer so much for reviewing the PR. It will be great if you can update the Vault document. |
@zmyzheng - Happy to help. I will update the Vault documentation 👍 |
Overview
Support VMSS Flex Authentications
Design of Change
How was this change implemented?
When using VMSS Flex with user assigned identity, the service principle Id cannot be dirrectly retrieved from Get-VMSS call. In this PR, we get the user assigned managed identity id and use MSI client to retrieve the service principle info. This change can be applied to both VMSS Uniform and VMSS Flex
Related Issues/Pull Requests
Fix Issue #62
Contributor Checklist
[-] Add relevant docs to upstream Vault repository, or sufficient reasoning why docs won’t be added yet
My Docs PR Link
Example
[-] Add output for any tests not ran in CI to the PR description (eg, acceptance tests)
[-] Backwards compatible