azure-sdk-for-java icon indicating copy to clipboard operation
azure-sdk-for-java copied to clipboard

Published 20 hours ago verified publisher icon Azure

Add Support for Workload Identity Federation for Azure Service Connections

Open joshfree opened this issue 2 years ago • 0 comments

Tracking item to add WorkloadIdentityCredential support for Azure Service Connections (App Config). @KarishmaGhiya is driving the investigation.

Original partner ask: https://github.com/Azure/azure-sdk-for-js/issues/27093

From @KarishmaGhiya:

@joshfree I spoke to @ChristineWanjau Looks like App Configuration is using the preview feature Azure Devops for their authenication for service connection using workload identity. Essentially what happens is when they request an idToken, it gets supplied by Azure Devops (https://devblogs.microsoft.com/devops/public-preview-of-workload-identity-federation-for-azure-pipelines/#custom-azure-tasks-and-extensions). But this idToken is not written to a file, it's speculated to be supplied through the env. So the ask was that do we support the scenario.

joshfree avatar Sep 19 '23 17:09 joshfree