onebeyond-studio-obelisk icon indicating copy to clipboard operation
onebeyond-studio-obelisk copied to clipboard
verified publisher icon onebeyond

FEATURE: Use managed identities

Open andriikaplanovskyi opened this issue 7 months ago • 1 comments

Use managed identities

Detailed Description

At this moment we use connection strings to provide access to:

Instead to have a better level of security we can use managed identities for Azure resources. Some pieces of the foundation had already been created by the previous generations of Obelisk Core developers:

  1. https://github.com/onebeyond/onebeyond-studio-core/commit/41beb574ca47132d52d50e2af1361bf8fc497feb

  2. https://github.com/onebeyond/onebeyond-studio-core/commit/0d416b99089b6eaa0b9ebf1d718f192838511e04

we need to check if we can use the same idea to connecto the SQL database and to modify our terraform scrtipt to use managed identities when deploying Azure resources.

andriikaplanovskyi avatar Sep 15 '25 13:09 andriikaplanovskyi

@andriikaplanovskyi I've had issues with doing this with multiple users on some projects. It might be caused by users not "logging in" correctly, but this will need extended experimentation before rolling it out.

nickskliar-davies avatar Sep 25 '25 10:09 nickskliar-davies