-
Notifications
You must be signed in to change notification settings - Fork 334
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Keyvault Lookup Plugin Added #109
Keyvault Lookup Plugin Added #109
Conversation
@haiyuazhang Could you please help take a review this issue? Thank you very much! |
57c6057
to
3e1c870
Compare
…/azure into feature/keyvault-lookup
Hi @taasest8, this is great and solves many issues in automation. Can this be modified to leverage generic Azure CLI auth as well? not just MSI or in-code SP credentials. |
Hello, I guess this is no longer valid as the |
@Fred-sun Could you confirm? |
@Ompragash Yes, It will be useful. I will review with developer and push for merge! thank you very much! |
Hello @Fred-sun, did the minor changes, what rights do you need on the pr ? afaik you should have enough rights as you are the owner of the base repository. |
@taasest8 could you add an option to bypass MSI token ? |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
trailing whitespace
Co-authored-by: Fred-sun <37327967+Fred-sun@users.noreply.github.com>
Co-authored-by: Fred-sun <37327967+Fred-sun@users.noreply.github.com>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Complete all test exceptions to avoid security test failures due to requests not being imported!
Co-authored-by: Fred-sun <37327967+Fred-sun@users.noreply.github.com>
Co-authored-by: Fred-sun <37327967+Fred-sun@users.noreply.github.com>
delete duplicate line! |
Co-authored-by: Fred-sun <37327967+Fred-sun@users.noreply.github.com>
Co-authored-by: Fred-sun <37327967+Fred-sun@users.noreply.github.com>
Co-authored-by: Fred-sun <37327967+Fred-sun@users.noreply.github.com>
@taasest8 Thank you for your update. I will complete the inspection and promote the merger as soon as possible. Thank you very much! |
@taasest8 One last change! |
Co-authored-by: Fred-sun <37327967+Fred-sun@users.noreply.github.com>
Co-authored-by: Fred-sun <37327967+Fred-sun@users.noreply.github.com>
Co-authored-by: Fred-sun <37327967+Fred-sun@users.noreply.github.com>
ready_for_review |
LGTM |
SUMMARY
Moving azure_keyvault_secret lookup plugin from old role repo to this collection.
Using code suggested from taarpa6 that also does a check on the http status code before further processing. This fixes a (time-out) issue when not using an Azure managed identity and not running from an Azure VM.
Old PR (closed but never merged): Azure/azure_preview_modules#349
ISSUE TYPE
COMPONENT NAME
azure_keyvault_secret lookup plugin
ADDITIONAL INFORMATION
To use a lookup plugin the full namespace needs to be referenced.