Skip to content

Provide support for using Azure AD service principal authentication with client secret/certificate #3933

Open
@Aashish93-stack

Description

@Aashish93-stack

Proposal

Proposing the following updates:

  • Add a provider for azure service principal
  • Update the AuthPodIdentity, triggerAuthentication to take in a ClientID, Audience and Secret
  • Adding mechanism to load the base64 decoded Kubernetes secret
  • Adding a mechanism to decode the certificate and get the AadToken

Use-Case

We have a use case where we need to support System Assigned Identity for accessing eventhub and since PodIdentity and Workload Identities don't support System-Assigned Identity out of box, we are looking into service-principal based authentication using certificates

Anything else?

No response

Metadata

Metadata

Labels

featureAll issues for new features that have been committed to

Type

No type

Projects

  • Status

    To Do

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions