-
Notifications
You must be signed in to change notification settings - Fork 3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Can't resolve Keyvault reference in App Config with managed identity #15805
Comments
Thanks for the feedback! We are routing this to the appropriate team for follow-up. cc @shenmuxiaosen, @avanigupta. |
appconfig |
Hi @nilsga , |
The code from
However, azure-cli/src/azure-cli-core/azure/cli/core/adal_authentication.py Lines 21 to 24 in 748e1ff
Also, There are 2 correct ways to get a raw token:
If you only need to create a keyvault client, you may simply use the client factory from
It has been proved to work with both user credential and managed identity credential and has better error handling logic. + @bim-msft for awareness. |
Fixed by #15826 |
Describe the bug
Resolving a keyvault reference through App Config, with a VM managed identity does not work.
Command Name
az appconfig kv list
Errors:
To Reproduce:
Steps to reproduce the behavior.
testsecret/keyvaultref
az appconfig kv list --name <appconfig_name> --key 'testsecret/*' --resolve-keyvault
Expected Behavior
The value should be resolved from the keyvault.
Environment Summary
Additional Context
Stacktrace:
The text was updated successfully, but these errors were encountered: