Key Vault auth policy specifies tenant ID for token requests #19841

chlowell · 2023-01-18T23:14:38Z

Once azcore/policy.TokenRequestOptions has a TenantID field (part of #17159), Key Vault's auth policy should set that field and update its value upon receiving a challenge, so that token requests always specify the correct tenant. This is a low priority because a vault's tenant changes only when that vault moves to a new tenant, a vanishingly rare scenario that can currently be handled by creating a new client after the move.

The text was updated successfully, but these errors were encountered:

gracewilcox · 2024-06-04T23:46:34Z

Tracked in #22928

chlowell added KeyVault Client This issue points to a problem in the data-plane of the library. labels Jan 18, 2023

chlowell added this to the Backlog milestone Jan 18, 2023

chlowell added the feature-request This issue requires a new behavior in the product in order be resolved. label Jan 19, 2023

gracewilcox mentioned this issue May 28, 2024

[keyvault:azkeys] cannot get key in cross tenent scenario #22928

Closed

gracewilcox closed this as completed Jun 4, 2024

github-actions bot locked and limited conversation to collaborators Sep 3, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Key Vault auth policy specifies tenant ID for token requests #19841

Key Vault auth policy specifies tenant ID for token requests #19841

chlowell commented Jan 18, 2023

gracewilcox commented Jun 4, 2024

Key Vault auth policy specifies tenant ID for token requests #19841

Key Vault auth policy specifies tenant ID for token requests #19841

Comments

chlowell commented Jan 18, 2023

gracewilcox commented Jun 4, 2024