Comments (5)
Thank you @Jinming-Hu
Hello,
We have an application which runs on azure VM and uses azure C++ storage sdk to interact with blob storage. We need to authenticate this application to have blob storage access. Currently we do it by passing storage account and account key as input from the user and create a storage client. However since we are running on azure VM, we want to avoid getting credentials from user.
Does the azure C++ storage sdk(Or identity Library) support reading required credentials from VM or getting managed identities? Basically is there any functionality similar to instance profiles in AWS/Default service account in GCP for azure C++ sdk(Azure identity Library)?
Thanks a lot!
from azure-sdk-for-cpp.
Scott's suggestion is to implement the same as Go did.
Ge suggests the following:
- client secret credential
- client certificate credential
- environment credential
- managed identity credential
- default azure credential
Client certificate credential will require some SSL library dependency, most likely we will take OpenSSL.
Two most expensive credential types to implement are Client Certificate and Managed Identity.
Scott thinks it will take 8 weeks total to implement these, Managed Identity taking 3 weeks out of 8.
from azure-sdk-for-cpp.
Let's also check with Speech and Storage which credentials they need, during our Friday sync.
from azure-sdk-for-cpp.
@antkmsft Can you open an Issue for each credential and attach to this Epic.
from azure-sdk-for-cpp.
@antkmsft Consolidate this Epic with the December Identity epic and then close this epic
from azure-sdk-for-cpp.
Related Issues (20)
- Vcpkg release branch name validation
- Use fuzzing to harden the HTTP transports around response parsing HOT 1
- Add input validation to the RawResponse ctor to fail early and gracefully on invalid input
- Getting issue in nullable.hpp file while integrating the azure sdk for cpp into our application HOT 6
- Add support for providing Resource ID within ManagedIdentityCredential HOT 2
- Add support for customizing the IMDS endpoint within ManagedIdentityCredential
- Set Vcpkg Write-mode Cache intermittently fails with No route to host (management.azure.com:443) HOT 1
- Curl connection pooling test - resiliencyOnConnectionClosed - intermittently fails with SSL connect error
- Re-evaluate the use of the `NOMINMAX` coding pattern when including Windows.h across the SDK HOT 7
- Telemetry policy to send what C++ language version is used when customers are building with our SDK HOT 1
- Add `Azure::Core::_internal::StringExtensions::EndsWith()`, and maybe `StartsWith()`
- When clang-format fails in CI, it could print the diff
- Failure to build with Xcode 15.0.1 HOT 3
- Intermittent test timeout in azure-core-amqp.TestManagement.ManagementOpenCloseError after enabling async operations on connection
- azure-core-opentelemetry-cpp to support being built as Win32 DLL HOT 1
- Support building SDKs that depend on Rust HOT 1
- Need to update vcpkg documentation for each package
- As a Linux contributor, the documentation to get started contributing to the SDK should be easy to follow and complete HOT 2
- Update all `intX_t`s to be `std::intX_t`s.
- Add document describing how to deprecate packages
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from azure-sdk-for-cpp.