Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Azure.Identity June - October 2021 Releases #2538

Closed
joshfree opened this issue Mar 9, 2021 · 0 comments
Closed

Azure.Identity June - October 2021 Releases #2538

joshfree opened this issue Mar 9, 2021 · 0 comments
Assignees
@joshfree
Labels
Azure.Identity Client This issue points to a problem in the data-plane of the library. Epic
Milestone
[2021] November

Comments

@joshfree
Copy link
Member

joshfree commented Mar 9, 2021
edited
Loading

Azure.Identity June - October 2021 Releases

June Release Cycle - Start Early Feature Design for Nickel Beta-1

Design: Beta-1 Features

  1. Feature: Support Tenant Id Challenges / Hints tenant-hint.md

    • Support Key Vaults across multiple tenants
    • Address common issues when customers use VS/VSCode credentials with multiple credentials signed in

  2. Feature: Add support for Managed Identity regional AAD authentication endpoints #20027
    - The [guidance] from the Azure IAM wiki for service teams using MI is to authenticate using a regional endpoint (e.g. https://eastus2euap.login.microsoft.com). However, the MSAL example given in the wiki uses APIs that are not currently exposed/used by [MsalConfidentialClient], namely WithAuthority(Uri, bool) and WithInstanceDicoveryMetadata(string).
    - Today, when using the regional AAD endpoint with Azure.Identity (using a [ClientCertificateCredential]), we see an error Application error - the login request was malformed and could not be matched with an existing authentication endpoint or instance. The error goes away when using a global endpoint (https://login.microsoftonline.com/).

  3. Feature: Support overriding MSI_ENDPOINT for dev-time debugging for the Azure Kubernetes Service team #670
    - The Bridge to Kubernetes enables a user to natively debug one microservice on their local machine when "bridged" to other microservices running in Kubernetes. AKS is looking for an environment variable that can be overridden to specify a custom managed identity endpoint. This is required so that when the user's locally running code tries to call the managed identity endpoint for a token, they are able to intercept it and redirect the call to the cluster so that the token can be fetched from the endpoint on the cluster.

  4. Feature: Allow Pre-populated account name in browser during interactive login #16983

July Release Cycle - Beta-1 Feature Development

Code: Beta-1 Features

  1. Support Tenant Id Challenges / Hints
  2. Add support for Managed Identity regional AAD authentication endpoints
  3. MSI_ENDPOINT override via an API for the AKS team
  4. Allow Pre-populated account name in browser during interactive login

Design: Beta-2 Features

  1. Feature: Add Simplified On-Behalf-Of (OBO) Auth Flow for the Microsoft Graph Team tracking issue

  2. Feature: Create AzureApplicationCredential for the MS Graph Team #20364 PR: Add AzureApplicationCredential azure-sdk-for-python#19403

August Release Cycle - Beta-2 Feature Development

Design: September Features

  1. Support exchanging k8s token to AAD token
  2. Top Nickel Community Feature Requests (Usability, Diagnostics, Docs/Samples)

Code: Beta-2 Features

  1. Create AzureApplicationCredential

September Release Cycle - Beta-3 Feature Development

  1. Simplified On-Behalf-Of (OBO) Auth Flow Support

  2. Support exchanging k8s token to AAD token

  3. Top Nickel Community Feature Requests (Usability, Diagnostics, Docs/Samples)

October Release Cycle - GA Release

  1. Final Review of README.md / Quick Starts / Samples / Documentation for cross-language consistency

November Release Cycle - Buffer

Language-Specific Child Epics
@joshfree joshfree added Epic Client This issue points to a problem in the data-plane of the library. Azure.Identity labels Mar 9, 2021
@joshfree joshfree added this to the [2021] August milestone Mar 9, 2021
@joshfree joshfree self-assigned this Mar 9, 2021
@joshfree joshfree changed the title Azure.Identity Improvements (May - August 2021] Azure.Identity Improvements (May - August 2021) Mar 9, 2021
@joshfree joshfree changed the title Azure.Identity Improvements (May - August 2021) Azure.Identity Improvements (June - August 2021) Mar 31, 2021
@joshfree joshfree changed the title Azure.Identity Improvements (June - August 2021) Azure.Identity Improvements (June - September 2021) May 3, 2021
@joshfree joshfree changed the title Azure.Identity Improvements (June - September 2021) Azure.Identity Improvements (July- September 2021) May 5, 2021
This was referenced Jun 17, 2021
Closed
Closed
@joshfree joshfree changed the title Azure.Identity Improvements (July- September 2021) Azure.Identity Improvements (July- October 2021) Sep 7, 2021
@AlexGhiondea AlexGhiondea changed the title Azure.Identity Improvements (July- October 2021) Azure.Identity Improvements (July 2021-March 2022) Dec 14, 2021
@joshfree joshfree closed this as completed Jan 3, 2022
@joshfree joshfree changed the title Azure.Identity Improvements (July 2021-March 2022) Azure.Identity June - October 2021 Releases Jan 3, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@joshfree joshfree

Labels
Azure.Identity Client This issue points to a problem in the data-plane of the library. Epic
Projects
None yet
Milestone
[2021] November
Development

No branches or pull requests
3 participants
@sadasant @joshfree @RickWinter