Comments (4)
There is no alternative to --sdk-auth
. The only difference between these flags is the JSON output of the executed command.
JSON with flag
{
"clientId": "",
"clientSecret": "",
"subscriptionId": "",
"tenantId": "",
"activeDirectoryEndpointUrl": "",
"resourceManagerEndpointUrl": "",
"activeDirectoryGraphResourceId": "",
"sqlManagementEndpointUrl": "",
"galleryEndpointUrl": "",
"managementEndpointUrl": ""
}
JSON without flag
{
"appId": "",
"displayName": "",
"password": "",
"tenant": ""
}
So, the --sdk-auth
should be removed from the command, and the inlets controller should be changed to handle new JSON.
SUBSCRIPTION_ID="YOUR_SUBSCRIPTION_ID"
az ad sp create-for-rbac --role Contributor --scopes "/subscriptions/$SUBSCRIPTION_ID" \
> $HOME/Downloads/client_credentials.json
from inletsctl.
So what do you suggest using instead of passing --sdk-auth
to obtain the initial token?
I.e. what replaces?
SUBSCRIPTION_ID="YOUR_SUBSCRIPTION_ID"
az ad sp create-for-rbac --role Contributor --scopes "/subscriptions/$SUBSCRIPTION_ID" --sdk-auth \
> $HOME/Downloads/client_credentials.json
And is this just a docs change or does code need to change also? I suspect the former?
cc @zechenbit
from inletsctl.
/add label: helpwanted
from inletsctl.
Thanks @d0pare for raising this and putting useful information together. I found some related discussions in Azure CLI repository:
- How the fields are mapping with and without
--sdk-auth
: Azure/azure-cli#22297 - Azure/azure-cli#20743
Per their discussion (Azure/azure-cli#21693 (comment)), the --sdk-auth
won't be removed in near future. Many tools are still relying on this such as https://github.com/marketplace/actions/azure-login.
If it is just the naming, then maybe we can just change our fileToEnvMap: https://github.com/inlets/cloud-provision/blob/master/provision/azure.go#L35
The NewEnvironmentCredential
will eventually call NewClientSecretCredential
https://github.com/Azure/azure-sdk-for-go/blob/sdk/azidentity/v1.5.1/sdk/azidentity/environment_credential.go#L80
from inletsctl.
Related Issues (20)
- AWS EC2 Provisioner does not support temporary credentials with session token. HOT 6
- creating exit server with letsencrypt fails to create & enable systemd service HOT 1
- AWS EC2: Update Image to Ubuntu 20.04 HOT 2
- Align plan handling inletsctl with inlets-operator HOT 2
- Add OVH as new cloud provider for inletsctl
- Update inletsctl to use the newest version of inlets PRO by default HOT 2
- Following `inletsctl create` docs for Azure fails with authorization errors. HOT 5
- Add the Azure subscription-id to the sample delete command given by `inletsctl create` HOT 1
- Setting the --tcp flag to false, inletsctl still creates an exit-node in tcp mode HOT 1
- Wrong inlets-pro binary downloaded when using Apple Silicon machines
- Cannot install inletsctl from inletsctl.inlets.dev HOT 2
- Update exit server configuration HOT 5
- Uploading too many assets HOT 1
- curl/sudo sh - Install fails on Ubuntu 20.10 HOT 1
- inletsctl create not handling --tcp properly HOT 1
- [Feature] Provision exit-servers with HTTPS using new Let's Encrypt feature HOT 1
- inlets-pro: command not found HOT 2
- error="websocket: bad handshake" HOT 2
- Update Ubuntu images to 18.04 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from inletsctl.