shy-mouse-10008
12/04/2023, 11:55 PMAZURE_AUTHORITY_HOST=<https://login.microsoftonline.com/>
AZURE_CLIENT_ID=XXXXXXXX
AZURE_FEDERATED_TOKEN_FILE=/var/run/secrets/azure/tokens/azure-identity-token
AZURE_TENANT_ID=XXXXX
But these are different from Pulumi required vairable, I was testing something like this:
- name: ARM_USE_OIDC
value: "true"
- name: ARM_CLIENT_ID
value: XXXXXXX
- name: ARM_TENANT_ID
value: XXXXXXXX
- name: ARM_OIDC_TOKEN # this is wrong as pulumi expects an actual token, not a path to a token
value: /var/run/secrets/azure/tokens/azure-identity-token
Are there some option to integrate workload identity as is, without mapping AZURE_
variables to ARM_
variables? I was expecting pulumi to handle this natively as Azure clients doshy-mouse-10008
12/05/2023, 12:04 AMmelodic-tomato-39005
12/05/2023, 12:52 PMAZURE_
variables currently and they weren’t on our radar. Terraform, for instance, doesn’t seem to support them either? However, feel free to file an issue about it.shy-mouse-10008
12/05/2023, 11:59 PM