Skip to content

Live workload identity (AKS) test #2805

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Jul 23, 2025
Merged

Live workload identity (AKS) test #2805

merged 2 commits into from
Jul 23, 2025
+191 −6

Conversation

chlowell
Copy link
Member

No description provided.

@chlowell chlowell self-assigned this Jul 22, 2025
@github-actions github-actions bot added the Azure.Identity The azure_identity crate label Jul 22, 2025
@chlowell chlowell marked this pull request as ready for review July 22, 2025 15:55
@Copilot Copilot AI review requested due to automatic review settings July 22, 2025 15:55
Copilot
Copilot AI reviewed Jul 22, 2025
View reviewed changes
Copy link
Contributor

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR introduces live testing infrastructure for workload identity (AKS) in the Azure Identity SDK. The changes add support for testing workload identity credentials in a real Kubernetes environment by deploying an AKS cluster and configuring workload identity federation.

  • Adds AKS cluster deployment with workload identity enabled in the Bicep template
  • Implements pre/post deployment scripts to generate SSH keys and configure workload identity
  • Adds live test endpoint for workload identity credential validation

Reviewed Changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 1 comment.

Show a summary per file
File Description
sdk/identity/test-resources.bicep Adds AKS cluster resource with workload identity configuration
sdk/identity/test-resources-pre.ps1 New script to generate SSH keys for AKS cluster
sdk/identity/test-resources-post.ps1 Configures federated identity and deploys test pod to AKS
sdk/identity/ci.yml Updates CI configuration for live testing
sdk/identity/azure_identity/tests/tools/deployed_live_test/src/main.rs Adds workload identity test endpoint
sdk/identity/azure_identity/src/workload_identity_credential.rs Adds live test for workload identity credential
Comments suppressed due to low confidence (1)

sdk/identity/azure_identity/src/workload_identity_credential.rs:284

  • The test function name 'live' is too generic. Consider a more descriptive name like 'workload_identity_live_test' to clearly indicate what is being tested.
    async fn live() -> azure_core::Result<()> {

@chlowell chlowell merged commit 5ad801f into main Jul 23, 2025
25 checks passed
@chlowell chlowell deleted the chlowell/wic-test branch July 23, 2025 14:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

Copilot code review Copilot Copilot left review comments

@LarryOsterman LarryOsterman LarryOsterman approved these changes

@heaths heaths Awaiting requested review from heaths heaths is a code owner

@RickWinter RickWinter Awaiting requested review from RickWinter RickWinter is a code owner

Assignees

@chlowell chlowell

Labels
Azure.Identity The azure_identity crate
Projects
Azure Identity SDK Improvements
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@chlowell @LarryOsterman