Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-37712

ccoctl docs and release notes should mention Azure credential inheritance from the VM

XMLWordPrintable

    • None
    • False
    • Hide

      None

      Show
      None

      Description of problem:

      If ccoctl is run from an Azure instance it will inherit the identity of the VM rather than those generated by running `az login` which is surprising whenever someone intends to run `ccoctl` from automation within Azure. This can be overridden by setting an environment variable.

      Version-Release number of selected component (if applicable):

      4.14, 4.15, 4.16, 4.17

      How reproducible:

      100%

      Steps to Reproduce:

          1. run `ccoctl` in an Azure instance
    2.
    3.

      Actual results:

      `ccoctl` uses identity from the instance rather than identity created by running `az login`

      Expected results:

      After having run `az login` the `ccoctl` command would use the credentials stored by that command.

      Additional info:

      To override this behavior one needs to set the desired environment variables outlined here https://pkg.go.dev/github.com/Azure/azure-sdk-for-go/sdk/azidentity#EnvironmentCredential

              jrouth@redhat.com Jeana Routh
              rhn-support-sdodson Scott Dodson
              Jianping Shu Jianping Shu
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated: