Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow overriding endpoint for VirtualMachineManagedIdentityCredential via IDENTITY_ENDPOINT env var #2286

Open
JakeDern opened this issue Mar 5, 2025 · 0 comments
Open

Allow overriding endpoint for VirtualMachineManagedIdentityCredential via IDENTITY_ENDPOINT env var #2286

JakeDern opened this issue Mar 5, 2025 · 0 comments
Labels
Azure.Identity The azure_identity crate customer-reported Issues that are reported by GitHub users external to the Azure organization.
Milestone
Backlog

Comments

@JakeDern
Copy link

JakeDern commented Mar 5, 2025

Feature Summary

This would allow users to override the endpoint that this credential looks at to talk to IMDS/HIMDS when running on an Azure VM or Arc Enabled Server.

Feature Description

Other azure sdk implementations including the dotnet sdk will look at the IDENTITY_ENDPOINT environment variable as an override to determine where to reach IMDS/HIMDS. See here.

This is an essential thing for any app running on an Arc enabled server in particular, because the Arc Agent configures that env var on installation so that applications can authenticate as the Arc Server correctly: https://learn.microsoft.com/en-us/azure/azure-arc/vmware-vsphere/azure-arc-agent

In the rust SDK the IMDS endpoint is currently hardcoded into the VirtualMachineManagedIdentityCredential implementation which wraps ImdsManagedIdentityCredential.

The proposal here is to allow overriding the endpoint via the IDENTITY_ENDPOINT env var either in ImdsManagedIdentityCredential or in VirtualMachineManagedIdentityCredential (not sure what the long term vision is for hierarchy here).

I'm happy to add this in myself if someone can point me to the preferred place to add it into the type hierarchy.

Use Case

No response

Alternatives

No response

Additional Context

No response
@github-project-automation github-project-automation bot moved this to Untriaged in Azure SDK Rust Mar 5, 2025
@github-actions github-actions bot added customer-reported Issues that are reported by GitHub users external to the Azure organization. needs-triage Workflow: This is a new issue that needs to be triaged to the appropriate team. question The issue doesn't require a change to the product in order to be resolved. Most issues start as that labels Mar 5, 2025
@RickWinter RickWinter added the Azure.Identity The azure_identity crate label Mar 6, 2025
@RickWinter RickWinter removed the question The issue doesn't require a change to the product in order to be resolved. Most issues start as that label Mar 6, 2025
@github-actions github-actions bot removed the needs-triage Workflow: This is a new issue that needs to be triaged to the appropriate team. label Mar 6, 2025
@RickWinter RickWinter added this to the Backlog milestone Mar 6, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Azure.Identity The azure_identity crate customer-reported Issues that are reported by GitHub users external to the Azure organization.
Projects
Azure Identity SDK Improvements
Status: Untriaged
Azure SDK Rust
Status: Untriaged
Milestone
Backlog
Development

No branches or pull requests
2 participants
@RickWinter @JakeDern