azure-identity/1.10.0/workload__identity__credential_8hpp_source.html

// Copyright (c) Microsoft Corporation.

// Licensed under the MIT License.


#pragma once


#include "azure/identity/client_assertion_credential.hpp"

#include "azure/identity/detail/client_credential_core.hpp"

#include "azure/identity/detail/token_cache.hpp"


#include <azure/core/credentials/token_credential_options.hpp>


#include <string>

#include <vector>


namespace Azure { namespace Identity {

  namespace _detail {

    class ClientAssertionCredentialImpl;

  } // namespace _detail


  struct WorkloadIdentityCredentialOptions final : public Core::Credentials::TokenCredentialOptions

  {

    std::string TenantId = _detail::DefaultOptionValues::GetTenantId();


    std::string ClientId = _detail::DefaultOptionValues::GetClientId();


    std::string AuthorityHost = _detail::DefaultOptionValues::GetAuthorityHost();


    std::string TokenFilePath = _detail::DefaultOptionValues::GetFederatedTokenFile();


    std::vector<std::string> AdditionallyAllowedTenants;

  };


  class WorkloadIdentityCredential final : public Core::Credentials::TokenCredential {

  private:

    std::unique_ptr<_detail::ClientAssertionCredentialImpl> m_clientAssertionCredentialImpl;

    std::string m_tokenFilePath;


    std::string GetAssertion(Core::Context const& context) const;


  public:

    explicit WorkloadIdentityCredential(

        Core::Credentials::TokenCredentialOptions const& options

        = Core::Credentials::TokenCredentialOptions());


    explicit WorkloadIdentityCredential(WorkloadIdentityCredentialOptions const& options);


    ~WorkloadIdentityCredential() override;


    Core::Credentials::AccessToken GetToken(

        Core::Credentials::TokenRequestContext const& tokenRequestContext,

        Core::Context const& context) const override;

  };


}} // namespace Azure::Identity

Azure::Identity::WorkloadIdentityCredential
Workload Identity Credential supports Azure workload identity authentication on Kubernetes and other ...
Definition workload_identity_credential.hpp:76

Azure::Identity::WorkloadIdentityCredential::GetToken
Core::Credentials::AccessToken GetToken(Core::Credentials::TokenRequestContext const &tokenRequestContext, Core::Context const &context) const override
Gets an authentication token.
Definition workload_identity_credential.cpp:106

Azure::Identity::WorkloadIdentityCredential::~WorkloadIdentityCredential
~WorkloadIdentityCredential() override
Destructs WorkloadIdentityCredential.

client_assertion_credential.hpp
Client Assertion Credential and options.

Azure::Identity::WorkloadIdentityCredentialOptions
Options for workload identity credential.
Definition workload_identity_credential.hpp:30

Azure::Identity::WorkloadIdentityCredentialOptions::ClientId
std::string ClientId
The ClientID of the service principal. Defaults to the value of the environment variable AZURE_CLIENT...
Definition workload_identity_credential.hpp:41

Azure::Identity::WorkloadIdentityCredentialOptions::AuthorityHost
std::string AuthorityHost
Authentication authority URL.
Definition workload_identity_credential.hpp:53

Azure::Identity::WorkloadIdentityCredentialOptions::TenantId
std::string TenantId
The TenantID of the service principal. Defaults to the value of the environment variable AZURE_TENANT...
Definition workload_identity_credential.hpp:35

Azure::Identity::WorkloadIdentityCredentialOptions::TokenFilePath
std::string TokenFilePath
The path of a file containing a Kubernetes service account token. Defaults to the value of the enviro...
Definition workload_identity_credential.hpp:59

Azure::Identity::WorkloadIdentityCredentialOptions::AdditionallyAllowedTenants
std::vector< std::string > AdditionallyAllowedTenants
For multi-tenant applications, specifies additional tenants for which the credential may acquire toke...
Definition workload_identity_credential.hpp:66

token_cache.hpp
Token cache.