com.azure.identity.AksExchangeTokenCredential Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of azure-identity Show documentation
Show all versions of azure-identity Show documentation
This module contains client library for Microsoft Azure Identity.
// Copyright (c) Microsoft Corporation. All rights reserved.
// Licensed under the MIT License.
package com.azure.identity;
import com.azure.core.credential.AccessToken;
import com.azure.core.credential.TokenRequestContext;
import com.azure.core.util.logging.ClientLogger;
import com.azure.identity.implementation.IdentityClient;
import reactor.core.publisher.Mono;
/**
* Authenticates a service principal with Microsoft Entra ID using a client assertion.
*/
class AksExchangeTokenCredential extends ManagedIdentityServiceCredential {
private static final ClientLogger LOGGER = new ClientLogger(AksExchangeTokenCredential.class);
/**
* Creates an instance of AksExchangeTokenCredential.
*
* @param clientId the client id of user assigned or system assigned identity.
* @param identityClient the identity client to acquire a token with.
*/
AksExchangeTokenCredential(String clientId, IdentityClient identityClient) {
super(clientId, identityClient, "AZURE AKS TOKEN EXCHANGE");
}
@Override
public Mono authenticate(TokenRequestContext request) {
if (this.getClientId() == null) {
return Mono.error(LOGGER.logExceptionAsError(new IllegalStateException("The client id is not configured via"
+ " 'AZURE_CLIENT_ID' environment variable or through the credential builder."
+ " Please ensure client id is provided to authenticate via token exchange in AKS environment.")));
}
return identityClient.authenticateWithManagedIdentityConfidentialClient(request);
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy