com.azure.identity.AppServiceMsiCredential Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of azure-identity Show documentation
Show all versions of azure-identity Show documentation
This module contains client library for Microsoft Azure Identity.
// Copyright (c) Microsoft Corporation. All rights reserved.
// Licensed under the MIT License.
package com.azure.identity;
import com.azure.core.credential.AccessToken;
import com.azure.core.annotation.Immutable;
import com.azure.core.credential.TokenRequestContext;
import com.azure.core.util.Configuration;
import com.azure.core.util.logging.ClientLogger;
import com.azure.identity.implementation.IdentityClient;
import reactor.core.publisher.Mono;
/**
* The Managed Service Identity credential for Azure App Service.
*/
@Immutable
class AppServiceMsiCredential extends ManagedIdentityServiceCredential {
private static final ClientLogger LOGGER = new ClientLogger(AppServiceMsiCredential.class);
private final String identityEndpoint;
private final String identityHeader;
private final String msiEndpoint;
private final String msiSecret;
/**
* Creates an instance of {@link AppServiceMsiCredential}.
*
* @param clientId The client ID of user assigned or system assigned identity.
* @param identityClient The identity client to acquire a token with.
*/
AppServiceMsiCredential(String clientId, IdentityClient identityClient) {
super(clientId, identityClient, "AZURE APP SERVICE MSI/IDENTITY ENDPOINT");
Configuration configuration = Configuration.getGlobalConfiguration().clone();
this.identityEndpoint = configuration.get(Configuration.PROPERTY_IDENTITY_ENDPOINT);
this.identityHeader = configuration.get(Configuration.PROPERTY_IDENTITY_HEADER);
this.msiEndpoint = configuration.get(Configuration.PROPERTY_MSI_ENDPOINT);
this.msiSecret = configuration.get(Configuration.PROPERTY_MSI_SECRET);
if (identityEndpoint != null) {
validateEndpointProtocol(this.identityEndpoint, "MSI", LOGGER);
}
if (msiEndpoint != null) {
validateEndpointProtocol(this.msiEndpoint, "MSI", LOGGER);
}
}
/**
* Gets an access token for a token request.
*
* @param request The details of the token request.
* @return A publisher that emits an {@link AccessToken}.
*/
public Mono authenticate(TokenRequestContext request) {
return identityClient.authenticateWithManagedIdentityConfidentialClient(request);
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy