com.azure.identity.AppServiceMsiCredential Maven / Gradle / Ivy
// Copyright (c) Microsoft Corporation. All rights reserved.
// Licensed under the MIT License.
package com.azure.identity;
import com.azure.core.credential.AccessToken;
import com.azure.core.annotation.Immutable;
import com.azure.core.credential.TokenRequestContext;
import com.azure.core.util.Configuration;
import com.azure.core.util.logging.ClientLogger;
import com.azure.identity.implementation.IdentityClient;
import reactor.core.publisher.Mono;
/**
* The Managed Service Identity credential for Azure App Service.
*/
@Immutable
class AppServiceMsiCredential extends ManagedIdentityServiceCredential {
private final String msiEndpoint;
private final String msiSecret;
private final ClientLogger logger = new ClientLogger(AppServiceMsiCredential.class);
/**
* Creates an instance of {@link AppServiceMsiCredential}.
*
* @param clientId The client ID of user assigned or system assigned identity.
* @param identityClient The identity client to acquire a token with.
*/
AppServiceMsiCredential(String clientId, IdentityClient identityClient) {
super(clientId, identityClient, "AZURE APP SERVICE MSI/IDENTITY ENDPOINT");
Configuration configuration = Configuration.getGlobalConfiguration().clone();
this.msiEndpoint = configuration.get(Configuration.PROPERTY_MSI_ENDPOINT);
this.msiSecret = configuration.get(Configuration.PROPERTY_MSI_SECRET);
if (msiEndpoint != null) {
validateEndpointProtocol(this.msiEndpoint, "MSI", logger);
}
}
/**
* Gets an access token for a token request.
*
* @param request The details of the token request.
* @return A publisher that emits an {@link AccessToken}.
*/
public Mono authenticate(TokenRequestContext request) {
return identityClient.authenticateToManagedIdentityEndpoint(null, null, msiEndpoint,
msiSecret, request);
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy