-
Notifications
You must be signed in to change notification settings - Fork 4.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[FEATURE REQ] clientCertificateCredential to support x5c for Azure AD #43945
Comments
Thank you for your feedback. Tagging and routing to the team member best able to assist. |
Hi @gaoyp830. Thank you for reaching out and we regret that you are experiencing difficulties. For your scenario, you'll need to override the default options by calling UseCredential as part of your DI registration. This allows you to control credential creation and set the options desired for your specific needs. In this case, I believe you'll want to look at setting ClientCertificateCredentialOptions.SendCertificateChain and using that with a new instance of ClientCertificateCredential. For example: services.AddAzureClients(clientBuilder =>
{
var options = new ClientCertificateCredentialOptions { SendCertificateChain = true };
var credential = new ClientCertificateCredential(options);
// This will set the credential used by all Azure clients.
clientBuilder.UseCredential(credential);
}); More context and discussion can be found in: |
Hi @gaoyp830. Thank you for opening this issue and giving us the opportunity to assist. We believe that this has been addressed. If you feel that further discussion is needed, please add a comment with the text "/unresolve" to remove the "issue-addressed" label and continue the conversation. |
Hi @jsquire, thanks for the information! from Dependency injection with the Azure SDK for .NET, I see that in the example the client is passed in after registration using dependency injection:
Thanks again for any help! |
The trigger uses the registered DI credential implicitly for the clients that perform its operations. There's no difference for what you'd need to do. |
Hi @gaoyp830. Thank you for opening this issue and giving us the opportunity to assist. We believe that this has been addressed. If you feel that further discussion is needed, please add a comment with the text "/unresolve" to remove the "issue-addressed" label and continue the conversation. |
Hi @gaoyp830, since you haven’t asked that we |
Library name
Microsoft.Extensions.Azure
Please describe the feature.
In order for Azure function service bus trigger to support connection using Azure AD, the code snippet here (which is used to generate token to be used in the creation of service bus client) needs to set
SendX5C
to betrue
in theoptions
. (https://learn.microsoft.com/en-us/dotnet/api/microsoft.identity.web.microsoftidentityoptions.sendx5c?view=msal-model-dotnet-latest)The text was updated successfully, but these errors were encountered: