search

Azure / azure-cli

Azure Command-Line Interface
MIT License
4.01k stars 2.98k forks source link

WebApp:az webapp config ssl list returns an empty array #19777

Closed namnguyenaurecon closed 1 year ago

namnguyenaurecon commented 3 years ago

Describe the bug

I've got exactly the same issue that has been logged here https://github.com/Azure/azure-cli/issues/18216, the certificates are returned when using Get-AzWebAppCertificate but not returned when using az webapp config ssl list

Expected behavior

It should return the list of certificates.

Environment summary

azure-cli                         2.28.0
core                               2.28.0
telemetry                       1.0.6

Additional context

Output from --debug flag (I've filtered out the subscription id):

cli.knack.cli: Command arguments: ['webapp', 'config', 'ssl', 'list', '--resource-group', 'com-pep-uat', '--debug']
cli.knack.cli: __init__ debug log:
Enable color in terminal.
Init colorama.
cli.knack.cli: Event: Cli.PreExecute []
cli.knack.cli: Event: CommandParser.OnGlobalArgumentsCreate [<function CLILogging.on_global_arguments at 0x017C4190>, <function OutputProducer.on_global_arguments at 0x01941028>, <function CLIQuery.on_global_arguments at 0x01957BF8>]
cli.knack.cli: Event: CommandInvoker.OnPreCommandTableCreate []
cli.azure.cli.core: Modules found from index for 'webapp': ['azure.cli.command_modules.appservice']
cli.azure.cli.core: Loading command modules:
cli.azure.cli.core: Name                  Load Time    Groups  Commands
cli.azure.cli.core: appservice                0.199        64       225
cli.azure.cli.core: Total (1)                 0.199        64       225
cli.azure.cli.core: Loaded 64 groups, 225 commands.
cli.azure.cli.core: Found a match in the command table.
cli.azure.cli.core: Raw command  : webapp config ssl list
cli.azure.cli.core: Command table: webapp config ssl list
cli.knack.cli: Event: CommandInvoker.OnPreCommandTableTruncate [<function AzCliLogging.init_command_file_logging at 0x034D3100>]
cli.azure.cli.core.azlogging: metadata file logging enabled - writing logs to 'C:\Users\nam.nguyenthanh\.azure\commands\2021-10-05.18-45-28.webapp_config_ssl_list.6364.log'.
az_command_data_logger: command args: webapp config ssl list --resource-group {} --debug
cli.knack.cli: Event: CommandInvoker.OnPreArgumentLoad [<function register_global_subscription_argument.<locals>.add_subscription_parameter at 0x03517220>, <function register_global_query_examples_argument.<locals>.register_query_examples at 0x0352E8E0>]
cli.azure.cli.core.util: attempting to read file C:\Program Files (x86)\Microsoft SDKs\Azure\CLI2\lib\site-packages\azure\cli\command_modules\appservice\resources\WindowsFunctionsStacks.json as utf-8-sig
cli.azure.cli.core.util: attempting to read file C:\Program Files (x86)\Microsoft SDKs\Azure\CLI2\lib\site-packages\azure\cli\command_modules\appservice\resources\LinuxFunctionsStacks.json as utf-8-sig
cli.knack.cli: Event: CommandInvoker.OnPostArgumentLoad []
cli.knack.cli: Event: CommandInvoker.OnPostCommandTableCreate [<function register_ids_argument.<locals>.add_ids_arguments at 0x0352E928>, <function register_cache_arguments.<locals>.add_cache_arguments at 0x0352E9B8>]
cli.knack.cli: Event: CommandInvoker.OnCommandTableLoaded []
cli.knack.cli: Event: CommandInvoker.OnPreParseArgs []
cli.knack.cli: Event: CommandInvoker.OnPostParseArgs [<function OutputProducer.handle_output_argument at 0x01941070>, <function CLIQuery.handle_query_parameter at 0x01957C40>, <function register_global_query_examples_argument.<locals>.handle_example_parameter at 0x035172B0>, <function register_ids_argument.<locals>.parse_ids_arguments at 0x0352E970>]
cli.azure.cli.core.commands.client_factory: Getting management service client client_type=WebSiteManagementClient
cli.azure.cli.core.adal_authentication: AdalAuthentication.get_token invoked by Track 2 SDK with scopes=('https://management.core.windows.net//.default',)
cli.azure.cli.core._profile: Retrieving token from ADAL for resource 'https://management.core.windows.net/'
cli.azure.cli.core.util: attempting to read file C:\Users\nam.nguyenthanh\.azure\accessTokens.json as utf-8-sig
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - Authority:Performing instance discovery: ...
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - Authority:Performing static instance discovery
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - Authority:Authority validated via static instance discovery
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - TokenRequest:Getting token from cache with refresh if necessary.
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:finding with query keys: {'_clientId': '...', 'userId': '...'}
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Looking for potential cache entries: {'_clientId': '...', 'userId': '...'}
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Found 3 potential entries.
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Resource specific token found.
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Returning token from cache lookup, AccessTokenId: b'4KFt1hRuCN2NLwnMXFgK4HrJM/3yCqfhDXgDgrmZaE8=', RefreshTokenId: b'q+2aMwo6ghTU2Xb20ltZ3UpswEHoE/tS3CuyEzqnZBM='
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Cached token is expired at 2021-10-05 18:49:07.513786.  Refreshing
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - TokenRequest:called to refresh a token from the cache
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - TokenRequest:Getting a new token from a refresh token
urllib3.connectionpool: Starting new HTTPS connection (1): login.microsoftonline.com:443
urllib3.connectionpool: https://login.microsoftonline.com:443 "POST /951b1ed2-d31c-4c2a-9dd6-8ea6137ceb9d/oauth2/token HTTP/1.1" 200 4309
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - OAuth2Client:Get Token Server returned this correlation_id: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Created new cache entry from refresh response.
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Removing entry.
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Adding entry AccessTokenId: b'wjlK5l9zoAzZX9T0HFsY8bqx6OHTQRdTGwyIw/lG958=', RefreshTokenId: b'J2ic20M91QDqb2jYwZgGKZfBzPsqFAWNNswecufc+qI='
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Updating 2 cached refresh tokens
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Remove many: 2
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Add many: 2
adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Returning token refreshed after expiry.
cli.azure.cli.core.sdk.policies: Request URL: 'https://management.azure.com/subscriptions/masked/resourceGroups/com-pep-uat/providers/Microsoft.Web/certificates?api-version=2020-09-01'
cli.azure.cli.core.sdk.policies: Request method: 'GET'
cli.azure.cli.core.sdk.policies: Request headers:
cli.azure.cli.core.sdk.policies:     'Accept': 'application/json'
cli.azure.cli.core.sdk.policies:     'x-ms-client-request-id': 'bc69821b-25d1-11ec-85fb-845cf346c7cf'
cli.azure.cli.core.sdk.policies:     'CommandName': 'webapp config ssl list'
cli.azure.cli.core.sdk.policies:     'ParameterSetName': '--resource-group --debug'
cli.azure.cli.core.sdk.policies:     'User-Agent': 'AZURECLI/2.28.0 (MSI) azsdk-python-azure-mgmt-web/2.0.0 Python/3.8.9 (Windows-10-10.0.19041-SP0)'
cli.azure.cli.core.sdk.policies:     'Authorization': '*****'
cli.azure.cli.core.sdk.policies: Request body:
cli.azure.cli.core.sdk.policies: This request has no body
urllib3.connectionpool: Starting new HTTPS connection (1): management.azure.com:443
urllib3.connectionpool: https://management.azure.com:443 "GET /subscriptions/masked/resourceGroups/com-pep-uat/providers/Microsoft.Web/certificates?api-version=2020-09-01 HTTP/1.1" 200 None
cli.azure.cli.core.sdk.policies: Response status: 200
cli.azure.cli.core.sdk.policies: Response headers:
cli.azure.cli.core.sdk.policies:     'Cache-Control': 'no-cache'
cli.azure.cli.core.sdk.policies:     'Pragma': 'no-cache'
cli.azure.cli.core.sdk.policies:     'Transfer-Encoding': 'chunked'
cli.azure.cli.core.sdk.policies:     'Content-Type': 'application/json'
cli.azure.cli.core.sdk.policies:     'Content-Encoding': 'gzip'
cli.azure.cli.core.sdk.policies:     'Expires': '-1'
cli.azure.cli.core.sdk.policies:     'Vary': 'Accept-Encoding'
cli.azure.cli.core.sdk.policies:     'Strict-Transport-Security': 'max-age=31536000; includeSubDomains'
cli.azure.cli.core.sdk.policies:     'x-ms-request-id': '455f7f23-ce2e-4fa9-9659-23e9889d13e5'
cli.azure.cli.core.sdk.policies:     'Server': 'Microsoft-IIS/10.0'
cli.azure.cli.core.sdk.policies:     'X-AspNet-Version': '4.0.30319'
cli.azure.cli.core.sdk.policies:     'X-Powered-By': 'ASP.NET'
cli.azure.cli.core.sdk.policies:     'x-ms-ratelimit-remaining-subscription-reads': '11999'
cli.azure.cli.core.sdk.policies:     'x-ms-correlation-request-id': '3939682e-a1a7-4090-a943-ed33a3ef3f2e'
cli.azure.cli.core.sdk.policies:     'x-ms-routing-request-id': 'SOUTHEASTASIA:20211005T114530Z:3939682e-a1a7-4090-a943-ed33a3ef3f2e'
cli.azure.cli.core.sdk.policies:     'X-Content-Type-Options': 'nosniff'
cli.azure.cli.core.sdk.policies:     'Date': 'Tue, 05 Oct 2021 11:45:30 GMT'
cli.azure.cli.core.sdk.policies: Response content:
cli.azure.cli.core.sdk.policies: {"value":[],"nextLink":null,"id":null}
cli.knack.cli: Event: CommandInvoker.OnTransformResult [<function _resource_group_transform at 0x03506C40>, <function _x509_from_base64_to_hex_transform at 0x03506C88>]
cli.knack.cli: Event: CommandInvoker.OnFilterResult []
ghost commented 3 years ago

Thanks for the feedback! We are routing this to the appropriate team for follow-up. cc @AzureAppServiceCLI, @antcp.

Issue Details
**Describe the bug** I've got exactly the same issue that has been logged here https://github.com/Azure/azure-cli/issues/18216, the certificates are returned when using `Get-AzWebAppCertificate` but not returned when using `az webapp config ssl list` **Expected behavior** It should return the list of certificates. **Environment summary** ``` azure-cli 2.28.0 core 2.28.0 telemetry 1.0.6 ``` **Additional context** Output from --debug flag (I've filtered out the subscription id): ``` cli.knack.cli: Command arguments: ['webapp', 'config', 'ssl', 'list', '--resource-group', 'com-pep-uat', '--debug'] cli.knack.cli: __init__ debug log: Enable color in terminal. Init colorama. cli.knack.cli: Event: Cli.PreExecute [] cli.knack.cli: Event: CommandParser.OnGlobalArgumentsCreate [, , ] cli.knack.cli: Event: CommandInvoker.OnPreCommandTableCreate [] cli.azure.cli.core: Modules found from index for 'webapp': ['azure.cli.command_modules.appservice'] cli.azure.cli.core: Loading command modules: cli.azure.cli.core: Name Load Time Groups Commands cli.azure.cli.core: appservice 0.199 64 225 cli.azure.cli.core: Total (1) 0.199 64 225 cli.azure.cli.core: Loaded 64 groups, 225 commands. cli.azure.cli.core: Found a match in the command table. cli.azure.cli.core: Raw command : webapp config ssl list cli.azure.cli.core: Command table: webapp config ssl list cli.knack.cli: Event: CommandInvoker.OnPreCommandTableTruncate [] cli.azure.cli.core.azlogging: metadata file logging enabled - writing logs to 'C:\Users\nam.nguyenthanh\.azure\commands\2021-10-05.18-45-28.webapp_config_ssl_list.6364.log'. az_command_data_logger: command args: webapp config ssl list --resource-group {} --debug cli.knack.cli: Event: CommandInvoker.OnPreArgumentLoad [.add_subscription_parameter at 0x03517220>, .register_query_examples at 0x0352E8E0>] cli.azure.cli.core.util: attempting to read file C:\Program Files (x86)\Microsoft SDKs\Azure\CLI2\lib\site-packages\azure\cli\command_modules\appservice\resources\WindowsFunctionsStacks.json as utf-8-sig cli.azure.cli.core.util: attempting to read file C:\Program Files (x86)\Microsoft SDKs\Azure\CLI2\lib\site-packages\azure\cli\command_modules\appservice\resources\LinuxFunctionsStacks.json as utf-8-sig cli.knack.cli: Event: CommandInvoker.OnPostArgumentLoad [] cli.knack.cli: Event: CommandInvoker.OnPostCommandTableCreate [.add_ids_arguments at 0x0352E928>, .add_cache_arguments at 0x0352E9B8>] cli.knack.cli: Event: CommandInvoker.OnCommandTableLoaded [] cli.knack.cli: Event: CommandInvoker.OnPreParseArgs [] cli.knack.cli: Event: CommandInvoker.OnPostParseArgs [, , .handle_example_parameter at 0x035172B0>, .parse_ids_arguments at 0x0352E970>] cli.azure.cli.core.commands.client_factory: Getting management service client client_type=WebSiteManagementClient cli.azure.cli.core.adal_authentication: AdalAuthentication.get_token invoked by Track 2 SDK with scopes=('https://management.core.windows.net//.default',) cli.azure.cli.core._profile: Retrieving token from ADAL for resource 'https://management.core.windows.net/' cli.azure.cli.core.util: attempting to read file C:\Users\nam.nguyenthanh\.azure\accessTokens.json as utf-8-sig adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - Authority:Performing instance discovery: ... adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - Authority:Performing static instance discovery adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - Authority:Authority validated via static instance discovery adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - TokenRequest:Getting token from cache with refresh if necessary. adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:finding with query keys: {'_clientId': '...', 'userId': '...'} adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Looking for potential cache entries: {'_clientId': '...', 'userId': '...'} adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Found 3 potential entries. adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Resource specific token found. adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Returning token from cache lookup, AccessTokenId: b'4KFt1hRuCN2NLwnMXFgK4HrJM/3yCqfhDXgDgrmZaE8=', RefreshTokenId: b'q+2aMwo6ghTU2Xb20ltZ3UpswEHoE/tS3CuyEzqnZBM=' adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Cached token is expired at 2021-10-05 18:49:07.513786. Refreshing adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - TokenRequest:called to refresh a token from the cache adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - TokenRequest:Getting a new token from a refresh token urllib3.connectionpool: Starting new HTTPS connection (1): login.microsoftonline.com:443 urllib3.connectionpool: https://login.microsoftonline.com:443 "POST /951b1ed2-d31c-4c2a-9dd6-8ea6137ceb9d/oauth2/token HTTP/1.1" 200 4309 adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - OAuth2Client:Get Token Server returned this correlation_id: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Created new cache entry from refresh response. adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Removing entry. adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Adding entry AccessTokenId: b'wjlK5l9zoAzZX9T0HFsY8bqx6OHTQRdTGwyIw/lG958=', RefreshTokenId: b'J2ic20M91QDqb2jYwZgGKZfBzPsqFAWNNswecufc+qI=' adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Updating 2 cached refresh tokens adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Remove many: 2 adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Add many: 2 adal-python: e999ca52-6c20-4ea8-8d81-fea2d5cd8c22 - CacheDriver:Returning token refreshed after expiry. cli.azure.cli.core.sdk.policies: Request URL: 'https://management.azure.com/subscriptions/masked/resourceGroups/com-pep-uat/providers/Microsoft.Web/certificates?api-version=2020-09-01' cli.azure.cli.core.sdk.policies: Request method: 'GET' cli.azure.cli.core.sdk.policies: Request headers: cli.azure.cli.core.sdk.policies: 'Accept': 'application/json' cli.azure.cli.core.sdk.policies: 'x-ms-client-request-id': 'bc69821b-25d1-11ec-85fb-845cf346c7cf' cli.azure.cli.core.sdk.policies: 'CommandName': 'webapp config ssl list' cli.azure.cli.core.sdk.policies: 'ParameterSetName': '--resource-group --debug' cli.azure.cli.core.sdk.policies: 'User-Agent': 'AZURECLI/2.28.0 (MSI) azsdk-python-azure-mgmt-web/2.0.0 Python/3.8.9 (Windows-10-10.0.19041-SP0)' cli.azure.cli.core.sdk.policies: 'Authorization': '*****' cli.azure.cli.core.sdk.policies: Request body: cli.azure.cli.core.sdk.policies: This request has no body urllib3.connectionpool: Starting new HTTPS connection (1): management.azure.com:443 urllib3.connectionpool: https://management.azure.com:443 "GET /subscriptions/masked/resourceGroups/com-pep-uat/providers/Microsoft.Web/certificates?api-version=2020-09-01 HTTP/1.1" 200 None cli.azure.cli.core.sdk.policies: Response status: 200 cli.azure.cli.core.sdk.policies: Response headers: cli.azure.cli.core.sdk.policies: 'Cache-Control': 'no-cache' cli.azure.cli.core.sdk.policies: 'Pragma': 'no-cache' cli.azure.cli.core.sdk.policies: 'Transfer-Encoding': 'chunked' cli.azure.cli.core.sdk.policies: 'Content-Type': 'application/json' cli.azure.cli.core.sdk.policies: 'Content-Encoding': 'gzip' cli.azure.cli.core.sdk.policies: 'Expires': '-1' cli.azure.cli.core.sdk.policies: 'Vary': 'Accept-Encoding' cli.azure.cli.core.sdk.policies: 'Strict-Transport-Security': 'max-age=31536000; includeSubDomains' cli.azure.cli.core.sdk.policies: 'x-ms-request-id': '455f7f23-ce2e-4fa9-9659-23e9889d13e5' cli.azure.cli.core.sdk.policies: 'Server': 'Microsoft-IIS/10.0' cli.azure.cli.core.sdk.policies: 'X-AspNet-Version': '4.0.30319' cli.azure.cli.core.sdk.policies: 'X-Powered-By': 'ASP.NET' cli.azure.cli.core.sdk.policies: 'x-ms-ratelimit-remaining-subscription-reads': '11999' cli.azure.cli.core.sdk.policies: 'x-ms-correlation-request-id': '3939682e-a1a7-4090-a943-ed33a3ef3f2e' cli.azure.cli.core.sdk.policies: 'x-ms-routing-request-id': 'SOUTHEASTASIA:20211005T114530Z:3939682e-a1a7-4090-a943-ed33a3ef3f2e' cli.azure.cli.core.sdk.policies: 'X-Content-Type-Options': 'nosniff' cli.azure.cli.core.sdk.policies: 'Date': 'Tue, 05 Oct 2021 11:45:30 GMT' cli.azure.cli.core.sdk.policies: Response content: cli.azure.cli.core.sdk.policies: {"value":[],"nextLink":null,"id":null} cli.knack.cli: Event: CommandInvoker.OnTransformResult [, ] cli.knack.cli: Event: CommandInvoker.OnFilterResult [] ```
Author: namnguyenaurecon
Assignees: -
Labels: `Web Apps`, `Service Attention`
Milestone: -
yonzhan commented 3 years ago

route to service team

Kotasudhakarreddy commented 3 years ago

@namnguyenaurecon could you please share the -debug log for Get-AzWebAppCertificate as well.

namnguyenaurecon commented 3 years ago

@Kotasudhakarreddy , thanks for the response, please see the debug logs below.

DEBUG: 8:08:47 AM - using account id 'masked@test.com'...
DEBUG: [Common.Authentication]: Authenticating using Account: 'masked@test.com', environment:
'AzureCloud', tenant: 'masked'
DEBUG: 8:08:47 AM - [SilentAuthenticator] Calling SharedTokenCacheCredential.GetTokenAsync -
TenantId:'masked', Scopes:'https://management.core.windows.net//.default',
AuthorityHost:'https://login.microsoftonline.com/', UserId:'masked@test.com'
DEBUG: SharedTokenCacheCredential.GetToken invoked. Scopes: [ https://management.core.windows.net//.default ]
ParentRequestId:
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Azure region was not configured or
could not be discovered. Not using a regional authority.
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47] Found 1 cache accounts and 0 broker
accounts
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47] Returning 1 accounts
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] MSAL MSAL.Desktop with assembly
version '4.30.1.0'. CorrelationId(9b1ff6c5-b668-4e79-9cb5-1f1871d97ed6)
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] === AcquireTokenSilent Parameters ===
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] LoginHint provided: False
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Account provided: True
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] ForceRefresh: False
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ]
=== Request Data ===
Authority Provided? - True
Scopes - https://management.core.windows.net//.default
Extra Query Params Keys (space separated) -
ApiId - AcquireTokenSilent
IsConfidentialClient - False
SendX5C - False
LoginHint ? False
IsBrokerConfigured - False
HomeAccountId - False
CorrelationId - 9b1ff6c5-b668-4e79-9cb5-1f1871d97ed6
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] === Token Acquisition (SilentRequest)
 started:

 Authority Host: login.microsoftonline.com
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Azure region was not configured or
could not be discovered. Not using a regional authority.
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Access token is not expired.
Returning the found cache entry. [Current time (10/06/2021 01:08:47) - Expiration Time (10/06/2021 02:05:47 +00:00) -
Extended Expiration Time (10/06/2021 02:05:47 +00:00)]
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Returning access token found in
cache. RefreshOn exists ? False
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Fetched access token from host
login.microsoftonline.com.
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] === Token Acquisition finished
successfully. An access token was returned with Expiration Time: 10/06/2021 02:05:47 +00:00 and Scopes
https://management.core.windows.net//user_impersonation https://management.core.windows.net//.default
DEBUG: SharedTokenCacheCredential.GetToken succeeded. Scopes: [ https://management.core.windows.net//.default ]
ParentRequestId:  ExpiresOn: 2021-10-06T02:05:47.0000000+00:00
DEBUG: [Common.Authentication]: Received token with LoginType 'User', Tenant: 'masked',
UserId: 'masked@test.com'
DEBUG: [Common.Authentication]: Authenticating using Account: 'masked@test.com', environment:
'AzureCloud', tenant: 'masked'
DEBUG: 8:08:47 AM - [SilentAuthenticator] Calling SharedTokenCacheCredential.GetTokenAsync -
TenantId:'masked', Scopes:'https://management.core.windows.net//.default',
AuthorityHost:'https://login.microsoftonline.com/', UserId:'masked@test.com'
DEBUG: SharedTokenCacheCredential.GetToken invoked. Scopes: [ https://management.core.windows.net//.default ]
ParentRequestId:
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Azure region was not configured or
could not be discovered. Not using a regional authority.
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47] Found 1 cache accounts and 0 broker
accounts
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47] Returning 1 accounts
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] MSAL MSAL.Desktop with assembly
version '4.30.1.0'. CorrelationId(91783728-0697-4488-b2ea-801ed15ba9e6)
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] === AcquireTokenSilent Parameters ===
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] LoginHint provided: False
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Account provided: True
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] ForceRefresh: False
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ]
=== Request Data ===
Authority Provided? - True
Scopes - https://management.core.windows.net//.default
Extra Query Params Keys (space separated) -
ApiId - AcquireTokenSilent
IsConfidentialClient - False
SendX5C - False
LoginHint ? False
IsBrokerConfigured - False
HomeAccountId - False
CorrelationId - 91783728-0697-4488-b2ea-801ed15ba9e6
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] === Token Acquisition (SilentRequest)
 started:

 Authority Host: login.microsoftonline.com
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Azure region was not configured or
could not be discovered. Not using a regional authority.
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Access token is not expired.
Returning the found cache entry. [Current time (10/06/2021 01:08:47) - Expiration Time (10/06/2021 02:05:47 +00:00) -
Extended Expiration Time (10/06/2021 02:05:47 +00:00)]
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Returning access token found in
cache. RefreshOn exists ? False
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Fetched access token from host
login.microsoftonline.com.
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] === Token Acquisition finished
successfully. An access token was returned with Expiration Time: 10/06/2021 02:05:47 +00:00 and Scopes
https://management.core.windows.net//user_impersonation https://management.core.windows.net//.default
DEBUG: SharedTokenCacheCredential.GetToken succeeded. Scopes: [ https://management.core.windows.net//.default ]
ParentRequestId:  ExpiresOn: 2021-10-06T02:05:47.0000000+00:00
DEBUG: [Common.Authentication]: Received token with LoginType 'User', Tenant: 'masked',
UserId: 'masked@test.com'
DEBUG: [Common.Authentication]: Authenticating using Account: 'masked@test.com', environment:
'AzureCloud', tenant: 'masked'
DEBUG: 8:08:47 AM - [SilentAuthenticator] Calling SharedTokenCacheCredential.GetTokenAsync -
TenantId:'masked', Scopes:'https://management.core.windows.net//.default',
AuthorityHost:'https://login.microsoftonline.com/', UserId:'masked@test.com'
DEBUG: SharedTokenCacheCredential.GetToken invoked. Scopes: [ https://management.core.windows.net//.default ]
ParentRequestId:
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Azure region was not configured or
could not be discovered. Not using a regional authority.
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47] Found 1 cache accounts and 0 broker
accounts
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47] Returning 1 accounts
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] MSAL MSAL.Desktop with assembly
version '4.30.1.0'. CorrelationId(0af4ae51-2a8b-4334-b26e-efe97b791d07)
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] === AcquireTokenSilent Parameters ===
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] LoginHint provided: False
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Account provided: True
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] ForceRefresh: False
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ]
=== Request Data ===
Authority Provided? - True
Scopes - https://management.core.windows.net//.default
Extra Query Params Keys (space separated) -
ApiId - AcquireTokenSilent
IsConfidentialClient - False
SendX5C - False
LoginHint ? False
IsBrokerConfigured - False
HomeAccountId - False
CorrelationId - 0af4ae51-2a8b-4334-b26e-efe97b791d07
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] === Token Acquisition (SilentRequest)
 started:

 Authority Host: login.microsoftonline.com
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Azure region was not configured or
could not be discovered. Not using a regional authority.
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Access token is not expired.
Returning the found cache entry. [Current time (10/06/2021 01:08:47) - Expiration Time (10/06/2021 02:05:47 +00:00) -
Extended Expiration Time (10/06/2021 02:05:47 +00:00)]
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Returning access token found in
cache. RefreshOn exists ? False
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] Fetched access token from host
login.microsoftonline.com.
DEBUG: (False) MSAL 4.30.1.0 MSAL.Desktop Windows 10 Pro [10/06/2021 01:08:47 - ] === Token Acquisition finished
successfully. An access token was returned with Expiration Time: 10/06/2021 02:05:47 +00:00 and Scopes
https://management.core.windows.net//user_impersonation https://management.core.windows.net//.default
DEBUG: SharedTokenCacheCredential.GetToken succeeded. Scopes: [ https://management.core.windows.net//.default ]
ParentRequestId:  ExpiresOn: 2021-10-06T02:05:47.0000000+00:00
DEBUG: [Common.Authentication]: Received token with LoginType 'User', Tenant: 'masked',
UserId: 'masked@test.com'
DEBUG: ============================ HTTP REQUEST ============================

HTTP Method:
GET

Absolute Uri:
https://management.azure.com/subscriptions/masked/resourceGroups/com-pep-uat/resources?$f
ilter=resourceType eq 'Microsoft.Web/Certificates'&api-version=2016-09-01

Headers:
x-ms-client-request-id        : 48c78839-c424-4a15-a7d9-1ff731ee44ba
accept-language               : en-US

Body:

DEBUG: ============================ HTTP RESPONSE ============================

Status Code:
OK

Headers:
Pragma                        : no-cache
x-ms-ratelimit-remaining-subscription-reads: 11999
x-ms-request-id               : 76094598-d3b4-4c7d-8ff7-7fec19f6c205
x-ms-correlation-request-id   : 76094598-d3b4-4c7d-8ff7-7fec19f6c205
x-ms-routing-request-id       : SOUTHEASTASIA:20211006T010850Z:76094598-d3b4-4c7d-8ff7-7fec19f6c205
Strict-Transport-Security     : max-age=31536000; includeSubDomains
X-Content-Type-Options        : nosniff
Cache-Control                 : no-cache
Date                          : Wed, 06 Oct 2021 01:08:50 GMT

Body:
{
  "value": [
    {
      "id":
"/subscriptions/masked/resourceGroups/com-pep-uat/providers/Microsoft.Web/certificates/C8
DD689F11E9FE3B39663024A19F27C67B3086C5__Australia East_com-pep-uat",
      "name": "masked__Australia East_com-pep-uat",
      "type": "Microsoft.Web/certificates",
      "location": "australiaeast"
    }
  ]
}

DEBUG: ============================ HTTP REQUEST ============================

HTTP Method:
GET

Absolute Uri:
https://management.azure.com/subscriptions/masked/resourceGroups/com-pep-uat/providers/Mi
crosoft.Web/certificates/masked__Australia East_com-pep-uat?api-version=2020-06-01

Headers:
x-ms-client-request-id        : 48c78839-c424-4a15-a7d9-1ff731ee44ba
accept-language               : en-US

Body:

DEBUG: ============================ HTTP RESPONSE ============================

Status Code:
OK

Headers:
Pragma                        : no-cache
Strict-Transport-Security     : max-age=31536000; includeSubDomains
x-ms-request-id               : 95e8ab35-b6d9-4137-ac89-535ba6e826b9
x-ms-ratelimit-remaining-subscription-reads: 11999
x-ms-correlation-request-id   : a796a3e0-ccc2-4271-93fd-4fa42aa747eb
x-ms-routing-request-id       : SOUTHEASTASIA:20211006T010851Z:a796a3e0-ccc2-4271-93fd-4fa42aa747eb
X-Content-Type-Options        : nosniff
Cache-Control                 : no-cache
Date                          : Wed, 06 Oct 2021 01:08:50 GMT
Server                        : Microsoft-IIS/10.0
X-AspNet-Version              : 4.0.30319
X-Powered-By                  : ASP.NET

Body:
{
  "id":
"/subscriptions/masked/resourceGroups/com-pep-uat/providers/Microsoft.Web/certificates/C8
DD689F11E9FE3B39663024A19F27C67B3086C5__Australia East_com-pep-uat",
  "name": "masked__Australia East_com-pep-uat",
  "type": "Microsoft.Web/certificates",
  "location": "Australia East",
  "properties": {
    "password": null,
    "friendlyName": "",
    "subjectName": "*.masked,masked",
    "hostNames": [
      "*.masked",
      "masked"
    ],
    "pfxBlob": null,
    "siteName": null,
    "selfLink": null,
    "issuer": "Go Daddy Secure Certificate Authority - G2",
    "issueDate": "2021-07-07T06:36:52+07:00",
    "expirationDate": "2022-07-07T06:36:52+07:00",
    "thumbprint": "masked",
    "valid": null,
    "toDelete": null,
    "cerBlob": null,
    "publicKeyHash": null,
    "hostingEnvironment": null,
    "hostingEnvironmentProfile": null,
    "keyVaultSecretStatus": "Initialized",
    "webSpace": "com-pep-uat-AustraliaEastwebspace-Xenon",
    "serverFarmId": null,
    "tags": null,
    "resourceGroup": "com-pep-uat"
  }
}

FriendlyName              :
SubjectName               : *.masked,masked
HostNames                 : {*.masked, masked}
PfxBlob                   :
SiteName                  :
SelfLink                  :
Issuer                    : Go Daddy Secure Certificate Authority - G2
IssueDate                 : 7/6/2021 11:36:52 PM
ExpirationDate            : 7/6/2022 11:36:52 PM
Password                  :
Thumbprint                : masked
Valid                     :
CerBlob                   :
PublicKeyHash             :
HostingEnvironmentProfile :
KeyVaultId                :
KeyVaultSecretName        :
KeyVaultSecretStatus      : Initialized
ServerFarmId              :
CanonicalName             :
Id                        : /subscriptions/masked/resourceGroups/com-pep-uat/providers/Mi
                            crosoft.Web/certificates/masked__Australia
                            East_com-pep-uat
Name                      : masked__Australia East_com-pep-uat
Kind                      :
Location                  : Australia East
Type                      : Microsoft.Web/certificates
Tags                      :

DEBUG: AzureQoSEvent: Module: Az.Websites:2.8.2; CommandName: Get-AzWebAppCertificate; PSVersion: 5.1.19041.1237;
IsSuccess: True; Duration: 00:00:05.7730692
DEBUG: Finish sending metric.
DEBUG: 8:08:54 AM - GetAzureWebAppCertificate end processing.
runefa commented 1 year ago

Unable to repro.