Open jiasli opened 2 years ago
Deprecate --sdk-auth
@jiasli Following up with this thread.
Can you confirm if --sdk-auth
was deprecated or not!
The official docs for az ad sp still lists the flag without any deprecation notice.
I've seen the Azure CLI latest doc has been provide new option --json-auth
will be different format than --sdk-auth
From my understanding, they will discontinue for --sdk-auth
in the future
Related command
Is your feature request related to a problem? Please describe.
The original designed consumers of the
az ad sp create-for-rbac --sdk-auth
JSON output - Azure SDKs (Java, Python, etc.) have deprecated the usage ofget_client_from_json_dict
(https://github.com/Azure/azure-sdk-for-python/issues/15075). Azure CLI should deprecate--sdk-auth
as well.However, we can't immediately take
--sdk-auth
away because GitHub Action heavily relies on--sdk-auth
, even though GitHub Action is not a designed consumer of--sdk-auth
(Azure/github#152).The output of
az ad sp create-for-rbac
without or with--sdk-auth
varies a lot.Without
--sdk-auth
:With
--sdk-auth
:The root cause leading to this confusion is due to the name inconsistency between Azure AD and Azure SDKs (https://github.com/Azure/azure-cli/pull/19872#issuecomment-1031153690):
appId
clientId
password
clientSecret
tenant
/directorytenantId
Describe the solution you'd like
We should either
--sdk-auth
--sdk-auth
indefinitelyAdditional context