search

Azure / azure-cli

Azure Command-Line Interface
MIT License
3.97k stars 2.95k forks source link

az identity show returns the wrong case of id that contains 'resourcegroups' for a user managed identity, should be "resourceGroups"" #27099

Open baoj-dfo opened 1 year ago

baoj-dfo commented 1 year ago

Describe the bug

az identity show -g $rg -n $name --subscription $subscription --query="id" returns : /subscriptions/**/resourcegroups/**/providers/Microsoft.ManagedIdentity/userAssignedIdentities/****

the correct case should be "/resourceGroups/ instead of "/resourcegroups/

Related command

az identity show -g $rg -n $name --subscription $subscription --query="id"

Errors

returns: "/subscriptions/**/resourcegroups/**/providers/Microsoft.ManagedIdentity/userAssignedIdentities/****"

Issue script & Debug output

cli.knack.cli: Command arguments: ['identity', 'show', '-g', '[RG_name]', '-n', '[user-managed-identity_id]', '--subscription', '[subscription_name]', '--query=id', '--debug'] cli.knack.cli: init debug log: Enable color in terminal. cli.knack.cli: Event: Cli.PreExecute [] cli.knack.cli: Event: CommandParser.OnGlobalArgumentsCreate [<function CLILogging.on_global_arguments at 0x0209B4A8>, <function OutputProducer.on_global_arguments at 0x0229D6E8>, <function CLIQuery.on_global_arguments at 0x022B8340>] cli.knack.cli: Event: CommandInvoker.OnPreCommandTableCreate [] cli.azure.cli.core: Modules found from index for 'identity': ['azure.cli.command_modules.identity'] cli.azure.cli.core: Loading command modules: cli.azure.cli.core: Name Load Time Groups Commands cli.azure.cli.core: identity 0.005 2 11 cli.azure.cli.core: Total (1) 0.005 2 11 cli.azure.cli.core: These extensions are not installed and will be skipped: ['azext_ai_examples', 'azext_next'] cli.azure.cli.core: Loading extensions: cli.azure.cli.core: Name Load Time Groups Commands Directory cli.azure.cli.core: Total (0) 0.000 0 0 cli.azure.cli.core: Loaded 2 groups, 11 commands. cli.azure.cli.core: Found a match in the command table. cli.azure.cli.core: Raw command : identity show cli.azure.cli.core: Command table: identity show cli.knack.cli: Event: CommandInvoker.OnPreCommandTableTruncate [<function AzCliLogging.init_command_file_logging at 0x0468D538>] cli.azure.cli.core.azlogging: metadata file logging enabled - writing logs to 'C:\Users[username].azure\commands\2023-08-06.11-50-31.identity_show.368420.log'. az_command_data_logger: command args: identity show -g {} -n {} --subscription {} --query={} --debug cli.knack.cli: Event: CommandInvoker.OnPreArgumentLoad [<function register_global_subscription_argument..add_subscription_parameter at 0x046B5580>] cli.knack.cli: Event: CommandInvoker.OnPostArgumentLoad [] cli.knack.cli: Event: CommandInvoker.OnPostCommandTableCreate [<function register_ids_argument..add_ids_arguments at 0x046C6658>, <function register_cache_arguments..add_cache_arguments at 0x046C66E8>] cli.knack.cli: Event: CommandInvoker.OnCommandTableLoaded [] cli.knack.cli: Event: CommandInvoker.OnPreParseArgs [] cli.knack.cli: Event: CommandInvoker.OnPostParseArgs [<function OutputProducer.handle_output_argument at 0x0229D730>, <function CLIQuery.handle_query_parameter at 0x022B8388>, <function register_ids_argument..parse_ids_arguments at 0x046C66A0>] cli.azure.cli.core.commands.client_factory: Getting management service client client_type=ManagedServiceIdentityClient cli.azure.cli.core.auth.persistence: build_persistence: location='C:\Users\[username]\.azure\msal_token_cache.bin', encrypt=True cli.azure.cli.core.auth.binary_cache: load: C:\Users[username].azure\msal_http_cache.bin urllib3.util.retry: Converted retries value: 1 -> Retry(total=1, connect=None, read=None, redirect=None, status=None) msal.authority: openid_config = {'token_endpoint': 'https://login.microsoftonline.com/e5d53bc7-04a1-44bd-86c1-0281ec9c4b55/oauth2/v2.0/token', 'token_endpoint_auth_methods_supported': ['client_secret_post', 'private_key_jwt', 'client_secret_basic'], 'jwks_uri': 'https://login.microsoftonline.com/e5d53bc7-04a1-44bd-86c1-0281ec9c4b55/discovery/v2.0/keys', 'response_modes_supported': ['query', 'fragment', 'form_post'], 'subject_types_supported': ['pairwise'], 'id_token_signing_alg_values_supported': ['RS256'], 'response_types_supported': ['code', 'id_token', 'code id_token', 'id_token token'], 'scopes_supported': ['openid', 'profile', 'email', 'offline_access'], 'issuer': 'https://login.microsoftonline.com/e5d53bc7-04a1-44bd-86c1-0281ec9c4b55/v2.0', 'request_uri_parameter_supported': False, 'userinfo_endpoint': 'https://graph.microsoft.com/oidc/userinfo', 'authorization_endpoint': 'https://login.microsoftonline.com/e5d53bc7-04a1-44bd-86c1-0281ec9c4b55/oauth2/v2.0/authorize', 'device_authorization_endpoint': 'https://login.microsoftonline.com/e5d53bc7-04a1-44bd-86c1-0281ec9c4b55/oauth2/v2.0/devicecode', 'http_logout_supported': True, 'frontchannel_logout_supported': True, 'end_session_endpoint': 'https://login.microsoftonline.com/e5d53bc7-04a1-44bd-86c1-0281ec9c4b55/oauth2/v2.0/logout', 'claims_supported': ['sub', 'iss', 'cloud_instance_name', 'cloud_instance_host_name', 'cloud_graph_host_name', 'msgraph_host', 'aud', 'exp', 'iat', 'auth_time', 'acr', 'nonce', 'preferred_username', 'name', 'tid', 'ver', 'at_hash', 'c_hash', 'email'], 'kerberos_endpoint': 'https://login.microsoftonline.com/e5d53bc7-04a1-44bd-86c1-0281ec9c4b55/kerberos', 'tenant_region_scope': 'NA', 'cloud_instance_name': 'microsoftonline.com', 'cloud_graph_host_name': 'graph.windows.net', 'msgraph_host': 'graph.microsoft.com', 'rbac_url': 'https://pas.windows.net'} msal.application: Broker enabled? False cli.azure.cli.core.auth.credential_adaptor: CredentialAdaptor.get_token: scopes=('https://management.core.windows.net//.default',), kwargs={} cli.azure.cli.core.auth.msal_authentication: UserCredential.get_token: scopes=('https://management.core.windows.net//.default',), claims=None, kwargs={} msal.application: Cache hit an AT cli.azure.cli.core.sdk.policies: Request URL: 'https://management.azure.com/subscriptions/[subscription_id]/resourceGroups/[RG_name]/providers/Microsoft.ManagedIdentity/userAssignedIdentities/[user-managed-identity_id]?api-version=2023-01-31' cli.azure.cli.core.sdk.policies: Request method: 'GET' cli.azure.cli.core.sdk.policies: Request headers: cli.azure.cli.core.sdk.policies: 'Accept': 'application/json' cli.azure.cli.core.sdk.policies: 'CommandName': 'identity show' cli.azure.cli.core.sdk.policies: 'ParameterSetName': '-g -n --subscription --query --debug' cli.azure.cli.core.sdk.policies: 'User-Agent': 'AZURECLI/2.51.0 (MSI) azsdk-python-azure-mgmt-msi/7.0.0 Python/3.10.10 (Windows-10-10.0.22621-SP0)' cli.azure.cli.core.sdk.policies: 'Authorization': '*****' cli.azure.cli.core.sdk.policies: Request body: cli.azure.cli.core.sdk.policies: This request has no body urllib3.connectionpool: Starting new HTTPS connection (1): management.azure.com:443 urllib3.connectionpool: https://management.azure.com:443 "GET /subscriptions/[subscription_id]/resourceGroups/[RG_name]/providers/Microsoft.ManagedIdentity/userAssignedIdentities/[user-managed-identity_id]?api-version=2023-01-31 HTTP/1.1" 200 None cli.azure.cli.core.sdk.policies: Response status: 200 cli.azure.cli.core.sdk.policies: Response headers: cli.azure.cli.core.sdk.policies: 'Cache-Control': 'no-cache' cli.azure.cli.core.sdk.policies: 'Pragma': 'no-cache' cli.azure.cli.core.sdk.policies: 'Transfer-Encoding': 'chunked' cli.azure.cli.core.sdk.policies: 'Content-Type': 'application/json; charset=utf-8' cli.azure.cli.core.sdk.policies: 'Content-Encoding': 'gzip' cli.azure.cli.core.sdk.policies: 'Expires': '-1' cli.azure.cli.core.sdk.policies: 'Vary': 'Accept-Encoding' cli.azure.cli.core.sdk.policies: 'Strict-Transport-Security': 'max-age=31536000; includeSubDomains' cli.azure.cli.core.sdk.policies: 'x-ms-ratelimit-remaining-subscription-reads': '11999' cli.azure.cli.core.sdk.policies: 'x-ms-request-id': '1fb0b783-ff48-4d96-b8e8-2761e621fafd' cli.azure.cli.core.sdk.policies: 'x-ms-correlation-request-id': '1fb0b783-ff48-4d96-b8e8-2761e621fafd' cli.azure.cli.core.sdk.policies: 'x-ms-routing-request-id': 'WESTUS2:20230806T185032Z:1fb0b783-ff48-4d96-b8e8-2761e621fafd' cli.azure.cli.core.sdk.policies: 'X-Content-Type-Options': 'nosniff' cli.azure.cli.core.sdk.policies: 'Date': 'Sun, 06 Aug 2023 18:50:31 GMT' cli.azure.cli.core.sdk.policies: Response content: cli.azure.cli.core.sdk.policies: {"location":"canadacentral","tags":{},"id":"/subscriptions/[subscription_id]/resourcegroups/[RG_name]/providers/Microsoft.ManagedIdentity/userAssignedIdentities/[user-managed-identity_id]","name":"[user-managed-identity_id]","type":"Microsoft.ManagedIdentity/userAssignedIdentities","properties":{"tenantId":"[tenantId]","principalId":"[principalId]","clientId":"[clientId]"}} cli.knack.cli: Event: CommandInvoker.OnTransformResult [<function _resource_group_transform at 0x046B1D18>, <function _x509_from_base64_to_hex_transform at 0x046B1D60>] cli.knack.cli: Event: CommandInvoker.OnFilterResult [<function CLIQuery.handle_query_parameter..filter_output at 0x04859148>] "/subscriptions/[subscription_id]/resourcegroups/[RG_name]/providers/Microsoft.ManagedIdentity/userAssignedIdentities/[user-managed-identity_id]" cli.knack.cli: Event: Cli.SuccessfulExecute [] cli.knack.cli: Event: Cli.PostExecute [<function AzCliLogging.deinit_cmd_metadata_logging at 0x0468D658>] az_command_data_logger: exit code: 0 cli.main: Command ran in 1.436 seconds (init: 0.494, invoke: 0.942) telemetry.main: Begin splitting cli events and extra events, total events: 1 telemetry.client: Accumulated 0 events. Flush the clients. telemetry.main: Finish splitting cli events and extra events, cli events: 1 telemetry.save: Save telemetry record of length 3337 in cache telemetry.main: Begin creating telemetry upload process. telemetry.process: Creating upload process: "C:\Program Files (x86)\Microsoft SDKs\Azure\CLI2\python.exe C:\Program Files (x86)\Microsoft SDKs\Azure\CLI2\Lib\site-packages\azure\cli\telemetry__init__.pyc C:\Users[username].azure" telemetry.process: Return from creating process telemetry.main: Finish creating telemetry upload process.

Expected behavior

should returns: "/subscriptions/**/resourceGroups/**/providers/Microsoft.ManagedIdentity/userAssignedIdentities/****"

Environment Summary

azure-cli 2.51.0 core 2.51.0 telemetry 1.1.0 Extensions: amg 1.2.6 authV2 0.1.2

Dependencies: msal 1.24.0b1 azure-mgmt-resource 23.1.0b2

Python location 'C:\Program Files (x86)\Microsoft SDKs\Azure\CLI2\python.exe'

Additional context

No response

yonzhan commented 1 year ago

Thank you for opening this issue, we will look into it.