Open jiasli opened 3 months ago
Related command az login --identity
az login --identity
Is your feature request related to a problem? Please describe. Azure CLI uses below arguments for service principal authentication:
--username
--password
such as
az login --service-principal --username xxx --password xxx --tenant xxx
These arguments are also used in user authentication:
az login --username xxx --password xxx --tenant xxx
Reusing --username and --password for both user and service principal authentication can be confusing.
Describe the solution you'd like To be consistent with OAuth 2.0 client credentials flow parameters,
--client-id
--client-secret
--certificate
When supporting OIDC authentication, --federated-token is introduced, instead of reusing --password.
--federated-token
Describe alternatives you've considered
Additional context --identity may require similar changes: https://github.com/Azure/azure-cli/issues/29480
--identity
Thank you for opening this issue, we will look into it.
Related command
az login --identity
Is your feature request related to a problem? Please describe. Azure CLI uses below arguments for service principal authentication:
--username
: client ID--password
: client secret or certificatesuch as
These arguments are also used in user authentication:
Reusing
--username
and--password
for both user and service principal authentication can be confusing.Describe the solution you'd like To be consistent with OAuth 2.0 client credentials flow parameters,
--username
with--client-id
--password
with--client-secret
,--certificate
When supporting OIDC authentication,
--federated-token
is introduced, instead of reusing--password
.Describe alternatives you've considered
Additional context
--identity
may require similar changes: https://github.com/Azure/azure-cli/issues/29480