search

Azure / kubelogin

A Kubernetes credential (exec) plugin implementing azure authentication
https://azure.github.io/kubelogin/
MIT License
477 stars 88 forks source link

`interactive` mode results in an empty refresh_token #499

Open kaplik opened 1 month ago

kaplik commented 1 month ago

As described here in https://github.com/Azure/kubelogin/issues/311 it looks like interactive login mode is not getting a refresh token, so reauth is required every ~70 minutes (validity of AAD access token). It looks like all the upstream issues mentioned in the original issue https://github.com/Azure/kubelogin/issues/311 in azure go sdk are closed/implemented.

Using interactive is IMO more user-friendly and should support caching of the refresh token in a similar way to how devicecode works.

weinong commented 2 weeks ago

Token caching is only supported in v1.8.0-beta https://github.com/Azure/azure-sdk-for-go/blob/main/sdk/azidentity/TOKEN_CACHING.MD?plain=1#L21