Closed Arthurvdv closed 1 year ago
@Arthurvdv The difference between user_impersonation and .default is the scope. .default is the default scope with all the permissions and user_impersonation is with a limited scope for a user. Fabric doesn;t have user_impersonation. So I would prefer user_impersonation for data lake and fabric it must be .default.
For client_info it is more about get additional information about the client.
@Bertverbeek4PS , thanks for the info for the scopes, I'll update the PR on this.
Still confused about the client_info. When I look at the token I'm not seeing anything different including this parameter or not. Am I overlooking something here?
set client_info=1 | no client_info |
---|---|
@Arthurvdv there is indeed not much different. I also see nothing in the Azure Blob API. So proberly it will be skipped 😄
@Bertverbeek4PS, thanks for verifying, PR merged.
https://learn.microsoft.com/en-us/fabric/onelake/onelake-access-api
Together with @Bertverbeek4PS we've discovered that we can remove the need for a username and password for the Microsoft Fabric setup (hooray!). This means we can reduce the current complexity of acquiring an access token.
I have two questions where I could use some insights;
A) Resource Currently on Azure Data Lake it's set to
https://storage.azure.com/user_impersonation
and on Microsoft Fabric onhttps://storage.azure.com/.default
. Can I change this to .default for both Storage Types? I've tested this on my environment en didn't encounter any issues, but not sure if this could break something for the Azure Data Lake setup?B) client_info What does the parameter
client_info=1
does? I can't find any difference in the token when not include this. Can I safely remove this from the AcquireTokenBodyTok label?