search

PowerShell / PSResourceGet

PSResourceGet is the package manager for PowerShell
https://www.powershellgallery.com/packages/Microsoft.PowerShell.PSResourceGet
MIT License
483 stars 92 forks source link

Install-Module should be able to download from private feeds that require Entra (AAD) authentication. #1551

Open jazzdelightsme opened 7 months ago

jazzdelightsme commented 7 months ago

Summary of the new feature / enhancement

In many environments it is a security requirement that scripts / end users do not install anything from a source that is not under direct control of the organization. So for example, if your users need some public NuGet package, then you snap a version of that public NuGet package into an organization-private feed, where it can be security-scanned, and is relatively protected from being updated unbenkownst to the organization; and users get the package from there, instead of from the public feed.

I'd like to be able to use Install-PSResource to install modules from such a private NuGet feed... but the problem is that my feed requires Entra (AAD) authentication, and I am not aware of a way to do that with a PSCredential. (And, BTW, we really do not want to use PATs.)

Proposed technical implementation details (optional)

No response

jazzdelightsme commented 7 months ago

possibly a duplicate of #1511