In many environments it is a security requirement that scripts / end users do not install anything from a source that is not under direct control of the organization. So for example, if your users need some public NuGet package, then you snap a version of that public NuGet package into an organization-private feed, where it can be security-scanned, and is relatively protected from being updated unbenkownst to the organization; and users get the package from there, instead of from the public feed.
I'd like to be able to use Install-PSResource to install modules from such a private NuGet feed... but the problem is that my feed requires Entra (AAD) authentication, and I am not aware of a way to do that with a PSCredential. (And, BTW, we really do not want to use PATs.)
Summary of the new feature / enhancement
In many environments it is a security requirement that scripts / end users do not install anything from a source that is not under direct control of the organization. So for example, if your users need some public NuGet package, then you snap a version of that public NuGet package into an organization-private feed, where it can be security-scanned, and is relatively protected from being updated unbenkownst to the organization; and users get the package from there, instead of from the public feed.
I'd like to be able to use
Install-PSResource
to install modules from such a private NuGet feed... but the problem is that my feed requires Entra (AAD) authentication, and I am not aware of a way to do that with aPSCredential
. (And, BTW, we really do not want to use PATs.)Proposed technical implementation details (optional)
No response