Azure-native is currently using authentication and REST API libraries that are deprecated for over a year; we're missing out on security updates and it's also blocking fixes for bugs on some of our resources. We need to invest some time to catch up here.
Estimate: 3 eng-wk
Impact: Resolve several open issues and reduce exposure to security incidents.
[x] 1d - Add minimal test authenticating via Cli
[x] 1d - Add minimal test authenticating via SP with cert
[x] 3d - Look into how hard it would be to add an Azure GH runner or test managed identity auth some other way, do it if ok
[ ] 2d - Replace autorest with azcore in client.go, like in Mikhail’s PR, using the existing azCoreTokenCredential as authentication bridge
[ ] Decide whether we’re comfortable with releasing this to everyone.
[ ] If yes, do it.
[ ] 2d - If not, keep both implementations and use the new one in some cases, A/B testing-like.
mjeffryes
commented
3 days ago
Azure-native is currently using authentication and REST API libraries that are deprecated for over a year; we're missing out on security updates and it's also blocking fixes for bugs on some of our resources. We need to invest some time to catch up here.
Estimate: 3 eng-wk Impact: Resolve several open issues and reduce exposure to security incidents.