You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: CHANGELOG.md
+18Lines changed: 18 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -2,6 +2,24 @@
2
2
3
3
All changes to the package starting with v0.3.1 will be logged here.
4
4
5
+
## v1.2.0 [2023-03-03]
6
+
#### What's New
7
+
* Support for Azure Managed Identities as federation providers.
8
+
9
+
#### Enhancements
10
+
* Fall back to reduced functionality (no shell completion) when the python environment is using `click<8.0.0`.
11
+
12
+
#### Bug Fixes
13
+
* If a justification for checkout/secrets viewing is provided, ensure it is <=255 characters.
14
+
* Fix issue with extraction of OIDC token expiration time. Moved to `jwt` library to perform the token decode.
15
+
16
+
#### Dependencies
17
+
* Switching `britive` dependency from a compatible version requirement to a `>=` requirement to capture minor updates.
18
+
*`britive>=2.16.0` from britive~=2.15.1
19
+
20
+
#### Other
21
+
* Modify the error handling and reporting process to not raise `click.ClickException` exceptions in the `safe_cli` method. Instead, raise the underlying exception so a better error message is provided.
pybritive checkout "profile" --federation-provider azuresmi # use system assigned managed identities with the default OIDC audience
181
+
pybritive checkout "profile" --federation-provider azuresmi-audience # use system assigned managed identities with a custom OIDC audience
182
+
pybritive checkout "profile" --federation-provider azuresmi-audience_expirationseconds # use system assigned managed identities with a custom OIDC audience and set the Britive expiration (in seconds) of the generated token
183
+
pybritive checkout "profile" --federation-provider azuresmi_expirationseconds # use system assigned managed identities with the default OIDC audience and set the Britive expiration (in seconds) of the generated token
184
+
185
+
# azure user assigned managed identities (note that a client id is a required field)
186
+
pybritive checkout "profile" --federation-provider azuresmi-clientid # use user assigned managed identities with the default OIDC audience
187
+
pybritive checkout "profile" --federation-provider azuresmi-clientid|audience # use user assigned managed identities with a custom OIDC audience
188
+
pybritive checkout "profile" --federation-provider azuresmi-clientid|audience_expirationseconds # use user assigned managed identities with a custom OIDC audience and set the Britive expiration (in seconds) of the generated token
189
+
pybritive checkout "profile" --federation-provider azuresmi-clientid_expirationseconds # use user assigned managed identities with the default OIDC audience and set the Britive expiration (in seconds) of the generated token
157
190
~~~
158
191
159
192
In general the field format for `--federation-provider` is `provider-[something provider specific]_[duration in seconds]`.
0 commit comments