Use Azure Identity's TokenCredential for auth. #333
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Remove older python package support
akharit
commented
Jul 16, 2024
akharit
commented
Jul 16, 2024
rayluo
reviewed
Jul 16, 2024
dylanw-oss
approved these changes
Jul 17, 2024
dylanw-oss
left a comment
dylanw-oss
left a comment
There was a problem hiding this comment.
Thanks for fixing the feature gap!
|
@akharit, thanks for fixing it! Do you have an ETA when a new package will be available? |
xiangyan99
reviewed
Jul 26, 2024
xiangyan99
reviewed
Jul 26, 2024
akharit
force-pushed
the
personal/akharit/azure_identity
branch
from
30826d6 to
0e5b5d5
Compare
|
Ha, well this is silly but I had been using lib.auth() for most of my applications because it worked so seamlessly for interactive auth via device code without having to install an additional dependency in azure CLI from azure.datalake.store import lib
import polars as pl
token = lib.auth(
tenant_id=os.environ["SP_TENANT_ID"],
resource = 'https://storage.azure.com/'
)
# <interactive prompt for devicecode login>
# Ex. downstream, to read in data via polars
opts = {
"tenant_id": token.token["tenant"],
"client_id": token.token["client"],
"token": token.token["access_token"],
"account_name": "my_account"
}
lazy_data = pl.scan_parquet("az://some.path/here", storage_options=opts)perusing the azure-identity documents and trying a couple dozen combinations, I finally figured out a replacement. from azure.identity import DefaultAzureCredential
token_credential = DefaultAzureCredential(exclude_interactive_browser_credential=False, interactive_browser_tenant_id=os.environ["SP_TENANT_ID"])
access_token = token_credential.get_token('https://storage.azure.com/.default', tenant_id=os.environ["SP_TENANT_ID"])Hopefully, this will save someone reading a couple of hours of headaches trying to get this working. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Use Azure Identity's TokenCredential for auth.
Remove older python package support
Will fix #332
This checklist is used to make sure that common guidelines for a pull request are followed.
Description of the change
General Guidelines
Not checking in the recordings. Fix needed wrt some fields like lease id, session id, token etc. that are causing the test run with recording to fail.