[Core] Fix get_token() issue in msi login and `expiresIn` key error in cloud shell login credentials for track 2 SDK related commands by Juliehzl · Pull Request #14187 · Azure/azure-cli

Juliehzl · 2020-07-02T10:20:08Z

Description

Testing Guide

Test in Cloud shell as [EventGrid] Add CLI support for 2020-04-01-preview and mark preview features with is_Preview=True #14027 (comment)
az login --identity and try track 2 extension

History Notes

[Component Name 1] BREAKING CHANGE: az command a: Make some customer-facing breaking change.
[Component Name 2] az command b: Add some customer-facing feature.

This checklist is used to make sure that common guidelines for a pull request are followed.

The PR title and description has followed the guideline in Submitting Pull Requests.
I adhere to the Command Guidelines.

jiasli · 2020-07-03T05:50:07Z

src/azure-cli-core/azure/cli/core/tests/test_profile.py


    @mock.patch('azure.cli.core._profile._load_tokens_from_file', autospec=True)
-    @mock.patch('msrestazure.azure_active_directory.MSIAuthentication', autospec=True)
+    @mock.patch('azure.cli.core._profile.MSIAuthenticationWrapper', autospec=True)


Is this change necessary? Won't it be nice to have MSIAuthenticationWrapper also tested?

mock.patch by default will create a MagicMock instance which can't be inherited, maybe using new=MSIAuthentication may work? Haven't tested.

jiasli · 2020-07-03T05:52:00Z

src/azure-cli-core/azure/cli/core/_profile.py

+from azure.core.credentials import AccessToken
+from msrestazure.azure_active_directory import MSIAuthentication


Please delay these imports as they will cause significant latency on client-side commands.

How about extracting MSIAuthenticationWrapper to src/azure-cli-core/azure/cli/core/adal_authentication.py and import it conditionally?

jsntcy · 2020-07-03T09:17:02Z

src/azure-cli-core/azure/cli/core/adal_authentication.py

+        try:
+            return AccessToken(token, int(full_token['expiresIn'] + time.time()))
+        except KeyError:
+            return AccessToken(token, int(full_token['expires_on']))


This logic is for cloud shell? If yes, can we add comments so that others can understand the purpose?

.gitignore

yonzhan · 2020-07-03T13:22:57Z

add to S172

jiasli · 2020-07-06T01:52:30Z

Please specify what "login credentials issue" is.

jiasli · 2020-07-06T01:56:53Z

src/azure-cli-core/azure/cli/core/_profile.py

    is_windows, is_wsl
 from azure.cli.core.cloud import get_active_cloud, set_cloud_subscription

+from .adal_authentication import MSIAuthenticationWrapper


Another problem with mock.patch is for this form of import, it won't work. After importing MSIAuthenticationWrapper, it becomes a local reference azure.cli.core._profile.MSIAuthenticationWrapper. See Where to patch.

Juliehzl and others added 6 commits July 2, 2020 15:05

resolve ketError for Cloud Shell

d8a71bf

fix cloud shell

7acdefa

add get_token for msi

e9afbbf

add more to ignore

9f2be7a

reset

87aa599

ignore launch.json

83c1654

Juliehzl requested review from arrownj, fengzhou-msft, haroldrandom, jiasli, mmyyrroonn and qianwens as code owners July 2, 2020 10:20

qianwens approved these changes Jul 2, 2020

View reviewed changes

Ubuntu and others added 12 commits July 2, 2020 11:01

rename class

141f00d

fix style

6c41d3c

pass test_get_login_credentials_msi_system_assigned

b93e244

pass test_get_login_credentials_msi_system_assigned

0f54593

❯ azdev test test_get_login_credentials_msi_user_assigned_with_client_id

f95b978

test_get_login_credentials_msi_user_assigned_with_object_id

d872b65

test_get_login_credentials_msi_user_assigned_with_res_id

936ab6d

test pass get_raaw_token

e9f5441

test_get_raw_token_in_cloud_console

e751ece

fix test

55b350a

test pass

41b2ae1

test pass

4cf1fcb

Juliehzl requested a review from jsntcy July 3, 2020 05:49

jiasli reviewed Jul 3, 2020

View reviewed changes

jiasli requested changes Jul 3, 2020

View reviewed changes

Juliehzl added 2 commits July 3, 2020 14:16

revert launch.json

5bdfe74

change gitignore

8a5985e

import as required

2ab696b

jsntcy reviewed Jul 3, 2020

View reviewed changes

.gitignore Outdated Show resolved Hide resolved

yonzhan assigned Juliehzl Jul 3, 2020

yonzhan added this to the S172 milestone Jul 3, 2020

jiasli reviewed Jul 6, 2020

View reviewed changes

Juliehzl added 2 commits July 9, 2020 16:53

resolve comments

00e01aa

mock test

6085e2a

Juliehzl changed the title ~~[Core] Fix login credentials issue for track 2 SDK~~ [Core] Fix msi and cloud shell login credentials issue for track 2 SDK related commands Jul 9, 2020

Juliehzl requested review from jiasli and jsntcy July 9, 2020 10:58

Juliehzl changed the title ~~[Core] Fix msi and cloud shell login credentials issue for track 2 SDK related commands~~ [Core] Fix get_token() issue in msi login and expiresIn key error in cloud shell login credentials for track 2 SDK related commands Jul 9, 2020

jiasli approved these changes Jul 9, 2020

View reviewed changes

Juliehzl merged commit fcc93da into Azure:dev Jul 9, 2020

jiasli mentioned this pull request Jul 13, 2020

{Perf} Delay importing MSIAuthenticationWrapper and check_version_compatibility #14331

Merged

Juliehzl mentioned this pull request Jul 17, 2020

Can't list datashare accounts Azure/azure-cli-extensions#1900

Closed

jiasli mentioned this pull request Aug 14, 2020

Authentication with credential acquired in cloud shell fails #14218

Closed

jiasli mentioned this pull request Nov 13, 2020

{Core} Honor expiresOn, instead of expiresIn #15901

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Core] Fix get_token() issue in msi login and `expiresIn` key error in cloud shell login credentials for track 2 SDK related commands#14187

[Core] Fix get_token() issue in msi login and `expiresIn` key error in cloud shell login credentials for track 2 SDK related commands#14187
Juliehzl merged 23 commits intoAzure:devfrom
Juliehzl:authentication

Juliehzl commented Jul 2, 2020 •

edited

Loading

Uh oh!

jiasli Jul 3, 2020

Uh oh!

jiasli Jul 6, 2020 •

edited

Loading

Uh oh!

jiasli Jul 3, 2020

Uh oh!

jiasli Jul 3, 2020

Uh oh!

Juliehzl Jul 6, 2020

Uh oh!

jsntcy Jul 3, 2020 •

edited

Loading

Uh oh!

Juliehzl Jul 6, 2020

Uh oh!

Uh oh!

yonzhan commented Jul 3, 2020

Uh oh!

jiasli commented Jul 6, 2020

Uh oh!

jiasli Jul 6, 2020

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

		from azure.core.credentials import AccessToken
		from msrestazure.azure_active_directory import MSIAuthentication

Conversation

Juliehzl commented Jul 2, 2020 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

jiasli Jul 3, 2020

Choose a reason for hiding this comment

Uh oh!

jiasli Jul 6, 2020 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

jiasli Jul 3, 2020

Choose a reason for hiding this comment

Uh oh!

jiasli Jul 3, 2020

Choose a reason for hiding this comment

Uh oh!

Juliehzl Jul 6, 2020

Choose a reason for hiding this comment

Uh oh!

jsntcy Jul 3, 2020 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Juliehzl Jul 6, 2020

Choose a reason for hiding this comment

Uh oh!

Uh oh!

yonzhan commented Jul 3, 2020

Uh oh!

jiasli commented Jul 6, 2020

Uh oh!

jiasli Jul 6, 2020

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

Juliehzl commented Jul 2, 2020 •

edited

Loading

jiasli Jul 6, 2020 •

edited

Loading

jsntcy Jul 3, 2020 •

edited

Loading