Loading [MathJax]/extensions/tex2jax.js
azure-identity
All Classes Files Functions Variables Typedefs Pages
managed_identity_credential.hpp
Go to the documentation of this file.
1// Copyright (c) Microsoft Corporation.
2// Licensed under the MIT License.
3
9#pragma once
10
11#include <azure/core/credentials/credentials.hpp>
12#include <azure/core/credentials/token_credential_options.hpp>
13#include <azure/core/resource_identifier.hpp>
14
15#include <memory>
16#include <string>
17#include <utility>
18
19#if defined(_azure_TESTING_BUILD)
20// Define the class used from tests
21namespace Azure { namespace Identity { namespace Test {
22 class ManagedIdentityId_Basic_Test;
23 class ManagedIdentityId_Invalid_Test;
24}}} // namespace Azure::Identity::Test
25#endif
26
27namespace Azure { namespace Identity {
28 namespace _detail {
29 class ManagedIdentitySource;
30
39 enum class ManagedIdentityIdKind
40 {
41 SystemAssigned,
42 ClientId,
43 ObjectId,
44 ResourceId,
45 };
46 } // namespace _detail
47
54 class ManagedIdentityId final {
55 friend class ManagedIdentityCredential;
56#if defined(_azure_TESTING_BUILD)
57 // make tests classes friends to validate ManagedIdentityId behavior
58 friend class Azure::Identity::Test::ManagedIdentityId_Basic_Test;
59 friend class Azure::Identity::Test::ManagedIdentityId_Invalid_Test;
60#endif
61
62 private:
63 _detail::ManagedIdentityIdKind m_idKind;
64 std::string m_id;
65
66 public:
72 explicit ManagedIdentityId() : m_idKind(_detail::ManagedIdentityIdKind::SystemAssigned) {}
73
78 static ManagedIdentityId SystemAssigned() { return ManagedIdentityId(); }
79
85 static ManagedIdentityId FromUserAssignedClientId(std::string id)
86 {
87 return ManagedIdentityId(_detail::ManagedIdentityIdKind::ClientId, std::move(id));
88 }
89
95 static ManagedIdentityId FromUserAssignedObjectId(std::string id)
96 {
97 return ManagedIdentityId(_detail::ManagedIdentityIdKind::ObjectId, std::move(id));
98 }
99
106 static ManagedIdentityId FromUserAssignedResourceId(Azure::Core::ResourceIdentifier const& id)
107 {
108 return ManagedIdentityId(_detail::ManagedIdentityIdKind::ResourceId, id.ToString());
109 }
110
111 private:
124 explicit ManagedIdentityId(_detail::ManagedIdentityIdKind idKind, std::string id)
125 : m_idKind(idKind), m_id(std::move(id))
126 {
127 if (idKind == _detail::ManagedIdentityIdKind::SystemAssigned && !m_id.empty())
128 {
129 throw std::invalid_argument(
130 "There is no need to provide an ID (such as client, object, or resource ID) if you are "
131 "using system-assigned managed identity.");
132 }
133
134 if (m_id.empty()
135 && (idKind == _detail::ManagedIdentityIdKind::ClientId
136 || idKind == _detail::ManagedIdentityIdKind::ObjectId
137 || idKind == _detail::ManagedIdentityIdKind::ResourceId))
138 {
139 throw std::invalid_argument(
140 "Provide the value of the client, object, or resource ID corresponding to the "
141 "ManagedIdentityIdKind specified. The provided ID should not be empty in the case of "
142 "user-assigned managed identity.");
143 }
144 }
145
151 std::string const& GetId() const { return m_id; }
152
157 _detail::ManagedIdentityIdKind GetManagedIdentityIdKind() const { return m_idKind; }
158 };
159
164 struct ManagedIdentityCredentialOptions final : public Core::Credentials::TokenCredentialOptions
165 {
170 ManagedIdentityId IdentityId;
171 };
172
180 class ManagedIdentityCredential final : public Core::Credentials::TokenCredential {
181 private:
182 std::unique_ptr<_detail::ManagedIdentitySource> m_managedIdentitySource;
183
184 public:
189 ~ManagedIdentityCredential() override;
190
197 explicit ManagedIdentityCredential(
198 std::string const& clientId = std::string(),
199 Azure::Core::Credentials::TokenCredentialOptions const& options
200 = Azure::Core::Credentials::TokenCredentialOptions());
201
207 explicit ManagedIdentityCredential(
208 Azure::Identity::ManagedIdentityCredentialOptions const& options);
209
215 explicit ManagedIdentityCredential(
216 Azure::Core::Credentials::TokenCredentialOptions const& options);
217
228 Core::Credentials::AccessToken GetToken(
229 Core::Credentials::TokenRequestContext const& tokenRequestContext,
230 Core::Context const& context) const override;
231 };
232
233}} // namespace Azure::Identity
Azure::Identity::ManagedIdentityCredential
Attempts authentication using a managed identity that has been assigned to the deployment environment...
Definition managed_identity_credential.hpp:180
Azure::Identity::ManagedIdentityCredential::GetToken
Core::Credentials::AccessToken GetToken(Core::Credentials::TokenRequestContext const &tokenRequestContext, Core::Context const &context) const override
Gets an authentication token.
Definition managed_identity_credential.cpp:95
Azure::Identity::ManagedIdentityCredential::~ManagedIdentityCredential
~ManagedIdentityCredential() override
Destructs TokenCredential.
Azure::Identity::ManagedIdentityId
The type of managed identity and its corresponding identifier.
Definition managed_identity_credential.hpp:54
Azure::Identity::ManagedIdentityId::ManagedIdentityId
ManagedIdentityId()
Constructs the type of managed identity.
Definition managed_identity_credential.hpp:72
Azure::Identity::ManagedIdentityId::FromUserAssignedResourceId
static ManagedIdentityId FromUserAssignedResourceId(Azure::Core::ResourceIdentifier const &id)
Create an instance of ManagedIdentityId for a user-assigned managed identity.
Definition managed_identity_credential.hpp:106
Azure::Identity::ManagedIdentityId::SystemAssigned
static ManagedIdentityId SystemAssigned()
Create an instance of ManagedIdentityId for a system-assigned managed identity.
Definition managed_identity_credential.hpp:78
Azure::Identity::ManagedIdentityId::FromUserAssignedClientId
static ManagedIdentityId FromUserAssignedClientId(std::string id)
Create an instance of ManagedIdentityId for a user-assigned managed identity.
Definition managed_identity_credential.hpp:85
Azure::Identity::ManagedIdentityId::FromUserAssignedObjectId
static ManagedIdentityId FromUserAssignedObjectId(std::string id)
Create an instance of ManagedIdentityId for a user-assigned managed identity.
Definition managed_identity_credential.hpp:95
Azure::Identity::ManagedIdentityCredentialOptions
Options for managed identity credential.
Definition managed_identity_credential.hpp:165
Azure::Identity::ManagedIdentityCredentialOptions::IdentityId
ManagedIdentityId IdentityId
Specifies the type of managed identity and its corresponding identifier, based on how it was configur...
Definition managed_identity_credential.hpp:170
Generated by doxygen 1.9.7