Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add support for storage account RBAC only access #592

Merged
merged 1 commit into from
Dec 1, 2024
Merged

Add support for storage account RBAC only access #592

merged 1 commit into from
Dec 1, 2024

Conversation

timja
Copy link
Member

@timja timja commented Dec 1, 2024

downstream of jenkinsci/azure-credentials-plugin#271

Fixes #478

This only appears to affect Windows VMs or VMs with an unmanaged disk

Testing done

Created both a template that uses a storage account with key authentication and RBAC only

Submitter checklist

  • Make sure you are opening from a topic/feature/bugfix branch (right side) and not your main branch!
  • Ensure that the pull request title represents the desired changelog entry
  • Please describe what you did
  • Link to relevant issues in GitHub or Jira
  • Link to relevant pull requests, esp. upstream and downstream changes
  • Ensure you have provided tests - that demonstrates feature works or fixes the issue

timja
timja commented Dec 1, 2024
View reviewed changes
src/main/java/com/microsoft/azure/vmagent/AzureVMAgentTemplate.java
@@ -223,6 +223,38 @@ public String getGalleryResourceGroup() {

private static final int GEN_STORAGE_ACCOUNT_UID_LENGTH = 22;

private static final String VALIDATE_DEPLOYMENT_TEMPLATE_MESSAGE = "Verify configuration:\n\t{0}{1}{2}{3}"
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

moved as method was too long for checkstyle

timja
timja commented Dec 1, 2024
View reviewed changes
src/main/java/com/microsoft/azure/vmagent/AzureVMAgentTemplate.java
@@ -321,7 +353,7 @@ public String getGalleryResourceGroup() {
// If disabled, will not attempt to verify or use
private boolean templateDisabled;

private String templateStatusDetails;
private transient String templateStatusDetails;
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

was showing up in jcasc exports

timja
timja commented Dec 1, 2024
View reviewed changes
src/main/java/com/microsoft/azure/vmagent/AzureVMAgentTemplate.java
@@ -1454,6 +1496,10 @@ public ListBoxModel doFillNsgNameItems(

try {
AzureResourceManager azureClient = AzureResourceManagerCache.get(azureCredentialsId);
if (azureClient == null) {
return model;
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

azure credentials plugin upgrade introduced a checkfornull annotation.

@timja timja enabled auto-merge (squash) December 1, 2024 11:16
@timja timja merged commit 528f9ff into jenkinsci:master Dec 1, 2024
15 of 16 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Cannot use storage account if "Allow storage account key access" is disabled
1 participant
@timja