In memory cache of MSAL tokens for Non-GUI Linux Scenarios #1568

bpkroth · 2024-04-04T22:31:53Z

Feature description

Some organizations now require an MSAL token for authentication to git repositories instead of SSH.

However, the current ecosystem doesn't allow for an in memory cache of the MSAL token for use by multiple git invocations (e.g., via git credential store).

Please consider integration here to allow a more secure but also user friendly deployment, similar to what one has with ssh-agent for instance.

The text was updated successfully, but these errors were encountered:

sam-mfb · 2024-04-06T11:34:04Z

As explained in 1549 this is, unfortunately, not something in gcm's control. The plaintext storage is created and controlled by the MSAL library, so no matter what gcm does that plaintext file is still going to be created until the MSAL library changes.

In terms of having a solution similar to ssh-agent that would allow forwarding requests from linux to gcm on another host via a socket or the like, there is a discussion item on that here

bpkroth added the enhancement New feature or request label Apr 4, 2024

bpkroth mentioned this issue Apr 4, 2024

Support for encrypted token cache on Linux without GUI AzureAD/microsoft-authentication-library-for-dotnet#3033

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

In memory cache of MSAL tokens for Non-GUI Linux Scenarios #1568

In memory cache of MSAL tokens for Non-GUI Linux Scenarios #1568

bpkroth commented Apr 4, 2024

sam-mfb commented Apr 6, 2024

In memory cache of MSAL tokens for Non-GUI Linux Scenarios #1568

In memory cache of MSAL tokens for Non-GUI Linux Scenarios #1568

Comments

bpkroth commented Apr 4, 2024

Feature description

sam-mfb commented Apr 6, 2024