Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Recursive groups for Service Principals #1

Closed
simongottschlag opened this issue Jan 16, 2021 · 7 comments · Fixed by #8
Closed

Recursive groups for Service Principals #1

simongottschlag opened this issue Jan 16, 2021 · 7 comments · Fixed by #8
Labels
enhancement New feature or request

Comments

@simongottschlag
Copy link
Contributor

Hi!

Just found this project looking through the azuread terraform provider. Great work!

I've been building a reverse proxy that allows normal users and service principals to connect to any Kubernetes API and one part of this is extracting the groups they are members of.

I'm using a pure http client to get all the groups for a service principal, but after looking at this SDK it should fit quite well here instead.

Do you have any thoughts on adding this functionality to this SDK?

This is how I am doing it right now: https://github.com/XenitAB/azad-kube-proxy/blob/main/pkg/azure/service_principal.go
@simongottschlag
Copy link
Contributor Author

I'm willing to give it a try and contribute it if it's something you would like. I'm not really good at programming, but should be able to solve it with some guidance.

@simongottschlag
Copy link
Contributor Author

After looking through the code it seems like we don't have it for users either.

To be clear, what I would like to add is the following:

I would gladly try and add these myself with your approval.

@manicminer
Copy link
Owner

Hi @simongottschlag, thanks for requesting! I won't have time to add this for a week or two, but in the meantime I'm more than happy to accept contributions. This would be a really useful feature.

The long term goal is to have as much API coverage as possible, particularly as it's doubtful at this point that the official Azure Go SDK will ever receive MS Graph support.

I added some auth & client tests this weekend which should make it easier to develop. Please shoot any questions if you choose to have a go, it would be great to hear any feedback. Thanks!

@manicminer manicminer added the enhancement New feature or request label Jan 17, 2021
@simongottschlag
Copy link
Contributor Author

@manicminer I've created a first pull request for the user client: #5

This was referenced Jan 18, 2021
Closed
Merged
@simongottschlag
Copy link
Contributor Author

Thank you for the great work and quick response @manicminer ! 🥇

@manicminer
Copy link
Owner

No worries, feel free to send along any other additions, or raise any bugs you find 👍

@simongottschlag
Copy link
Contributor Author

@manicminer I was able to move over to your SDK in under an hour: XenitAB/azad-kube-proxy#8

Thank you so much and I'll get back to you if I find any issues. Made my code much better using this! <3

manicminer pushed a commit that referenced this issue Sep 29, 2022
@MarkDordoy
Merge pull request #1 from MarkDordoy/md/support-signin-logs
74c2ccc 
Added support for signin logs
manicminer pushed a commit that referenced this issue Jan 27, 2023
@SwissGipfel
Merge pull request #1 from SwissGipfel/add-group-directly-in-au
0308e9c 
Add group directly in au
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Service Principals: ListGroupMemberships simongottschlag/hamilton
2 participants
@manicminer @simongottschlag