Skip to content

Use token-based authentication instead of the access key in the AzureFileShareService #779

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
motus merged 24 commits into from
Jul 24, 2024
Merged

Use token-based authentication instead of the access key in the AzureFileShareService #779

motus merged 24 commits into from
Jul 24, 2024

Conversation

@motus
Copy link
Member

@motus motus commented Jul 9, 2024
edited by bpkroth
Loading

Make AzureFileShareService class use token-based credential instead of the access key. This PR is part of #777

NOTE:

  • We have to use late initialization of the _share_client to avoid issues with JSON schema validation tests.
  • More PRs will follow:
    • Use to azcopy on the remote VMs instead of mounting the file share using the access key
    • Remove references to "storageAccountKey" from configurations and tests and document the new mechanism

@motus motus requested a review from a team as a code owner July 9, 2024 00:57
@motus motus self-assigned this Jul 9, 2024
@motus motus added ready for review Ready for review mlos-bench labels Jul 9, 2024
@motus motus mentioned this pull request Jul 9, 2024
Open
motus and others added 13 commits July 10, 2024 14:16
@motus
Merge branch 'main' into sergiym/svc/fs_token_auth
9b65bd7
@motus
Merge branch 'main' into sergiym/svc/fs_token_auth
101b593
@motus
Merge branch 'main' into sergiym/svc/fs_token_auth
71fae3c
@motus
Merge branch 'main' of https://github.com/microsoft/MLOS into sergiym…
4bc4c25 
…/svc/fs_token_auth
@motus
Merge branch 'sergiym/svc/fs_token_auth' of https://github.com/motus/…
289af50 
…MLOS into sergiym/svc/fs_token_auth
@motus
black formatting updates
ead96a1
@motus
Merge branch 'main' into sergiym/svc/fs_token_auth
a46bcd4
@motus
Merge branch 'main' into sergiym/svc/fs_token_auth
68c6d0d
@motus
Merge branch 'main' of https://github.com/microsoft/MLOS into sergiym…
99172ed 
…/svc/fs_token_auth
@motus
docformatter fixes
8078d70
@motus
Merge branch 'sergiym/svc/fs_token_auth' of https://github.com/motus/…
527ae66 
…MLOS into sergiym/svc/fs_token_auth
@motus
Merge branch 'main' into sergiym/svc/fs_token_auth
56704f6
@bpkroth
Merge branch 'main' into sergiym/svc/fs_token_auth
5af8b6f
@bpkroth
Copy link
Contributor

bpkroth commented Jul 22, 2024

Part of why we went with the mount smb method was reduced dependencies on the target VM.

Use of azcopy instead might be a little more challenging on that front, but let's see.

@bpkroth
Copy link
Contributor

bpkroth commented Jul 22, 2024
edited
Loading

As long as we're removing account storage key, does removing fileshare also make sense? We could use blobs instead I guess. Maybe less nice though and too many changes.

@bpkroth bpkroth changed the title Use token-based authentication instead of the access key in the AzureFlieShareService Use token-based authentication instead of the access key in the AzureFileShareService Jul 23, 2024
bpkroth
bpkroth approved these changes Jul 23, 2024
View reviewed changes
Copy link
Contributor

@bpkroth bpkroth left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Mostly looks good. Only feedback was to move the SupportsAuth check to __init__ so we can check for proper configs at startup time rather than at file transfer need time which might be after some experiment trial has already run.

@motus motus enabled auto-merge (squash) July 23, 2024 22:23
@motus motus disabled auto-merge July 23, 2024 22:29
@bpkroth bpkroth mentioned this pull request Jul 23, 2024
Merged
@motus motus force-pushed the sergiym/svc/fs_token_auth branch from 35e77b4 to 827492f Compare July 23, 2024 23:58
@motus motus merged commit 73f0708 into microsoft:main Jul 24, 2024
@bpkroth bpkroth mentioned this pull request Jul 24, 2024
Closed
@motus motus deleted the sergiym/svc/fs_token_auth branch August 1, 2024 18:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bpkroth bpkroth bpkroth approved these changes

Assignees

@motus motus

Labels

mlos-bench ready for review Ready for review

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@motus @bpkroth