AzureMonitor: User authentication support (#81918)

mirror of https://github.com/grafana/grafana.git synced 2025-02-25 18:55:37 -06:00

* Stub out frontend user auth

* Stub out backend user auth

* Add context

* Reorganise files

* Refactor app registration form

* Alert for user auth service principal credentials

* AzureMonitor: Add flag for enabling/disabling fallback credentials for current user authentication (#82332)

* Rename field

* Add fallback setting

* Update tests and mock

* Remove duplicate setting line

* Update name of property

* Update frontend settings

* Update docs and default config files

* Update azure-sdk

* Fix lint

* Update test

* Bump dependency

* Update configuration

* Update docs/sources/setup-grafana/configure-grafana/_index.md

Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>

* Docs review

* AzureMonitor: User authentication frontend updates (#83107)

* Rename field

* Add fallback setting

* Update tests and mock

* Remove duplicate setting line

* Update name of property

* Update frontend settings

* Update docs and default config files

* Add alerts to query editor

- Add authenticatedBy property to grafana/data
- Update mocks
- Update query editor to disable it under certain circumstances
- Update tests

* Add separate FallbackCredentials component

- Reset AppRegistrationCredentials component to only handle clientsecret credentials
- Update AzureCredentialsForm
- Update selectors
- Update tests
- Update credentials utility functions logic

* Alert when fallback credentials disabled

* Update condition

* Update azure-sdk

* Fix lint

* Update test

* Remove unneeded conditions

* Set auth type correctly

* Legacy cloud options

* Fix client secret

* Remove accidental import

* Bump dependency

* Add tests

* Don't use VerticalGroup component

* Remove unused import

* Fix lint

* Appropriately set oAuthPassThru and disableGrafanaCache properties

* Clear azureCredentials on authType change

* Correctly retrieve secret

* Fix bug in authTypeOptions

* Update public/app/plugins/datasource/azuremonitor/components/ConfigEditor/CurrentUserFallbackCredentials.tsx

Co-authored-by: Andrew Hackmann <5140848+bossinc@users.noreply.github.com>

* Update public/app/plugins/datasource/azuremonitor/components/QueryEditor/QueryEditor.tsx

Co-authored-by: Andrew Hackmann <5140848+bossinc@users.noreply.github.com>

* Update public/app/plugins/datasource/azuremonitor/components/ConfigEditor/CurrentUserFallbackCredentials.tsx

Co-authored-by: Andrew Hackmann <5140848+bossinc@users.noreply.github.com>

* Add documentation links

* Fix broken link

---------

Co-authored-by: Andrew Hackmann <5140848+bossinc@users.noreply.github.com>

* AzureMonitor: Update docs for current user authentication (#83440)

* Rename field

* Add fallback setting

* Update tests and mock

* Remove duplicate setting line

* Update name of property

* Update frontend settings

* Update docs and default config files

* Add alerts to query editor

- Add authenticatedBy property to grafana/data
- Update mocks
- Update query editor to disable it under certain circumstances
- Update tests

* Add separate FallbackCredentials component

- Reset AppRegistrationCredentials component to only handle clientsecret credentials
- Update AzureCredentialsForm
- Update selectors
- Update tests
- Update credentials utility functions logic

* Alert when fallback credentials disabled

* Update condition

* Update azure-sdk

* Fix lint

* Update test

* Remove unneeded conditions

* Set auth type correctly

* Legacy cloud options

* Fix client secret

* Remove accidental import

* Bump dependency

* Add tests

* Don't use VerticalGroup component

* Remove unused import

* Update docs

* Fix lint

* Appropriately set oAuthPassThru and disableGrafanaCache properties

* Clear azureCredentials on authType change

* Correctly retrieve secret

* Feedback

* Spelling

* Update docs/sources/datasources/azure-monitor/_index.md

Co-authored-by: Larissa Wandzura <126723338+lwandz13@users.noreply.github.com>

* Update docs/sources/datasources/azure-monitor/_index.md

Co-authored-by: Larissa Wandzura <126723338+lwandz13@users.noreply.github.com>

* Update docs/sources/datasources/azure-monitor/_index.md

Co-authored-by: Larissa Wandzura <126723338+lwandz13@users.noreply.github.com>

* Update docs/sources/datasources/azure-monitor/_index.md

Co-authored-by: Larissa Wandzura <126723338+lwandz13@users.noreply.github.com>

---------

Co-authored-by: Larissa Wandzura <126723338+lwandz13@users.noreply.github.com>

* Docs review

* Update docs with additional configuration information

* Fix to appropriately hide the query editor

* Typo

* Update isCredentialsComplete

* Update test

---------

Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
Co-authored-by: Andrew Hackmann <5140848+bossinc@users.noreply.github.com>
Co-authored-by: Larissa Wandzura <126723338+lwandz13@users.noreply.github.com>

This commit is contained in:

Andreas Christou

2024-03-19 16:32:24 +00:00

committed by

GitHub

parent 2a6a1fb3b3

commit 6bb7ab261a

55 changed files with 1058 additions and 328 deletions

									
										1

pkg/setting/setting_azure.go
									
												View File
												
				@@ -66,6 +66,7 @@ func (cfg *Cfg) readAzureSettings() {

						}

						azureSettings.UserIdentityTokenEndpoint = tokenEndpointSettings

						azureSettings.UserIdentityFallbackCredentialsEnabled = azureSection.Key("user_identity_fallback_credentials_enabled").MustBool(true)

					}

					azureSettings.ForwardSettingsPlugins = util.SplitString(azureSection.Key("forward_settings_to_plugins").String())

									
										26

pkg/setting/setting_azure_test.go
									
												View File
												
				@@ -109,6 +109,32 @@ func TestAzureSettings(t *testing.T) {

							assert.True(t, cfg.Azure.UserIdentityEnabled)

						})

						t.Run("enables service credentials by default", func(t *testing.T) {

							cfg := NewCfg()

							azureSection, err := cfg.Raw.NewSection("azure")

							require.NoError(t, err)

							_, err = azureSection.NewKey("user_identity_enabled", "true")

							require.NoError(t, err)

							cfg.readAzureSettings()

							assert.True(t, cfg.Azure.UserIdentityFallbackCredentialsEnabled)

						})

						t.Run("disables service credentials", func(t *testing.T) {

							cfg := NewCfg()

							azureSection, err := cfg.Raw.NewSection("azure")

							require.NoError(t, err)

							_, err = azureSection.NewKey("user_identity_enabled", "true")

							require.NoError(t, err)

							_, err = azureSection.NewKey("user_identity_fallback_credentials_enabled", "false")

							require.NoError(t, err)

							cfg.readAzureSettings()

							assert.False(t, cfg.Azure.UserIdentityFallbackCredentialsEnabled)

						})

						t.Run("should use token endpoint from Azure AD if enabled", func(t *testing.T) {

							cfg := NewCfg()

AzureMonitor: User authentication support (#81918)

1 pkg/setting/setting_azure.go Unescape Escape View File

26 pkg/setting/setting_azure_test.go Unescape Escape View File

1

pkg/setting/setting_azure.go

View File

26

pkg/setting/setting_azure_test.go

View File