Use token-based authentication instead of the access key in the AzureFileShareService by motus · Pull Request #779 · microsoft/MLOS

motus · 2024-07-09T00:57:16Z

Make AzureFileShareService class use token-based credential instead of the access key. This PR is part of #777

NOTE:

We have to use late initialization of the _share_client to avoid issues with JSON schema validation tests.
More PRs will follow:
- Use to azcopy on the remote VMs instead of mounting the file share using the access key
- Remove references to "storageAccountKey" from configurations and tests and document the new mechanism

…re service

…patching of the class for unit tests

…/svc/fs_token_auth

…MLOS into sergiym/svc/fs_token_auth

…/svc/fs_token_auth

…MLOS into sergiym/svc/fs_token_auth

bpkroth · 2024-07-22T17:10:06Z

Part of why we went with the mount smb method was reduced dependencies on the target VM.

Use of azcopy instead might be a little more challenging on that front, but let's see.

bpkroth · 2024-07-22T17:10:38Z

As long as we're removing account storage key, does removing fileshare also make sense? We could use blobs instead I guess. Maybe less nice though and too many changes.

mlos_bench/mlos_bench/services/remote/azure/azure_fileshare.py

bpkroth

Mostly looks good. Only feedback was to move the SupportsAuth check to __init__ so we can check for proper configs at startup time rather than at file transfer need time which might be after some experiment trial has already run.

…n is up to date

…vide a proper implementation later

motus added 3 commits July 8, 2024 16:05

use token-based credential instead of a storage key in Azure file sha…

2a6cd0d

…re service

initialize auth service before azure fileshare in unit tests

951fdba

late initialization for azure fileshare _share_client; proper monkey …

9aeaa92

…patching of the class for unit tests

motus requested a review from a team as a code owner July 9, 2024 00:57

motus self-assigned this Jul 9, 2024

motus added ready for review Ready for review mlos-bench labels Jul 9, 2024

remove storageAccountKey parameter from azure_fileshare fixture

54c308b

motus mentioned this pull request Jul 9, 2024

Remove the storageAccountKey parameter from all JSON configs and schemas #780

Open

motus and others added 13 commits July 10, 2024 14:16

Merge branch 'main' into sergiym/svc/fs_token_auth

9b65bd7

Merge branch 'main' into sergiym/svc/fs_token_auth

101b593

Merge branch 'main' into sergiym/svc/fs_token_auth

71fae3c

Merge branch 'main' of https://github.com/microsoft/MLOS into sergiym…

4bc4c25

…/svc/fs_token_auth

Merge branch 'sergiym/svc/fs_token_auth' of https://github.com/motus/…

289af50

…MLOS into sergiym/svc/fs_token_auth

black formatting updates

ead96a1

Merge branch 'main' into sergiym/svc/fs_token_auth

a46bcd4

Merge branch 'main' into sergiym/svc/fs_token_auth

68c6d0d

Merge branch 'main' of https://github.com/microsoft/MLOS into sergiym…

99172ed

…/svc/fs_token_auth

docformatter fixes

8078d70

Merge branch 'sergiym/svc/fs_token_auth' of https://github.com/motus/…

527ae66

…MLOS into sergiym/svc/fs_token_auth

Merge branch 'main' into sergiym/svc/fs_token_auth

56704f6

Merge branch 'main' into sergiym/svc/fs_token_auth

5af8b6f

motus added 4 commits July 22, 2024 13:45

Merge branch 'main' into sergiym/svc/fs_token_auth

378f073

formatting fixes

f2b47c6

remove git merge artifact

e9e48f2

more git merge fixes

2925ebb

bpkroth changed the title ~~Use token-based authentication instead of the access key in the AzureFlieShareService~~ Use token-based authentication instead of the access key in the AzureFileShareService Jul 23, 2024

bpkroth reviewed Jul 23, 2024

View reviewed changes

mlos_bench/mlos_bench/services/remote/azure/azure_fileshare.py Show resolved Hide resolved

bpkroth approved these changes Jul 23, 2024

View reviewed changes

Merge branch 'main' into sergiym/svc/fs_token_auth

d9bf3fe

motus enabled auto-merge (squash) July 23, 2024 22:23

motus disabled auto-merge July 23, 2024 22:29

bpkroth mentioned this pull request Jul 23, 2024

move sanity check into __init__ motus/MLOS#14

Merged

create share client every time to make sure token-based authenticatio…

827492f

…n is up to date

motus force-pushed the sergiym/svc/fs_token_auth branch from 35e77b4 to 827492f Compare July 23, 2024 23:58

roll back creation of the ShareClient every time we need it. Will pro…

af55d5e

…vide a proper implementation later

motus merged commit 73f0708 into microsoft:main Jul 24, 2024

bpkroth mentioned this pull request Jul 24, 2024

Fix issues in AzureFileShareService introduced by #779 #818

Closed

motus deleted the sergiym/svc/fs_token_auth branch August 1, 2024 18:00

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Use token-based authentication instead of the access key in the AzureFileShareService#779

Use token-based authentication instead of the access key in the AzureFileShareService#779
motus merged 24 commits intomicrosoft:mainfrom
motus:sergiym/svc/fs_token_auth

motus commented Jul 9, 2024 •

edited by bpkroth

Loading

Uh oh!

bpkroth commented Jul 22, 2024

Uh oh!

bpkroth commented Jul 22, 2024 •

edited

Loading

Uh oh!

Uh oh!

bpkroth left a comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

motus commented Jul 9, 2024 • edited by bpkroth Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

bpkroth commented Jul 22, 2024

Uh oh!

bpkroth commented Jul 22, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Uh oh!

bpkroth left a comment

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

motus commented Jul 9, 2024 •

edited by bpkroth

Loading

bpkroth commented Jul 22, 2024 •

edited

Loading