marco/plugin-barman-cloud
1
0
Fork 0
mirror of https://github.com/cloudnative-pg/plugin-barman-cloud.git synced 2026-01-13 22:23:11 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

Compare commits

base: marco:27ab06ba70ea59643060d83c015a90dbc243b9ea
Branches Tags
marco:main
marco:renovate/golangci-golangci-lint-2.x
marco:renovate/ghcr.io-cloudnative-pg-plugin-barman-cloud-base-3.x
marco:dev/reduce-e2e-test-verbosity
marco:release-please--branches--main
marco:renovate/python-3.x
marco:dev/385
marco:snyk-fix-6f890911d063843b8cacf57cf3c8ee75
marco:dev/pprof_server
marco:dev/389
marco:release-please--branches--dev/release-please
marco:v0.10.0
marco:v0.9.0
marco:v0.8.0
marco:v0.7.0
marco:v0.6.0
marco:v0.5.0
marco:v0.4.1
marco:v0.4.0
marco:v0.3.0
marco:v0.2.0
marco:v0.1.0
..
compare: marco:2e5eba6e7686dd15e2b0a4320354b2a8ded5dff5
Branches Tags
marco:renovate/golangci-golangci-lint-2.x
marco:renovate/ghcr.io-cloudnative-pg-plugin-barman-cloud-base-3.x
marco:dev/reduce-e2e-test-verbosity
marco:main
marco:release-please--branches--main
marco:renovate/python-3.x
marco:dev/385
marco:snyk-fix-6f890911d063843b8cacf57cf3c8ee75
marco:dev/pprof_server
marco:dev/389
marco:release-please--branches--dev/release-please
marco:v0.10.0
marco:v0.9.0
marco:v0.8.0
marco:v0.7.0
marco:v0.6.0
marco:v0.5.0
marco:v0.4.1
marco:v0.4.0
marco:v0.3.0
marco:v0.2.0
marco:v0.1.0

3 Commits
27ab06ba70 ... 2e5eba6e76

Author SHA1 Message Date
Gabriele Fedi
2e5eba6e76
Merge 2cb76ef622 into 316828cc73 2025-11-18 08:32:31 +00:00
Gabriele Fedi
2cb76ef622 refactor: mispelled auth method naming 
Signed-off-by: Gabriele Fedi <gabriele.fedi@enterprisedb.com>
 2025-11-18 09:32:14 +01:00
Gabriele Fedi
cdb893a70d docs: minor fixes 
Signed-off-by: Gabriele Fedi <gabriele.fedi@enterprisedb.com>
 2025-11-18 09:25:45 +01:00
3 changed files with 15 additions and 14 deletions
Show Stats Expand all files Collapse all files

4
internal/cnpgi/common/common.go
View File

@ -105,8 +105,8 @@ func BuildCertificateFilePath(objectStoreName string) string {
// ContextWithProviderOptions enriches the context with cloud service provider specific options // ContextWithProviderOptions enriches the context with cloud service provider specific options
// based on the ObjectStore resource // based on the ObjectStore resource
func ContextWithProviderOptions(ctx context.Context, objectStore apiv1.ObjectStore) context.Context { func ContextWithProviderOptions(ctx context.Context, objectStore apiv1.ObjectStore) context.Context {
if objectStore.GetAnnotations()[pluginmetadata.UseDefaultAzureCredentialsAnnotationName] == if objectStore.GetAnnotations()[pluginmetadata.UseDefaultAzureCredentialAnnotationName] ==
pluginmetadata.UseDefaultAzureCredentialsTrueValue { pluginmetadata.UseDefaultAzureCredentialTrueValue {
return command.ContextWithDefaultAzureCredentials(ctx, true) return command.ContextWithDefaultAzureCredentials(ctx, true)
} }

14
pkg/metadata/labels_annotations.go
View File

@ -4,12 +4,12 @@ package metadata
const MetadataNamespace = "barmancloud.cnpg.io" const MetadataNamespace = "barmancloud.cnpg.io"
const ( const (
// UseDefaultAzureCredentialsAnnotationName is an annotation that can be set // UseDefaultAzureCredentialAnnotationName is an annotation that can be set
// on an ObjectStore resource to enable the use DefaultAzureCredentials // on an ObjectStore resource to enable the authentication to Azure via DefaultAzureCredential.
// to authenticate to Azure. This is meant to be used with inheritFromAzureAD enabled. // This is meant to be used with inheritFromAzureAD enabled.
UseDefaultAzureCredentialsAnnotationName = MetadataNamespace + "/useDefaultAzureCredentials" UseDefaultAzureCredentialAnnotationName = MetadataNamespace + "/useDefaultAzureCredential"
// UseDefaultAzureCredentialsTrueValue is the value for the annotation // UseDefaultAzureCredentialTrueValue is the value for the annotation
// barmancloud.cnpg.io/useDefaultAzureCredentials to enable the use of DefaultAzureCredentials // barmancloud.cnpg.io/useDefaultAzureCredential to enable the DefaultAzureCredentials auth mechanism.
UseDefaultAzureCredentialsTrueValue = "true" UseDefaultAzureCredentialTrueValue = "true"
) )

11
web/docs/object_stores.md
View File

@ -233,7 +233,7 @@ Barman Cloud supports the following authentication methods:
- Storage Account Name + [Access Key](https://learn.microsoft.com/en-us/azure/storage/common/storage-account-keys-manage) - Storage Account Name + [Access Key](https://learn.microsoft.com/en-us/azure/storage/common/storage-account-keys-manage)
- Storage Account Name + [SAS Token](https://learn.microsoft.com/en-us/azure/storage/blobs/sas-service-create) - Storage Account Name + [SAS Token](https://learn.microsoft.com/en-us/azure/storage/blobs/sas-service-create)
- [Azure AD Workload Identity](https://azure.github.io/azure-workload-identity/docs/introduction.html) - [Azure AD Workload Identity](https://azure.github.io/azure-workload-identity/docs/introduction.html)
- [Azure Default Credentials](https://learn.microsoft.com/en-us/azure/developer/go/sdk/authentication/credential-chains#defaultazurecredential-overview) - [DefaultAzureCredential](https://learn.microsoft.com/en-us/azure/developer/go/sdk/authentication/credential-chains#defaultazurecredential-overview)
### Azure AD Workload Identity ### Azure AD Workload Identity
@ -253,10 +253,11 @@ spec:
[...] [...]
``` ```
### Azure Default Credentials ### DefaultAzureCredential
To authenticate using Azure Default Credentials, set the annotation To authenticate using `DefaultAzureCredential`, set the annotation
`barmancloud.cnpg.io/useDefaultAzureCredentials="true"` on the ObjectStore: `barmancloud.cnpg.io/useDefaultAzureCredential="true"` on the ObjectStore in
conjunction with the `.spec.configuration.inheritFromAzureAD` option:
```yaml ```yaml
apiVersion: barmancloud.cnpg.io/v1 apiVersion: barmancloud.cnpg.io/v1
@ -264,7 +265,7 @@ kind: ObjectStore
metadata: metadata:
name: azure-store name: azure-store
annotations: annotations:
barmancloud.cnpg.io/useDefaultAzureCredentials: "true" barmancloud.cnpg.io/useDefaultAzureCredential: "true"
spec: spec:
configuration: configuration:
destinationPath: "<destination path here>" destinationPath: "<destination path here>"